210-250 Exam Questions
198 real 210-250 exam questions with expert-verified answers and explanations. Page 4 of 4.
- Question #154Threats and Vulnerabilities
What phase of the TCP communication process is attacked during a TCP SYN flood attack?
TCP SYN floodthree-way handshakeDoS attackTCP/IP - Question #155Threats and Vulnerabilities
What two are examples of UDP-based attacks? (Choose two.)
UDP attacksSQL SlammerUDP floodingnetwork attacks - Question #156Threats and Vulnerabilities
What best describes an attack vector?
attack vectorthreat conceptsattack terminology - Question #157Threats and Vulnerabilities
What best describes an attack surface?
attack surfaceattack vectorssecurity terminology - Question #158Threats and Vulnerabilities
What is an example of a reconnaissance attack tool that will cycle through all well-known ports to provide a complete list of all services that are running on the hosts?
NMAPport scanningreconnaissancenetwork enumeration - Question #159Security Technologies
Which two are software vulnerability scanners? (Choose two.)
vulnerability scannersNessusOpenVASsecurity tools - Question #160Threats and Vulnerabilities
What best describes an amplification attack?
amplification attackreflection attackDDoSnetwork attack - Question #161Threats and Vulnerabilities
What best describes a DoS attack?
DoS attackdenial of serviceattack concepts - Question #162Threats and Vulnerabilities
What type of attack occurs when the attacker spoofs the IP address of the victim, sending a continuous stream of small requests, which produce a continuous stream of much larger re...
amplification attackIP spoofingDDoSnetwork attacks - Question #163Threats and Vulnerabilities
What type of attack occurs when an attacker sends a flood of protocol request packets to various IP hosts and the attacker spoofs the source IP address of the packets, such that ea...
reflection attackIP spoofingDDoSprotocol flooding - Question #164Threats and Vulnerabilities
What type of spoofing attack uses fake source IP addresses that are different than their real IP addresses?
IP spoofingsource address forgerynetwork spoofing - Question #165Threats and Vulnerabilities
Which two attacks can be caused by a rogue DHCP server? (Choose two.)
rogue DHCPMITMDoSnetwork attacks - Question #166Threats and Vulnerabilities
A ping attack that exploits the broadcast IP address in a subnet is referred to as what type of attack?
smurf attackICMPbroadcast addressDDoS - Question #167Threats and Vulnerabilities
Which protocol or diagnostic tool helps you determine how many hops away a network is and can be exploited by an attacker?
traceroutenetwork reconnaissanceprotocol exploitation - Question #168Threats and Vulnerabilities
Which part of the UDP header would attackers replace if they change the data payload to prevent the receiver from identifying the change?
UDP headerchecksum manipulationpacket tamperingprotocol vulnerabilities - Question #169Security Technologies
Which two methods might be used by an analyst to detect SSL/TLS encrypted command-and- control communication? (Choose two.)
SSL/TLS inspectionC2 detectionNetFlow analysisencrypted traffic - Question #170Security Technologies
What are two examples of the impacts of cryptography on security investigations that an analyst must know? (Choose two.)
cryptography impactssecurity investigationsattacker evasioncryptanalysis - Question #171Security Technologies
Which type of ciphers rearrange or permute letters?
transposition cipherclassical cipherspermutationcryptography basics - Question #172Security Technologies
In which technology is network level encrypted not natively incorporated?
Kerberosnetwork encryptionIPsecTLS - Question #173Security Technologies
Which one of the following algorithms is most susceptible to collision when hashing different data sets?
MD5hash collisioncryptographic weaknesshashing algorithms - Question #174Security Technologies
What is the primary purpose for using a hash algorithm for a message?
hash algorithmdata integritymessage authentication - Question #175Security Technologies
Which one of the following options is used to determine the strength of a modern encryption algorithm?
encryption strengthkey sizecryptographic algorithm - Question #176Security Technologies
What is the primary purpose for using an encryption algorithm on a message?
encryptionconfidentialitydata protection - Question #177Cybersecurity Fundamentals
After encryption has been applied to a message, what is the message identified as?
ciphertextencryption terminologycryptography basics - Question #178Security Technologies
Which type of encryption algorithm uses the same key to encrypt and decrypt data?
