Home / ISC / SSCP / SSCP - System Security Certified Practitioner (SSCP)

ISC All Exams PDF


1 Month PDF Access For All Available Exams with Updates
$100

$400

Buy ISC All ExamsDisclaimer: Fair Usage Policy - Daily 5 Downloads

ISC SSCP Dumps

Total Questions Answers: 1074
Last Updated: 14-Nov-2024
Available with 1, 3, 6 and 12 Months Free Updates Plans
PDF: $15 $60

Test Engine: $20 $80

PDF + Engine: $25 $99

Check Our Recently Added SSCP Exam Questions


Question # 1



Which of the following technologies is a target of XSS or CSS (Cross-Site Scripting)
attacks?

A.

Web Applications

B.

Intrusion Detection Systems

C.

Firewalls

D.

DNS Servers




A.
  

Web Applications



XSS or Cross-Site Scripting is a threat to web applications where malicious
code is placed on a website that attacks the use using their existing authenticated session
status.
Cross-Site Scripting attacks are a type of injection problem, in which malicious scripts are
injected into the otherwise benign and trusted web sites. Cross-site scripting (XSS) attacks
occur when an attacker uses a web application to send malicious code, generally in the
form of a browser side script, to a different end user. Flaws that allow these attacks to
succeed are quite widespread and occur anywhere a web application uses input from a
user in the output it generates without validating or encoding it.
An attacker can use XSS to send a malicious script to an unsuspecting user. The end
user’s browser has no way to know that the script should not be trusted, and will execute
the script. Because it thinks the script came from a trusted source, the malicious script can
access any cookies, session tokens, or other sensitive information retained by your
browser and used with that site. These scripts can even rewrite the content of the HTML
page.
Mitigation:
Configure your IPS - Intrusion Prevention System to detect and suppress this traffic.
Input Validation on the web application to normalize inputted data.
Set web apps to bind session cookies to the IP Address of the legitimate user and only
permit that IP Address to use that cookie.
See the XSS (Cross Site Scripting) Prevention Cheat Sheet
See the Abridged XSS Prevention Cheat Sheet
See the DOM based XSS Prevention Cheat Sheet
See the OWASP Development Guide article on Phishing.
See the OWASP Development Guide article on Data Validation. The following answers are incorrect:
Intrusion Detection Systems: Sorry. IDS Systems aren't usually the target of XSS attacks
but a properly-configured IDS/IPS can "detect and report on malicious string and suppress
the TCP connection in an attempt to mitigate the threat.
Firewalls: Sorry. Firewalls aren't usually the target of XSS attacks.
DNS Servers: Same as above, DNS Servers aren't usually targeted in XSS attacks but
they play a key role in the domain name resolution in the XSS attack process.
The following reference(s) was used to create this question:
CCCure Holistic Security+ CBT and Curriculum
and
https://www.owasp.org/index.php/Cross-site_Scripting_%28XSS%29





Question # 2



The high availability of multiple all-inclusive, easy-to-use hacking tools that do NOT require
much technical knowledge has brought a growth in the number of which type of attackers?

A.

Black hats

B.

White hats

C.

Script kiddies

D.

Phreakers




C.
  

Script kiddies



As script kiddies are low to moderately skilled hackers using available scripts
and tools to easily launch attacks against victims.
The other answers are incorrect because :
Black hats is incorrect as they are malicious , skilled hackers.
White hats is incorrect as they are security professionals.
Phreakers is incorrect as they are telephone/PBX (private branch exchange) hackers.
Reference : Shon Harris AIO v3 , Chapter 12: Operations security , Page : 830





Question # 3



What best describes a scenario when an employee has been shaving off pennies from
multiple accounts and depositing the funds into his own bank account?

A.

Data fiddling

B.

Data diddling

C.

Salami techniques

D.

Trojan horses




C.
  

Salami techniques



Source: HARRIS, Shon, All-In-One CISSP Certification Exam Guide,
McGraw-Hill/Osborne, 2001, Page 644.





Question # 4



In computing what is the name of a non-self-replicating type of malware program containing
malicious code that appears to have some useful purpose but also contains code that has
a malicious or harmful purpose imbedded in it, when executed, carries out actions that are
unknown to the person installing it, typically causing loss or theft of data, and possible
system harm.

A.

virus

B.

worm

C.

Trojan horse.

D.

trapdoor




C.
  

Trojan horse.



