- (Exam Topic 3)
Harris is attempting to identify the OS running on his target machine. He inspected the initial TTL in the IP header and the related TCP window size and obtained the following results:
TTL: 64 Window Size: 5840
What is the OS running on the target machine?

1. A. Solaris OS
2. B. Windows OS
3. C. Mac OS
4. D. Linux OS

Correct Answer: D

- (Exam Topic 3)
Louis, a professional hacker, had used specialized tools or search engines to encrypt all his browsing activity and navigate anonymously to obtain sensitive/hidden information about official government or federal databases. After gathering the Information, he successfully performed an attack on the target government organization without being traced. Which of the following techniques is described in the above scenario?

1. A. Dark web footprinting
2. B. VoIP footpnnting
3. C. VPN footprinting
4. D. website footprinting

Correct Answer: A
The deep web is the layer of the online cyberspace that consists of web pages and content that are hidden and unindexed.

- (Exam Topic 3)
Alex, a cloud security engineer working in Eyecloud Inc. is tasked with isolating applications from the underlying infrastructure and stimulating communication via well-defined channels. For this purpose, he used an open-source technology that helped him in developing, packaging, and running applications; further, the technology provides PaaS through OS-level visualization, delivers containerized software packages, and promotes fast software delivery. What is the cloud technology employed by Alex in the above scenario?

1. A. Virtual machine
2. B. Serverless computing
3. C. Docker
4. D. Zero trust network

Correct Answer: C

- (Exam Topic 1)
Let's imagine three companies (A, B and C), all competing in a challenging global environment. Company A and B are working together in developing a product that will generate a major competitive advantage for them. Company A has a secure DNS server while company B has a DNS server vulnerable to spoofing. With a spoofing attack on the DNS server of company B, company C gains access to outgoing e-mails from company B. How do you prevent DNS spoofing?

1. A. Install DNS logger and track vulnerable packets
2. B. Disable DNS timeouts
3. C. Install DNS Anti-spoofing
4. D. Disable DNS Zone Transfer

Correct Answer: C

- (Exam Topic 2)
Switches maintain a CAM Table that maps individual MAC addresses on the network to physical ports on the switch.

In MAC flooding attack, a switch is fed with many Ethernet frames, each containing different source MAC addresses, by the attacker. Switches have a limited memory for mapping various MAC addresses to physical ports. What happens when the CAM table becomes full?

1. A. Switch then acts as hub by broadcasting packets to all machines on the network
2. B. The CAM overflow table will cause the switch to crash causing Denial of Service
3. C. The switch replaces outgoing frame switch factory default MAC address of FF:FF:FF:FF:FF:FF
4. D. Every packet is dropped and the switch sends out SNMP alerts to the IDS port

Correct Answer: A