934 お客様のコメント
質問 1:
Which of the following is the range for assigned ports managed by the Internet Assigned Numbers Authority (IANA)?
A. 5000-5099
B. 6666-6674
C. 0 - 1023
D. 3001-3100
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
Which type of vulnerability assessment tool provides security to the IT system by testing for vulnerabilities in the applications and operation system?
A. Location/Data Examined Tools
B. Active/Passive Tools
C. Application-layer Vulnerability Assessment Tools
D. Scope Assessment Tools
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
Packet filtering firewalls are usually a part of a router. In a packet filtering firewall, each packet is compared to a set of criteria before it is forwarded.
Depending on the packet and the criteria, the firewall can: i)Drop the packet ii)Forward it or send a message to the originator
At which level of the OSI model do the packet filtering firewalls work?
A. Application layer
B. Physical layer
C. Transport layer
D. Network layer
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
Rule of Engagement (ROE) is the formal permission to conduct a pen-test. It provides top-level guidance for conducting the penetration testing.
Various factors are considered while preparing the scope of ROE which clearly explain the limits associated with the security test.
Which of the following factors is NOT considered while preparing the scope of the Rules of Engagment (ROE)?
A. Points of contact for the penetration testing team
B. Specific IP addresses/ranges to be tested
C. A list of acceptable testing techniques
D. A list of employees in the client organization
正解:D
質問 5:
Which one of the following acts makes reputational risk of poor security a reality because it requires public disclosure of any security breach that involves personal information if it is unencrypted or if it is reasonably believed that the information has been acquired by an unauthorized person?
A. Gramm-Leach-Bliley Act (GLBA)
B. USA Patriot Act 2001
C. Sarbanes-Oxley 2002
D. California SB 1386
正解:D
質問 6:
John, a penetration tester, was asked for a document that defines the project, specifies goals, objectives, deadlines, the resources required, and the approach of the project. Which of the following includes all of these requirements?
A. Penetration testing software project management plan
B. Penetration testing schedule plan
C. Penetration testing project scope report
D. Penetration testing project plan
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 7:
Identify the transition mechanism to deploy IPv6 on the IPv4 network from the following diagram.
A. Translation
B. Encapsulation
C. Dual Stacks
D. Tunneling
正解:D
質問 8:
Which of the following will not handle routing protocols properly?
A. "Internet-firewall-router-net architecture"
B. "Internet-firewall -net architecture"
C. "Internet-router-firewall-net architecture"
D. "Internet-firewall/router(edge device)-net architecture"
正解:A
Which of the following is the range for assigned ports managed by the Internet Assigned Numbers Authority (IANA)?
A. 5000-5099
B. 6666-6674
C. 0 - 1023
D. 3001-3100
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
Which type of vulnerability assessment tool provides security to the IT system by testing for vulnerabilities in the applications and operation system?
A. Location/Data Examined Tools
B. Active/Passive Tools
C. Application-layer Vulnerability Assessment Tools
D. Scope Assessment Tools
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
Packet filtering firewalls are usually a part of a router. In a packet filtering firewall, each packet is compared to a set of criteria before it is forwarded.
Depending on the packet and the criteria, the firewall can: i)Drop the packet ii)Forward it or send a message to the originator
At which level of the OSI model do the packet filtering firewalls work?
A. Application layer
B. Physical layer
C. Transport layer
D. Network layer
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
Rule of Engagement (ROE) is the formal permission to conduct a pen-test. It provides top-level guidance for conducting the penetration testing.
Various factors are considered while preparing the scope of ROE which clearly explain the limits associated with the security test.
Which of the following factors is NOT considered while preparing the scope of the Rules of Engagment (ROE)?
A. Points of contact for the penetration testing team
B. Specific IP addresses/ranges to be tested
C. A list of acceptable testing techniques
D. A list of employees in the client organization
正解:D
質問 5:
Which one of the following acts makes reputational risk of poor security a reality because it requires public disclosure of any security breach that involves personal information if it is unencrypted or if it is reasonably believed that the information has been acquired by an unauthorized person?
A. Gramm-Leach-Bliley Act (GLBA)
B. USA Patriot Act 2001
C. Sarbanes-Oxley 2002
D. California SB 1386
正解:D
質問 6:
John, a penetration tester, was asked for a document that defines the project, specifies goals, objectives, deadlines, the resources required, and the approach of the project. Which of the following includes all of these requirements?
A. Penetration testing software project management plan
B. Penetration testing schedule plan
C. Penetration testing project scope report
D. Penetration testing project plan
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 7:
Identify the transition mechanism to deploy IPv6 on the IPv4 network from the following diagram.
A. Translation
B. Encapsulation
C. Dual Stacks
D. Tunneling
正解:D
質問 8:
Which of the following will not handle routing protocols properly?
A. "Internet-firewall-router-net architecture"
B. "Internet-firewall -net architecture"
C. "Internet-router-firewall-net architecture"
D. "Internet-firewall/router(edge device)-net architecture"
正解:A
中*忍 -
412-79v8内容は思った通り。
ボリューム的に足りないかな?と心配しましたが、そんなことはありませんでした。Pass4Testいいね