The helpdesk is receiving multiple calls about slow and intermittent Internet access from the finance department. The following information is compiled:
Caller 1, IP 172.16.35.217, NETMASK 255.255.254.0
Caller 2, IP 172.16.35.53, NETMASK 255.255.254.0
Caller 3, IP 172.16.35.173, NETMASK 255.255.254.0
All callers are connected to the same switch and are routed by a router with five built-in interfaces. The upstream router interface's MAC is 00-01-42-32-ab-1a A packet capture shows the following:
09:05:15.934840 arp reply 172.16.34.1 is-at 00:01:42:32:ab:1a (00:01:42:32:ab:1a)
09:06:16.124850 arp reply 172.16.34.1 is-at 00:01:42:32:ab:1a (00:01:42:32:ab:1a)
09:07:25.439811 arp reply 172.16.34.1 is-at 00:01:42:32:ab:1a (00:01:42:32:ab:1a)
09:08:10.937590 IP 172.16.35.1 > 172.16.35.255: ICMP echo request, id 2305, seq 1, length 65534
09:08:10.937591 IP 172.16.35.1 > 172.16.35.255: ICMP echo request, id 2306, seq 2, length 65534
09:08:10.937592 IP 172.16.35.1 > 172.16.35.255: ICMP echo request, id 2307, seq 3, length 65534 Which of the following is occurring on the network?

• A.A man-in-the-middle attack is underway on the network.
• B.An ARP flood attack is targeting at the router.
• C.The default gateway is being spoofed on the network.
• D.A denial of service attack is targeting at the router.

Comment: *

Name: *

Email: *

Verification: *

A company provides guest WiFi access to the internet and physically separates the guest network from the company's internal WIFI. Due to a recent incident in which an attacker gained access to the compay's intend WIFI, the company plans to configure WPA2 Enterprise in an EAP- TLS configuration. Which of the following must be installed on authorized hosts for this new configuration to work properly?

• A.NAC persistent agent
• B.PKI certificates
• C.Active Directory OPOs
• D.Host-based firewall

Comment: *

Name: *

Email: *

Verification: *

A penetration test is being scoped for a set of web services with API endpoints. The APIs will be hosted on existing web application servers. Some of the new APIs will be available to unauthenticated users, but some will only be available to authenticated users. Which of the following tools or activities would the penetration tester MOST likely use or do during the engagement? (Select TWO.)

• A.Port scanner
• B.User acceptance testing
• C.Reverse engineering
• D.Reconnaissance gathering
• E.Intercepting proxy
• F.Static code analyzer

Comment: *

Name: *

Email: *

Verification: *

A penetration tester is conducting an assessment on Comptia.org and runs the following command from a coffee shop while connected to the public Internet:

Which of the following should the penetration tester conclude about the command output?

• A.Comptia.org is running an older mail server, which may be vulnerable to exploits
• B.The public/private views on the Comptia.org DNS servers are misconfigured
• C.The DNS SPF records have not been updated for Comptia.org
• D.192.168.102.67 is a backup mail server that may be more vulnerable to attack

Comment: *

Name: *

Email: *

Verification: *

A database administrator is required to adhere to and implement privacy principles when executing daily tasks.
A manager directs the administrator to reduce the number of unique instances of PII stored within an organization's systems to the greatest extent possible. Which of the following principles is being demonstrated?

• A.PII security
• B.Data minimization
• C.Record transparency
• D.Administrator accountability

Comment: *

Name: *

Email: *

Verification: *