A trojan horse is any code that appears to have some useful purpose but
also contains code that has a malicious or harmful purpose imbedded in it. A Trojan often
also includes a trapdoor as a means to gain access to a computer system bypassing
security controls.
Wikipedia defines it as:
A Trojan horse, or Trojan, in computing is a non-self-replicating type of malware program containing malicious code that, when executed, carries out actions determined by the
nature of the Trojan, typically causing loss or theft of data, and possible system harm. The
term is derived from the story of the wooden horse used to trick defenders of Troy into
taking concealed warriors into their city in ancient Greece, because computer Trojans often
employ a form of social engineering, presenting themselves as routine, useful, or
interesting in order to persuade victims to install them on their computers.
The following answers are incorrect:
virus. Is incorrect because a Virus is a malicious program and is does not appear to be
harmless, it's sole purpose is malicious intent often doing damage to a system. A computer
virus is a type of malware that, when executed, replicates by inserting copies of itself
(possibly modified) into other computer programs, data files, or the boot sector of the hard
drive; when this replication succeeds, the affected areas are then said to be "infected".
worm. Is incorrect because a Worm is similiar to a Virus but does not require user
intervention to execute. Rather than doing damage to the system, worms tend to selfpropagate
and devour the resources of a system. A computer worm is a standalone
malware computer program that replicates itself in order to spread to other computers.
Often, it uses a computer network to spread itself, relying on security failures on the target
computer to access it. Unlike a computer virus, it does not need to attach itself to an
existing program. Worms almost always cause at least some harm to the network, even if
only by consuming bandwidth, whereas viruses almost always corrupt or modify files on a
targeted computer.
trapdoor. Is incorrect because a trapdoor is a means to bypass security by hiding an entry
point into a system. Trojan Horses often have a trapdoor imbedded in them.
References:
http://en.wikipedia.org/wiki/Trojan_horse_%28computing%29
and
http://en.wikipedia.org/wiki/Computer_virus
and
http://en.wikipedia.org/wiki/Computer_worm
and
http://en.wikipedia.org/wiki/Backdoor_%28computing%29 





Question # 5



Crackers today are MOST often motivated by their desire to:

A.

Help the community in securing their networks.

B.

Seeing how far their skills will take them.

C.

Getting recognition for their actions.

D.

Gaining Money or Financial Gains.




D.
  

Gaining Money or Financial Gains.



A few years ago the best choice for this question would have been seeing
how far their skills can take them. Today this has changed greatly, most crimes committed
are financially motivated.
Profit is the most widespread motive behind all cybercrimes and, indeed, most crimeseveryone
wants to make money. Hacking for money or for free services includes a
smorgasbord of crimes such as embezzlement, corporate espionage and being a “hacker
for hire”. Scams are easier to undertake but the likelihood of success is much lower.
Money-seekers come from any lifestyle but those with persuasive skills make better con
artists in the same way as those who are exceptionally tech-savvy make better “hacks for
hire”.
"White hats" are the security specialists (as opposed to Black Hats) interested in helping
the community in securing their networks. They will test systems and network with the
owner authorization.
A Black Hat is someone who uses his skills for offensive purpose. They do not seek
authorization before they attempt to comprise the security mechanisms in place.
"Grey Hats" are people who sometimes work as a White hat and other times they will work as a "Black Hat", they have not made up their mind yet as to which side they prefer to be.
The following are incorrect answers:
All the other choices could be possible reasons but the best one today is really for financial
gains.
References used for this question:
http://library.thinkquest.org/04oct/00460/crimeMotives.html
and
http://www.informit.com/articles/article.aspx?p=1160835
and
http://www.aic.gov.au/documents/1/B/A/%7B1BA0F612-613A-494D-B6C5-
06938FE8BB53%7Dhtcb006.pdf





Question # 6



Java is not:

A.

Object-oriented.

B.

Distributed.

C.

Architecture Specific.

D.

Multithreaded.




C.
  

Architecture Specific.



JAVA was developed so that the same program could be executed on
multiple hardware and operating system platforms, it is not Architecture Specific.
The following answers are incorrect:
Object-oriented. Is not correct because JAVA is object-oriented. It should use the objectoriented
programming methodology.
Distributed. Is incorrect because JAVA was developed to be able to be distrubuted, run on
multiple computer systems over a network. Multithreaded. Is incorrect because JAVA is multi-threaded that is calls to subroutines as is
the case with object-oriented programming.
A virus is a program that can replicate itself on a system but not necessarily spread itself by
network connections.





Question # 7



What do the ILOVEYOU and Melissa virus attacks have in common?

A.

They are both denial-of-service (DOS) attacks.

B.

They have nothing in common.

C.

They are both masquerading attacks.

D.

They are both social engineering attacks.




C.
  

They are both masquerading attacks.



While a masquerading attack can be considered a type of social engineering,
the Melissa and ILOVEYOU viruses are examples of masquerading attacks, even if it may
cause some kind of denial of service due to the web server being flooded with messages.
In this case, the receiver confidently opens a message coming from a trusted individual,
only to find that the message was sent using the trusted party's identity.
Source: HARRIS, Shon, All-In-One CISSP Certification Exam Guide, McGraw-
Hill/Osborne, 2002, Chapter 10: Law, Investigation, and Ethics (page 650). 





