CMIT 321 FINAL EXAM (2016 VERSION)

Buy here:
http://theperfecthomework.com/cmit-321-final-exam-201
6-version/
Final Exam
Question 1 1 / 1 point
__________ is the exploitation of an organization's telephone, dial, and private branch
exchange (PBX) system to infiltrate the internal network in order to abuse computing
resources.
a. War driving
b. Line dialing
c. PBX driving
d. War dialing
View Feedback
__________ cryptography is the most common method on the Internet for authenticating a
message sender or encrypting a message.

a. Symmetric
b. Hash-based
c. Private-key
d. Public-key
View Feedback
__________ is a lightweight Knoppix version cut to 50 MB for a business-card-sized CD.
a. Gnoppix
b. GeeXboX
c. Morphix
d. Damn Small Linux
View Feedback
The __________ utility tests the integrity of an ODBC data source.

a. odbcping
b. ASPRunner
c. FlexTracer
d. DbEncrypt
View Feedback
In the TCP/IP stack, the __________ layer is where applications and protocols, such as
HTTP and Telnet, operate.
a. Internet
b. network
c. transport
d. application
View Feedback

Attackers can use a simple test to find out if an application is vulnerable to an OLE DB error.
They can fill in the username and password fields with __________.
a. a pound sign
b. two dashes
c. a single quotation mark
d. double quotes
View Feedback
__________ allow attackers to pass malicious code to different systems via a web
application.
a. SQL injection attacks
b. XSS vulnerabilities
c. Authentication hijacking attacks
d. Command injection flaws
View Feedback

A __________ is a trusted entity that signs certificates and can vouch for the identity of the
user and the user's public key.
a. verification authority
b. certification authority
c. validation authority
d. registration authority
View Feedback
Null sessions require access to TCP port __________.
a. 139
b. 141
c. 345
d. 349
View Feedback

__________ is a command-line utility provided by Microsoft with SQL Server 2000 (and
Microsoft SQL Server 2000 Desktop Engine) that allows users to issue queries to the server.
a. ODBC
b. SQLP
c. OSQL
d. SSRS
View Feedback
The __________ file is used to determine which TTY devices the root user is allowed to log
in to.
a. /usr/securetty
b. /etc/securetty
c. /var/securetty
d. /home/securetty

View Feedback
__________ can monitor a Simple Mail Transfer Protocol (SMTP) server regularly after
connecting to it.
a. CheckOK
b. SMTPCheck
c. SMTPMon
d. SLCheck
View Feedback
__________ is a method of gaining access to sensitive data in a Bluetooth-enabled device.
a. Bluebugging
b. Bluesnarfing
c. BTKeylogging

d. Blueprinting
View Feedback
__________ is a simple form of attack aimed directly at the application's business logic.
a. Authentication hijacking
b. Parameter tampering
c. Cookie poisoning
d. Session poisoning
View Feedback
Once the Oracle database server has been traced, the first port of call is made to the
__________ listener.
a. SQL
b. TNS

c. TCP
d. PL/SQL
View Feedback
__________ is a common and easy form of SQL injection. The technique involves evading
the logon forms.
a. Command injection
b. SELECT bypass
c. INSERT injection
d. Authorization bypass
View Feedback
__________ gathering is the process of accumulating information from resources like the
Internet that can later be analyzed as business intelligence.
a. Competitive intelligence

b. Tracerouting
c. Passive information
d. Footprinting
View Feedback
__________, formerly called AppTapp, is a tool for jailbreaking and installing nonsanctioned
third-party applications on the iPhone.
a. iFuntastic
b. iNdependence
c. iActivator
d. AppSnapp
View Feedback
Firefox 2.0.0.11 cannot correctly interpret single quotation marks and spaces during
authentication. This is called the __________ value of an authentication header.

a. registration
b. site
c. domain
d. realm
View Feedback
Private data stored by Firefox can be quickly deleted by selecting __________ in the Tools
menu.
a. Clear History
b. Clear Private Data
c. Delete Private Data
d. Delete History
View Feedback

A(n) __________ is a custom command in Linux that is a substitute for a formal command
string.
a. user string
b. system link
c. alias
d. link
View Feedback
A __________ is a device that cannot function in any capacity.
a. block
b. brick
c. rock
d. cage
View Feedback

__________ involves plotting the tables in the database.
a. Database enumeration
b. Database footprinting
c. Table footprinting
d. Table enumeration
View Feedback
A __________ is a device that receives digital signals and converts them into analog
signals, and vice versa.
a. firewall
b. proxy
c. hub
d. modem
View Feedback

Which of the following types of tools would be most effective in cracking UNIX passwords?
a. Ophcrack
b. KerbCrack
c. John the Ripper
d. RainbowCrack
View Feedback
SQL Server, like other databases, delimits queries with a __________.
a. colon
b. period
c. semicolon
d. comma
View Feedback

__________ is a unique 15- or 17-digit code used to identify a mobile station to a GSM
network.
a. IMEI
b. SIMID
c. SIM
d. PhoneID
View Feedback
Which of the following password attacks is conducted using nontechnical means?
a. hybrid
b. brute force
c. social engineering
d. rainbow tables

View Feedback
In __________-level hijacking, the attacker obtains the session IDs to get control of an
existing session or to create a new, unauthorized session.
a. network
b. data link
c. transport
d. application
View Feedback
Which of the tools listed below can be used to execute code on remote Windows systems?
a. X.exe
b. PsExec
c. Rsync

CMIT 321 FINAL EXAM (2016 VERSION)

Recommended

Recommended

More Related Content

What's hot

What's hot (8)

Viewers also liked

Viewers also liked (13)

Similar to CMIT 321 FINAL EXAM (2016 VERSION)

Similar to CMIT 321 FINAL EXAM (2016 VERSION) (20)

More from HamesKellor

More from HamesKellor (20)

Recently uploaded

Recently uploaded (20)

CMIT 321 FINAL EXAM (2016 VERSION)