- (Topic 2)
Johnny is a member of the hacking group Orpheus1. He is currently working on breaking into the Department of Defense's front end Exchange Server. He was able to get into the server, located in a DMZ, by using an unused service account that had a very weak password that he was able to guess. Johnny wants to crack the administrator password, but does not have a lot of time to crack it. He wants to use a tool that already has the LM hashes computed for all possible permutations of the administrator password.
What tool would be best used to accomplish this?

1. A. SMBCrack
2. B. SmurfCrack
3. C. PSCrack
4. D. RainbowTables

Correct Answer: D

- (Topic 2)
Frederickson Security Consultants is currently conducting a security audit on the networks of Hawthorn Enterprises, a contractor for the Department of Defense. Since Hawthorn Enterprises conducts business daily with the federal government, they must abide by very stringent security policies. Frederickson is testing all of Hawthorn's physical and logical security measures including biometrics, passwords, and permissions. The federal government requires that all users must utilize random, non-dictionary passwords that must take at least 30 days to crack. Frederickson has confirmed that all Hawthorn employees use a random password generator for their network passwords. The Frederickson consultants have saved off numerous SAM files from Hawthorn's servers using Pwdump6 and are going to try and crack the network passwords. What method of attack is best suited to crack these passwords in the shortest amount of time?

1. A. Brute force attack
2. B. Birthday attack
3. C. Dictionary attack
4. D. Brute service attack

Correct Answer: A

- (Topic 1)
In Trojan terminology, what is required to create the executable file chess.exe as shown below?

1. A. Mixer
2. B. Converter
3. C. Wrapper
4. D. Zipper

Correct Answer: C

- (Topic 1)
A rootkit is a collection of tools (programs) that enable administrator-level access to a computer. This program hides itself deep into an operating system for malicious activity and is extremely difficult to detect. The malicious software operates in a stealth fashion by hiding its files, processes and registry keys and may be used to create a hidden directory or folder designed to keep out of view from a user's operating system and security software.

What privilege level does a rootkit require to infect successfully on a Victim's machine?

1. A. User level privileges
2. B. Ring 3 Privileges
3. C. System level privileges
4. D. Kernel level privileges

Correct Answer: D

- (Topic 5)
Which of the following viruses tries to hide from anti-virus programs by actively altering and corrupting the chosen service call interruptions when they are being run?

1. A. Cavity virus
2. B. Polymorphic virus
3. C. Tunneling virus
4. D. Stealth virus

Correct Answer: D