Explore topic-wise InterviewSolutions in .

Right CHOICE is (a) True

The best I can EXPLAIN: Zero-day vulnerability is a type of vulnerability UNKNOWN to the creator or vendor of the SYSTEM or SOFTWARE. Until such bugs get fixed, hackers take advantage of these vulnerabilities to exploit the system.

The CORRECT option is (b) Window of vulnerability

The BEST EXPLANATION: Window of vulnerability is the timeframe from when the loophole in security was INTRODUCED or RELEASED till the time when the bug was fixed, or the illicit access was removed or the attacker was disabled.

The correct OPTION is (d) Information Security Management System

Best explanation: ISMS (Information Security Management System) is a set of policies concerning various information security management. ISMS (Information Security Management System) was developed for MANAGING risk management principles and COUNTERMEASURES for ENSURING security through rules and REGULATIONS.

Correct option is (a) SECURITY defect

The explanation: A security BUG also known as security defect is a SOFTWARE bug that attackers can TAKE advantage to gain unauthorized access in a system. They can harm legitimate users, compromise data CONFIDENTIALITY and integrity.

Right answer is (c) Security bug

The BEST EXPLANATION: A security bug is a SOFTWARE bug that ATTACKERS can take advantage to gain unauthorized access in a SYSTEM. They can harm all legitimate users, compromise data confidentiality and integrity.

Correct answer is (d) PIVOTING

To elaborate: Pivoting is a technique used by penetration testers to compromise any system WITHIN a NETWORK for targeting other systems. They test systems within the same network for VULNERABILITIES using this technique.

Right option is (a) LOCAL exploits

The best explanation: Local exploits are those type of exploit requires accessing to any vulnerable SYSTEM for enhancing PRIVILEGE for an attacker to run the exploit. They’ve to pass through granted system ADMINISTRATION in order to HARM the system.

The CORRECT choice is (a) True

The explanation is: REMOTE exploits is that type of exploits which uses internet for exploiting on SECURITY vulnerability without gaining any prior access to the TARGET system.

Right choice is (d) exploit

Explanation: An exploit is a piece of software or a segment of command that USUALLY take advantage of a bug to CAUSE unintended actions and behaviors. Using exploits, attackers can GAIN access in a system or allow privilege escalation also.

The CORRECT OPTION is (a) Vulnerabilities without RISK

To explain I would say: Vulnerabilities is defined as the weakness in a system that can be EXPLOITED by cyber-criminals and attackers. Risk can be defined as the potential of an impact that can grow from EXPLOITING the vulnerability. There is some vulnerability that doesn’t possess risk, known as “Vulnerabilities without risk”.

Right choice is (b) False

Explanation: RISK and vulnerability cannot be used interchangeably. Risk can be DEFINED as the potential of an impact that can GROW from EXPLOITING the vulnerability. There is some vulnerability that doesn’t possess risk, known as “Vulnerabilities without risk”.

Correct option is (d) VULNERABILITY management

To ELABORATE: Vulnerability management is a cyclic PROCESS for identifying & classifying and then solving the vulnerabilities in a system. This term is generally USED in software vulnerability detection and resolving process.

Correct OPTION is (b) Attack surface

The best I can explain: Attack surface can be defined as the sum of all the possible points in SOFTWARE or system where unauthorized users can enter as well as extract DATA from the system. More the SECURITY, lesser is the attack surface.

The correct option is (b) LC4

To elaborate: LC4 which was PREVIOUSLY known as L0phtCrack is a password auditing and recovery tool; used for TESTING strength of a password and ALSO helps in RECOVERING lost Microsoft Windows PASSWORDS.

Right OPTION is (b) False

Best explanation: L0phtCrack is now COMMONLY known as LC4 is a password AUDITING and recovery tool; used for testing strength of a password and also helps in recovering lost MICROSOFT Windows passwords.

Right answer is (b) WebInspect

To EXPLAIN: WebInspect is a popular web application security tool used for identifying KNOWN vulnerabilities RESIDING in web-application layer. It also HELPS in penetration testing of web servers.

Right answer is (d) injecting shell code

Easy explanation: WebInspect can check whether a web server is PROPERLY configured or not by ATTEMPTING for common ATTACKS such as Cross-site scripting, directory traversal, and parameter injection. But it cannot inject malicious shell code in the server.

Correct choice is (c) ANGRY IP Scanner

To explain: Angry IP scanner is a light-weight, cross-platform IP and PORT scanning tool that scans a range of IP. It USES the CONCEPT of multithreading for making fast efficient scanning.

Correct option is (d) EtterPeak

Explanation: EtterPeak is a NETWORK analysis TOOL that can be used for multiprotocol heterogeneous networking ARCHITECTURE. It can help in SNIFFING packets of network TRAFFIC.

Correct option is (a) SuperScan

For EXPLANATION: SuperScan has a very nice user-friendly interface and it is used for SCANNING TCP ports as well as RESOLVE HOSTNAMES. It is popularly used for scanning ports from a given RANGE of IP.

Correct option is (b) Wi-Fi attacks

Best explanation: Weak wireless encryption PROTOCOLS get easily cracked USING Aircrack WPA and Aircrack WEP. Its packet SNIFFING feature KEEPS track of all its TRAFFIC without making any attack.

Right choice is (d) what type of antivirus is in use

Easy EXPLANATION: Network Mapper (Nmap) is a popular open-source tool used for discovering network as WELL as SECURITY auditing. It usually CHECKS for different services used by the host, what operating SYSTEM it is running and the type of firewall it is using.

Right option is (c) Snort

The best I can explain: Snort is a NETWORK intrusion DETECTING application that deals with real-time TRAFFIC analysis. As the rules are set and kept updated, they help in MATCHING patterns against KNOWN patterns and protect your network.

