112-52 Exam Questions

Which technique is commonly used to enable packet sniffing on a network?

Which mobile-specific attack can be performed through public Wi-Fi networks?

Which of the following best describes a zero-day vulnerability?

What is a critical countermeasure for protecting OT environments?

What is a primary security measure to prevent Cross-Site Scripting (XSS) attacks?

Which strategy is crucial for enhancing the security of IoT devices?

Which security measure MOST effectively reduces unauthorized access in cloud environments?

What is the primary purpose of packet sniffing in a network security context?

What is the role of containerization in cloud security?

Which deployment model in cloud computing is owned, managed, and operated by a business, organization, or entity exclusively?

Which technique involves trying all possible combinations of characters until the correct password is found?

Which of the following best describes a vulnerability in the context of information security?

Which phase of the ethical hacking cycle involves gathering information about the target?

Which of the following is a common wireless network-specific attack technique?

Which of the following is considered a physical threat?

What is the best way to mitigate social engineering attacks in an organization?

What is the main goal of a Bluetooth attack?

What is an effective countermeasure against wireless sniffing?

Which attack involves overwhelming a web server with traffic, making it inaccessible to legitimate users?

What vulnerability is particularly concerning for IoT devices due to their widespread and often unattended deployment?

Which is a security challenge unique to IoT environments?

Which type of attack exploits the trust that a site has in a user's browser?

Which tool is widely used for password recovery by trying millions of combinations per second?

Containers offer a lightweight alternative to virtual machines by sharing the host OS's kernel. What is a key security practice for containers?

Which principle ensures that only authorized individuals can access information?

What is the primary purpose of a vulnerability scanner?

Which legislation is specifically designed to protect the privacy of electronic health records?

Which of the following is an example of a passive attack?

What differentiates a vulnerability scan from a penetration test?

What is the primary objective of penetration testing?

Which of the following is an effective countermeasure against ransomware attacks?

What is the primary function of a vulnerability assessment?

Which is a wireless network attack?

What distinguishes a white hat hacker from other types of hackers?

Phishing attacks typically occur through which medium?

What is the primary goal of an information security program?

Which of the following is the MOST effective countermeasure against SQL Injection attacks?

Which countermeasure can help in reducing the risk of tailgating?

Which of the following is a common mobile platform vulnerability?

In which phase of the Cyber Kill Chain does a hacker deliver a payload to a target system?

What are effective countermeasures against IoT threats? (Choose two)

Which activity is part of a vulnerability assessment process?

Which phase in the ethical hacking cycle involves finding exploitable vulnerabilities in the target system?

Which of the following is a significant mobile platform attack vector?

What is the primary goal of social engineering attacks?

Which phase of the hacking cycle involves gathering detailed information about target systems and services?

Which phase of penetration testing involves gathering information about the target?

Which of the following is an effective countermeasure against mobile device threats?

Which of the following is a common communication protocol used by IoT devices?

Which measure significantly improves wireless network security?