symmetric encryptionshared keycryptography - Question #179Security Technologies
Which type of encryption algorithm uses the different but related keys to encrypt and decrypt data?
asymmetric encryptionpublic key cryptographykey pairs - Question #180Threats and Vulnerabilities
One cryptanalysis method that is used to defeat a multi-step encryption process uses both the original clear text to work forward toward an intermediate value, and the ending ciphe...
meet-in-the-middle attackcryptanalysismulti-step encryptionkey space reduction - Question #181Cybersecurity Fundamentals
Which one of the following statements best describes crypto analysis?
cryptanalysiscode breakingencryption fundamentals - Question #182Threats and Vulnerabilities
Of the following, in which type of an attack does the attacker try every possible key with the decryption algorithm, knowing that eventually one of the keys will work?
brute-force attackcryptanalysisencryptionkey exhaustion - Question #183Security Technologies
Which one of the following options is the block cipher mode that uses an encryption method which has a feedback mechanism where each plaintext block is XORed with the previously en...
CBC modeblock cipherDESXOR chaining - Question #184Security Technologies
Which one of the following encryption algorithms is the preferred symmetrical algorithm that is intended to replace 3DES?
AESsymmetric encryption3DES replacementencryption algorithms - Question #185Security Technologies
Which one of the following encryption methodologies allows you to maintain the privacy of an email communication, and ensure the origin of the message using PGP?
PGPemail encryptionasymmetric encryptionorigin authentication - Question #186Security Technologies
To provide origin authentication, the sender encrypts the message using an asymmetric encryption algorithm. In this case, the receiver of the message must use what to decrypt the m...
asymmetric encryptionpublic keyorigin authenticationdigital signatures - Question #187Security Technologies
Which one of the following parts of the Diffie-Hellman calculation is an arbitrary item that is agreed upon by both parties before any mathematical calculations?
Diffie-Hellmankey exchangeprime numbercryptographic parameters - Question #188Security Technologies
Which statement about the Diffie-Hellman Key Agreement is true?
Diffie-Hellman groupskey sizekey exchangecryptographic strength - Question #189Security Technologies
Which one of the following is the first exchange during SSHv1 authentication negotiation?
SSHv1authentication negotiationpublic keyprotocol handshake - Question #190Security Technologies
To communicate that a document is using a digital signature, which one of the following is the next step in the process after a hash of the document is calculated by the sender?
digital signatureshash functionprivate key encryptionsigning process - Question #191Security Technologies
Which three security services do digital signatures provide? (Choose three.)
digital signaturesintegritynon-repudiationauthenticity - Question #192Security Technologies
When using PKI which two of the following are true? (Choose two.)
PKIX.509 certificatescertificate authoritytrust model - Question #193Security Technologies
Which five of the following options are components of the X.509 v3 certificate standard? (Choose five.)
X.509 v3certificate componentsPKIdigital certificates - Question #194Security Technologies
Which one of the following actions should be taken by a client to verify the entity that they received a certificate from is the entity that should be using the certificate?
certificate validationpublic key verificationPKIpeer authentication - Question #195Security Technologies
Which two of the following statements are true regarding the CA in a PKI deployment? (Choose two.)
certificate authorityPKICRLOCSP - Question #196Security Technologies
Which two of the following options must be included in the CSR that is to be signed by a CA? (Choose two.)
CSRcertificate signing requestPKIpublic key - Question #197Security Technologies
To facilitate encrypted bulk data transfer using the TLS protocol, the shared secret key that is sent from the client to the server is encrypted with which key?
TLSkey exchangeserver public keybulk encryption - Question #198Security Technologies
What TCP port does SSL/TLS use for HTTPS communications?
SSL/TLSHTTPSTCP port 443network protocols - Question #199Security Technologies
The ECDHE_ECDSA part of the cipher list identifies which one of the following algorithms?
TLS cipher suiteECDHEECDSAkey exchange authentication - Question #200Security Technologies
Which four of the following information is included in sets of cryptographic algorithms that are defined by an SSL/TLS cipher suite? (Choose four.)
TLS cipher suiteencryption algorithmsMACPRF - Question #201Threats and Vulnerabilities
Many legacy cipher suites available in TLS are deemed insecure. Which three of the following traits make them insecure? (Choose three.)
insecure cipher suitesDESRC4MD5 weaknesses