The correct option is (c) Aircrack-ng

Best explanation: Weak wireless encryption protocols get easily cracked using Aircrack WPA and Aircrack WEP ATTACKS that comes with Aircrack-ng TOOL. Its packet sniffing feature keeps track of all its TRAFFIC WITHOUT making any ATTACK.

The correct OPTION is (a) network protocol ANALYSIS

To explain I would say: Wireshark is popular standardized network protocol analysis tools that allow in-depth CHECK and analysis of PACKETS from different protocols used by the system.

Correct option is (c) Nmap

Easiest EXPLANATION: Network Mapper (Nmap) is a popular open-source tool USED for discovering network as well as security auditing. It can be used for either a single host network or LARGE networks.

Right option is (B) Metasploit

Best explanation: In the year 2003, the Metasploit framework was released which made finding and cracking of VULNERABILITIES easy and is used by both white as well as BLACK hat hackers.

The correct choice is (a) True

Best explanation: Network Mapper (Nmap) is a popular open-source tool USED for discovering network as well as SECURITY AUDITING. It can be used for either a SINGLE host network or large networks.

Correct answer is (b) Proofpoint

The EXPLANATION: Proofpoint is a popular CORPORATE security TOOL that is used to detect an attack on email with cloud-only services. It helps firms detect attack vectors and loopholes in different security systems through which ATTACKERS may gain ACCESS.

Right option is (a) CENTRIFY

For explanation: Centrify helps in protecting businesses against data breaches that may MAKE threats to the cloud. This is done by securing Centrify USERS by providing internal, EXTERNAL and privileged users.

Right answer is (a) EventLog Analyser

To explain I would say: EventLog Analyser is a tool that BASICALLY keeps the log of data from networks, devices as WELL as applications in a single location. Latest ENCRYPTION TECHNIQUES are used for securing its STORED data.

Correct choice is (c) Mailbox EXCHANGE Recovery

For EXPLANATION: Mailbox Exchange Recovery is competent to restore corrupted Exchange Server Database files as well as RECOVERING unapproachable mails in mailboxes. This tool is popularly used by ethical HACKERS and cyber-forensics investigators in recovering emails, calendars, attachments, contacts from INACCESSIBLE mail-servers.

Right choice is (d) Tcpdump

For explanation I WOULD say: Tcpdump is a POPULAR command-line network packet analyzer. It allows its user in DISPLAYING TCP / IP as well as other data packets being transmitted or received over the computer network.

Right answer is (b) Netcat

Easy explanation: Netcat is an easy Unix utility that helps in reading and WRITING data across network connections, using TCP or UDP protocol. It is popularly used as a debugger and exploration tool that is found free for Windows and Mac OS also.

Right option is (c) Tone Locker

The best I can explain: ToneLoc is a popular and PRIMITIVE tool written for MS-DOS users. It is BASICALLY used by malicious ATTACKERS to guess USER accounts, finding entry points in modems and locating modems connected in the network.

The correct OPTION is (a) True

To explain: Network Stumbler is a popular tool that HELPS in detecting WLANs and helps hackers in finding non-broadcasting WIRELESS NETWORKS. It is popularly used as Wi-Fi scanning and monitoring tool for Windows.

Right option is (d) LANguard Network SECURITY Scanner

Explanation: LANguard Network Security Scanner HELPS in monitoring NETWORKS by SCANNING connected machines to provide information for every node. It can also be used for IDENTIFYING registry issues.

Correct answer is (C) MiTM attack

To explain I would say: LC4 is a password auditing and RECOVERY tool; used for testing strength of a password and also HELPS in recovering lost MICROSOFT Windows passwords using a HYBRID attack, brute-force attack as well as using a dictionary attack.

Correct option is (a) True

To ELABORATE: SECTION 79 of the Indian IT Act covers some of the CORPORATE and business laws circulating TECHNOLOGIES and cyberspace; declares that any 3^rd party information or personal DATA leakage in corporate firms or organizations will be a punishable offense.

The correct option is (d) section 72

To explain I would say: Cyber-criminals and BLACK HAT HACKERS do one common form of cyber-crime that is a misuse of DIGITAL signatures. The law for this fraudulent act comes under section 72 of the Indian IT Act.

Correct answer is (c) SECTION 66-C

The best explanation: STEALING of digital files, e-documents from any system or cloud or electronic device is a punishable offense that COMES under section 66 – C of the Indian IT ACT.

Right option is (d) section 66-A, 2008

Best EXPLANATION: Sending an offensive MESSAGE, emails o any digital content through an electronic medium to your recipient is a punishable OFFENSE that COMES under section 66 – A of the Indian IT Act, 2008.

Correct answer is (b) 3 years

For explanation I would say: Using of SPY cameras in malls and shops to capture private PARTS of any person, without the CONCERN of that VICTIM, then it comes under section 67 of IT Act, 2008 where the person doing such crime is punished with imprisonment of 3 years.

The correct answer is (a) True

The best explanation: USING of spy cameras in malls and shops to capture private parts of any PERSON, without the concern of that victim, then it COMES under section 67 of IT Act, 2008 where the person doing such crime is punished with a fine of Rs. 5 Lacs.

The correct answer is (d) 5

Explanation: IT Act 2008 make cyber-crime DETAILS more PRECISE where it MENTIONED if anyone publishes sexually explicit DIGITAL content then under section 67 – A he/she has to pay a legitimate amount of fine and imprisonment of five YEARS.

Right choice is (b) SECTION 67

For explanation: Using of spy cameras in malls and shops to capture private parts of any person, WITHOUT the concern of that victim, then it COMES under section 67 of IT Act, 2008 as a punishable OFFENSE.