Question 1

#!/usr/bin/python import socket buffer=[““A””] counter=50 while len(buffer)<=100: buffer.append

(““A””*counter)

counter=counter+50 commands= [““HELP””,““STATS .””,““RTIME .””,““LTIME. ””,““SRUN .”’,““TRUN

.””,““GMON

.””,““GDOG .””,““KSTET .”,““GTER .””,““HTER .””, ““LTER .”,““KSTAN .””] for command in

commands: for

buffstring in buffer: print ““Exploiting”” +command +““:””+str(len(buffstring))

s=socket.socket(socket.AF_INET,

socket.SOCK_STREAM) s.connect((‘127.0.0.1’, 9999)) s.recv(50) s.send(command+buffstring) s.close()

What is the code written for?

Options :

A : Denial-of-service (DOS)

B : Buffer Overflow

C : Bruteforce

D : Encryption

Answer: B

Question 2

You are analysing traffic on the network with Wireshark. You want to routinely run a cron job which will run the capture against a specific set of IPs - 192.168.8.0/24. What command you would use?

Options :

A : wireshark --fetch ''192.168.8*''

B : wireshark --capture --local masked 192.168.8.0 ---range 24

C : tshark -net 192.255.255.255 mask 192.168.8.0

D : sudo tshark -f''net 192 .68.8.0/24''

Answer: D

Question 3

You are the lead cybersecurity analyst at a multinational corporation that uses a hybrid encryption system to secure inter-departmental communications. The system uses RSA encryption for key exchange and AES for data encryption, taking advantage of the strengths of both asymmetric and symmetric encryption. Each RSA key pair has a size of 'n' bits, with larger keys providing more security at the cost of slower performance. Thetime complexity of generating an RSA key pair is O(n*2), and AES encryption has a time complexity of O(n).

An attacker has developed a quantum algorithm with time complexity O((log n)*2) to crack RSA encryption.

Given *n=4000' and variable ‘AES key size’, which scenario is likely to provide the best balance of security

and

performance? which scenario would provide the best balance of security and performance?

Options :

A :

Data encryption with 3DES using a 168-bit key: Offers high security but slower performance due to 3DES-s inherent inefficiencies.

B :

Data encryption with Blowfish using a 448-bit key: Offers high security but potential compatibility issues due to Blowfish-s less widespread use.

C :

Data encryption with AES-128: Provides moderate security and fast encryption, offering a balance between the two.

D :

Data encryption with AES-256: Provides high security with better performance than 3DES, but not as fast as other AES key sizes.

Answer: C

Question 4

Robin, an attacker, is attempting to bypass the firewalls of an organization through the DNS tunneling method in order to exfiltrate data. He is using the NSTX tool for bypassing the firewalls. On which of the following ports should Robin run the NSTX tool?

Options :

A : Port 53

B : Port 23

C : Port 50

D : Port 80

Answer: A

Question 5

Leverox Solutions hired Arnold, a security professional, for the threat intelligence process. Arnold collected information about specific threats against the organization. From this information, he retrieved contextual information about security events and incidents that helped him disclose potential risks and gain insight into attacker methodologies. He collected the information from sources such as humans, social media, and chat rooms as well as from events that resulted in cyberattacks. In this process, he also prepared a report that includes identified malicious activities, recommended courses of action, and warnings for emerging attacks. What is the type of threat intelligence collected by Arnold in the above scenario?

Options :

A : Strategic threat intelligence

B : Tactical threat intelligence

C : Operational threat intelligence

D : Technical threat intelligence

Answer: C