CIW v5 Security Essentials (1D0-571) - CIW Actual Exam Questions
Last updated on April 15, 2026
Consider the following image of a packet capture: This packet capture has recorded two types of attacks. Which choice lists both attack types?
A dictionary attack and a worm-based attackA.A dictionary attack and a worm-based attack
A syn flood attack and a spoofing attackB.A syn flood attack and a spoofing attack
A worm attack and a botnet attack C.A worm attack and a botnet attack
A SQL injection attack and a virus attackD.A SQL injection attack and a virus attack
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
At what layer of the OSI/RM does a packet filter operate?
Layer 1
Layer 3
Layer 5
Layer 7
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
Irina has contracted with a company to provide Web design consulting services. The company has asked her to use several large files available via an HTTP server. The IT department has provided Irina with user name and password, as well as the DNS name of the HTTP server. She then used this information to obtain the files she needs to complete her task using Mozilla Firefox. Which of the following is a primary risk factor when authenticating with a standard HTTP server?
HTTP uses cleartext transmission during authentication, which can lead to a man-in-the-middle attack.
Irina has used the wrong application for this protocol, thus increasing the likelihood of a man-in- the-middle attack.
A standard HTTP connection uses public-key encryption that is not sufficiently strong, inviting the possibility of a man-in-the-middle attack.
Irina has accessed the Web server using a non-standard Web browser.
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
Your organization has made a particularly unpopular policy decision. Your supervisor fears that a series of attacks may occur as a result. You have been assigned to increase automated auditing on a server. When fulfilling this request, which of the following resources should you audit the most aggressively?
Authentication databases, including directory servers
Intrusion detection systems, especially those placed on sensitive networks
Log files on firewall systems
Firewall settings for desktop systems
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
Which of the following is most likely to address a problem with an operating system's ability to withstand an attack that attempts to exploit a buffer overflow?
Firewall
Software update
Intrusion detection system
Network scanner
to join the discussion
No discussions yet. Be the first to ask!
Delete Comment
Are you sure? This action cannot be undone.
Finish Practice?
Are you sure you want to finish? This will end your practice session.