SCP SC0-451 Exam Practice Test Instant Access

Question 1

You are configuring your new IDS machine, and are creating new rules. You enter the following rule: Alert tcp any any -> 10.0.10.0/24 any (msg: "SYN-FIN scan detected"; flags:SF;) What is the effect of this rule?

AThis is an alert rule, designed to notify you of SYN-FIN scans of the network in one direction.

BThis is an alert rule, designed to notify you of SYN-FIN scans of the network in either direction.

CThis is a logging rule, designed to capture SYN-FIN scans.

DThis is a logging rule, designed to notify you of SYN-FIN scans.

EThis is an alert rule, designed to notify you of SYN-FIN scans originating from the 10.0.10.0/24 network.

Answer : A

Question 2

When performing wireless network traffic analysis, what is the type and subtype for an 802.11 authentication packet?

AType AA Subtype AAAA

BType 00 Subtype 1011

CType 0A Subtype 0A0A

DType 11 Subtype 0000

EType A0 Subtype A1A0

Answer : B

Question 3

You have been hired at a large company to manage network. Prior to your arrival, there was no one dedicated to security, so you are starting at the beginning. You hold a meeting and are discussing the main functions and features of network security. One of your assistants asks what the function of Integrity in network security is. Which of the following best describes Integrity?

AThe security must limit user privileges to minimize the risk of unauthorized access to sensitive information and areas of the network that only authorized users should only be allowed to access.

BIntegrity verifies users to be who they say they are. In data communications, the integrity of the sender is necessary to verify that the data came from the right source. The receiver is authenticated as well to verify that the data is going to the right destination.

CData communications as well as emails need to be protected for privacy and Integrity. Integrity ensures the privacy of data on the network system.

DIntegrity is a security principle that ensures the continuous accuracy of data and information stored within network systems. Data must be kept from unauthorized modification, forgery, or any other form of corruption either from malicious threats or corruption that is accidental in nature. Upon receiving the email or data communication, integrity must be verified to ensure that the message has not been altered, modified, or added to or subtracted from in transit by unauthorized users.

ESecurity must be established to prevent parties in a data transaction from denying their participation after the business transaction has occurred. This establishes integrity for the transaction itself for all parties involved in the transaction.

Answer : D

Question 4

As Intrusion Detection Systems become more sophisticated, the software manufacturers develop different methods of detection. If an IDS uses the process of matching known attacks against data collected in your network, what is this known as?

ASignature analysis

BPacket filter matching

CStatistical analysis

DAnalysis engine engagement

EPacket match and alarming

Answer : A

Question 5

After installing Snort on your Windows machine that is destined to be your IDS, you need to edit the configuration file to customize it to your needs. What is the name of that configuration file?

ASnort.cfg

BConfig.snt

CSnort.config

DSnort.conf

EConfig.snort

Answer : D

Question 6

When using IPTables, the ability to specify all possible IP addresses in a rule is included; which of the following are correct syntax for specifying all possible IP addresses?

Aip=0/0

B0/0

Cany

DIP=all

EIP=any

Answer : B, C

Question 7

You are configuring your new Intrusion Detection System, and studying the true-false matrix. You read about the different types of alarms and events. Which of the following defines an event where an alarm is indicating an intrusion when there is an actual intrusion?

ATrue-negative

BFalse-positive

CTrue-positive

DFalse-negative

EAbsolute-positive

Answer : C

SCP SC0-451 Tactical Perimeter Defense Exam Practice Test