A software development firm wants to validate the use of standard libraries as part of the software development process Each developer performs unit testing prior to committing changes to the code repository. Which of the following activities would be BEST to perform after a commit but before the creation of a branch?

• A.Dynamic analysis
• B.Web application vulnerability scanning
• C.Static analysis
• D.Heuristic analysis
• E.Penetration testing

Comment: *

Name: *

Email: *

Verification: *

A forensic analyst suspects that a buffer overflow exists in a kernel module. The analyst executes the following command:
dd if=/dev/ram of=/tmp/mem/dmp
The analyst then reviews the associated output:
^34^#AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/bin/bash^21^03#45
However, the analyst is unable to find any evidence of the running shell. Which of the following of the MOST likely reason the analyst cannot find a process ID for the shell?

• A.The NX bit is enabled
• B.The system uses ASLR
• C.The shell is obfuscated
• D.The code uses dynamic libraries

Comment: *

Name: *

Email: *

Verification: *

A security engineer is deploying an IdP to broker authentication between applications. These applications
all utilize SAML 2.0 for authentication. Users log into the IdP with their credentials and are given a list of
applications they may access. One of the application's authentications is not functional when a user
initiates an authentication attempt from the IdP. The engineer modifies the configuration so users browse
to the application first, which corrects the issue. Which of the following BEST describes the root cause?

• A.The application only supports SP-initiated authentication.
• B.The IdP only supports SAML 1.0
• C.There is an SSL certificate mismatch between the IdP and the SaaS application.
• D.The user is not provisioned correctly on the IdP.

Comment: *

Name: *

Email: *

Verification: *

A security analyst is reviewing the following packet capture of communication between a host and a company's router:

Which of the following actions should the security analyst take to remove this vulnerability?

• A.Deploy a network-based IPS
• B.Implement a router ACL
• C.Disconnect the host from the network
• D.Update the router code
• E.Install the latest antivirus definitions

Comment: *

Name: *

Email: *

Verification: *

A security administrator has noticed that an increased number of employees' workstations are becoming infected with malware. The company deploys an enterprise antivirus system as well as a web content filter, which blocks access to malicious web sites where malware files can be downloaded. Additionally, the company implements technical measures to disable external storage. Which of the following is a technical control that the security administrator should implement next to reduce malware infection?

• A.Implement an Acceptable Use Policy which addresses malware downloads.
• B.Deploy a network access control system with a persistent agent.
• C.Enforce mandatory security awareness training for all employees and contractors.
• D.Block cloud-based storage software on the company network.

Comment: *

Name: *

Email: *

Verification: *