What is the following command trying to accomplish?

A. Verify that NETBIOS is running for the 192.168.0.0 network

B. Verify that TCP port 445 is open for the 192.168.0.0 network

C. Verify that UDP port 445 is open for the 192.168.0.0 network

D. Verify that UDP port 445 is closed for the 192.168.0.0 network

What is a good security method to prevent unauthorized users from "tailgating"?

A. Electronic key systems

B. Man trap

C. Pick-resistant locks

D. Electronic combination locks

You are the network administrator for a small bank in Dallas, Texas. To ensure network security, you enact a security policy that requires all users to have 14 character passwords. After giving your users 2 weeks notice, you change the Group Policy to force 14 character passwords. A week later you dump the SAM database from the standalone server and run a password-cracking tool against it. Over 99% of the passwords are broken within an hour. Why were these passwords cracked so quickly?

A. Networks using Active Directory never use SAM databases so the SAM database pulled was empty

B. Passwords of 14 characters or less are broken up into two 7-character hashes

C. The passwords that were cracked are local accounts on the Domain Controller

D. A password Group Policy change takes at least 3 weeks to completely replicate throughout a network

In Linux, what is the smallest possible shellcode?

A. 800 bytes

B. 8 bytes

C. 80 bytes

D. 24 bytes

What is the target host IP in the following command?

A. Firewalk does not scan target hosts

B. 172.16.28.95

C. This command is using FIN packets, which cannot scan target hosts

D. 10.10.150.1

With the standard Linux second extended file system (Ext2fs), a file is deleted when the inode internal link count reaches ________.

A. 0

B. 10

C. 100

D. 1

When reviewing web logs, you see an entry for resource not found in the HTTP status code fileD. What is the actual error code that you would see in the log for resource not found?

A. 202

B. 404

C. 505

D. 909

When investigating a network that uses DHCP to assign IP addresses, where would you look to determine which system (MAC address) had a specific IP address at a specific time?

A. on the individual computer s ARP cache

B. in the Web Server log files

C. in the DHCP Server log files

D. there is no way to determine the specific IP address

Which of the following should a computer forensics lab used for investigations have?

A. isolation

B. restricted access

C. open access

D. an entry log

When investigating a Windows System, it is important to view the contents of the page or swap file because:

A. Windows stores all of the systems configuration information in this file

B. This is file that windows use to communicate directly with Registry

C. A Large volume of data can exist within the swap file of which the computer user has no knowledge

D. This is the file that windows use to store the history of the last 100 commands that were run from the command line