Which Host-based IDS (HIDS) method of log monitoring utilizes a list of keywords or phrases that define the events of interest for the analyst, then takes a list of keywords to watch for and generates alerts when it sees matches in log file activity?

1. A. Passive analysis
2. B. Retroactive analysis
3. C. Exclusive analysis
4. D. Inclusive analysis

Correct Answer: D

Which of the following is a characteristic of hash operations?

1. A. Asymmetric
2. B. Non-reversible
3. C. Symmetric
4. D. Variable length output

Correct Answer: D

Which layer of the TCP/IP Protocol Stack Is responsible for port numbers?

1. A. Network
2. B. Transport
3. C. Internet
4. D. Application

Correct Answer: B

What type of malware is a self-contained program that has the ability to copy itself without parasitically infecting other host code?

1. A. Trojans
2. B. Boot infectors
3. C. Viruses
4. D. Worms

Correct Answer: D

Which of the following tools is used to configure, control, and query the TCP/IP network interface parameters?

1. A. NSLOOKUP
2. B. IPCONFIG
3. C. ARP
4. D. IFCONFIG

Correct Answer: D