Free Access CertNexus.ITS-110.v2023-03-31.q40 Practice Test (Page 2)

Question 1

A hacker is attempting to exploit a known software flaw in an IoT portal in order to modify the site's administrative configuration. Which of the following BEST describes the type of attack the hacker is performing?

A.Application fuzzing

B.Privilege escalation

C.Transmission control protocol (TCP) flooding

D.Birthday attack

Question 2

An IoT systems integrator has a very old IoT gateway that doesn't offer many security features besides viewing a system configuration page via browser over HTTPS. The systems integrator can't get their modern browser to bring up the page due to a cipher suite mismatch. Which of the following must the integrator perform before the configuration page can be viewed?

A.Downgrade the browser, as modern browsers have continued allowing connections to hosts that use only outdated cipher suites.

B.Downgrade the browser, as modern browsers have stopped allowing connections to hosts that use only outdated cipher suites.

C.Upgrade the browser, as modern browsers have stopped allowing connections to hosts that use only outdated cipher suites.

D.Upgrade the browser, as older browsers have stopped allowing connections to hosts that use only outdated cipher suites.

Question 3

A network administrator is looking to implement best practices for the organization's password policy. Which of the following elements should the administrator include?

A.No password expiration

B.Maximum length restriction

C.No use of special characters

D.Password history checks

Question 4

Which of the following attacks relies on the trust that a website has for a user's browser?

A.Cross-Site Scripting (XSS)

B.SQL Injection (SQLi)

C.Phishing

D.Cross-Site Request Forgery (CSRF)

Question 5

An IoT security administrator wishes to mitigate the risk of falling victim to Distributed Denial of Service (DDoS) attacks. Which of the following mitigation strategies should the security administrator implement? (Choose two.)

A.Block all inbound packets with an internal source IP address

B.Block all inbound packets originating from service ports

C.Block the use of Transmission Control Protocol (TCP) and User Datagram Protocol (UDP) through his perimeter firewall

D.Enable unused Transmission Control Protocol (TCP) service ports in order to create a honeypot

E.Require the use of X.509 digital certificates for all incoming requests

Latest Upload: 107Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 156TheSecOpsGroup.CNSP.v2025-09-08.q20; 206CFAInstitute.ESG-Investing.v2025-09-08.q173; 154PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 143Salesforce.Data-Architect.v2025-09-05.q216; 136Adobe.AD0-E605.v2025-09-05.q50; 176Nutanix.NCP-MCI-6.10.v2025-09-05.q55; 114Oracle.1z0-591.v2025-09-05.q104

Question 1

Question 2

Question 3

Question 4

Question 5

Download PDF File