A cybersecurity analyst is currently checking a newly deployed server that has an access control list applied. When conducting the scan, the analyst received the following code snippet of results:

Which of the following describes the output of this scan?

• A.The analyst has discovered a True Positive, and the status code is correct providing a file not found error message.
• B.The analyst has discovered a False Positive, and the status code is incorrect providing an OK message.
• C.The analyst has discovered a False Positive, and the status code is incorrect providing a server error message.
• D.The analyst has discovered a True Positive, and the status code is incorrect providing a forbidden message.

Comment: *

Name: *

Email: *

Verification: *

An organization has been conducting penetration testing to identify possible network vulnerabilities. One of the security policies states that web servers and database servers must not be co-located on the same server unless one of them runs on a non-standard. The penetration tester has received the following outputs from the latest set of scans:

Which of the following servers is out of compliance?

• A.adminServer
• B.orgServer
• C.opsServer
• D.finServer

Comment: *

Name: *

Email: *

Verification: *

An organization is conducting penetration testing to identify possible network vulnerabilities. The penetration tester has received the following output from the latest scan:

The penetration tester knows the organization does not use Timbuktu servers and wants to have Nmap interrogate the ports on the target in more detail. Which of the following commands should the penetration tester use NEXT?

• A.nmap 192.168.1.13 -v
• B.sudo nmap -sS 192.168.1.13
• C.nmap -sV 192.168.1.13 -p1417
• D.nmap -sS 192.168.1.13 -p1417

Comment: *

Name: *

Email: *

Verification: *

An organization wants to remediate vulnerabilities associated with its web servers. An initial vulnerability scan has been performed, and analysts are reviewing the results. Before starting any remediation, the analysts want to remove false positives to avoid spending time on issues that are not actual vulnerabilities. Which of the following would be an indicator of a likely false positive?

• A.Any items labeled 'low' are considered informational only.
• B.The scan result version is different from the automated asset inventory.
• C.Reports show the scanner compliance plug-in is out-of-date.
• D.'HTTPS' entries indicate the web page is encrypted securely.

Comment: *

Name: *

Email: *

Verification: *

A security audit revealed that port 389 has been used instead of 636 when connecting to
LDAP for the authentication of users. The remediation recommended by the audit was to switch the port to 636 wherever technically possible. Which of the following is the BEST response?

• A.Correct the audit. This finding is accurate, but the correct remediation is to update encryption keys on each of the servers to match port 636.
• B.Change all devices and servers that support it to 636, as 389 is a reserved port that requires root access and can expose the server to privilege escalation attacks.
• C.Change all devices and servers that support it to 636, as encrypted services run by default on 636.
• D.Correct the audit. This finding is a well-known false positive; the services that typically run on 389 and 636 are identical.

Comment: *

Name: *

Email: *

Verification: *