Question # 8



What is malware that can spread itself over open network connections?

A.

Worm

B.

 Rootkit

C.

Adware

D.

Logic Bomb




A.
  

Worm



Computer worms are also known as Network Mobile Code, or a virus-like bit
of code that can replicate itself over a network, infecting adjacent computers.
A computer worm is a standalone malware computer program that replicates itself in order
to spread to other computers. Often, it uses a computer network to spread itself, relying on
security failures on the target computer to access it. Unlike a computer virus, it does not
need to attach itself to an existing program. Worms almost always cause at least some
harm to the network, even if only by consuming bandwidth, whereas viruses almost always
corrupt or modify files on a targeted computer.
A notable example is the SQL Slammer computer worm that spread globally in ten minutes
on January 25, 2003. I myself came to work that day as a software tester and found all my
SQL servers infected and actively trying to infect other computers on the test network.
A patch had been released a year prior by Microsoft and if systems were not patched and
exposed to a 376 byte UDP packet from an infected host then system would become
compromised.
Ordinarily, infected computers are not to be trusted and must be rebuilt from scratch but the
vulnerability could be mitigated by replacing a single vulnerable dll called sqlsort.dll.
Replacing that with the patched version completely disabled the worm which really illustrates to us the importance of actively patching our systems against such network
mobile code.
The following answers are incorrect:
- Rootkit: Sorry, this isn't correct because a rootkit isn't ordinarily classified as network
mobile code like a worm is. This isn't to say that a rootkit couldn't be included in a worm,
just that a rootkit isn't usually classified like a worm. A rootkit is a stealthy type of software,
typically malicious, designed to hide the existence of certain processes or programs from
normal methods of detection and enable continued privileged access to a computer. The
term rootkit is a concatenation of "root" (the traditional name of the privileged account on
Unix operating systems) and the word "kit" (which refers to the software components that
implement the tool). The term "rootkit" has negative connotations through its association
with malware.
- Adware: Incorrect answer. Sorry but adware isn't usually classified as a worm. Adware, or
advertising-supported software, is any software package which automatically renders
advertisements in order to generate revenue for its author. The advertisements may be in
the user interface of the software or on a screen presented to the user during the
installation process. The functions may be designed to analyze which Internet sites the
user visits and to present advertising pertinent to the types of goods or services featured
there. The term is sometimes used to refer to software that displays unwanted
advertisements.
- Logic Bomb: Logic bombs like adware or rootkits could be spread by worms if they exploit
the right service and gain root or admin access on a computer.
The following reference(s) was used to create this question:
The CCCure CompTIA Holistic Security+ Tutorial and CBT
and
http://en.wikipedia.org/wiki/Rootkit
and
http://en.wikipedia.org/wiki/Computer_worm
and
http://en.wikipedia.org/wiki/Adware





Question # 9



Which of the following computer crime is MORE often associated with INSIDERS?

A.

IP spoofing

B.

Password sniffing

C.

Data diddling

D.

Denial of service (DOS)




C.
  

Data diddling



It refers to the alteration of the existing data , most often seen before it is
entered into an application.This type of crime is extremely common and can be prevented
by using appropriate access controls and proper segregation of duties. It will more likely be
perpetrated by insiders, who have access to data before it is processed.
The other answers are incorrect because :
IP Spoofing is not correct as the questions asks about the crime associated with the
insiders. Spoofing is generally accomplished from the outside.
Password sniffing is also not the BEST answer as it requires a lot of technical knowledge in
understanding the encryption and decryption process.
Denial of service (DOS) is also incorrect as most Denial of service attacks occur over the internet.
Reference : Shon Harris , AIO v3 , Chapter-10 : Law , Investigation & Ethics , Page : 758-
760.





Question # 10



Which virus category has the capability of changing its own code, making it harder to detect
by anti-virus software?

A.

Stealth viruses

B.

Polymorphic viruses

C.

Trojan horses

D.

Logic bombs




B.
  

Polymorphic viruses



A polymorphic virus has the capability of changing its own code, enabling it
to have many different variants, making it harder to detect by anti-virus software. The
particularity of a stealth virus is that it tries to hide its presence after infecting a system. A
Trojan horse is a set of unauthorized instructions that are added to or replacing a legitimate
program. A logic bomb is a set of instructions that is initiated when a specific event occurs.
Source: HARRIS, Shon, All-In-One CISSP Certification Exam Guide, McGraw-
Hill/Osborne, 2002, chapter 11: Application and System Development (page 786).




Get 1074 System Security Certified Practitioner (SSCP) questions Access in less then $0.12 per day.

ISC Bundle 1:


1 Month PDF Access For All ISC Exams with Updates
$100

$400

Buy Bundle 1

ISC Bundle 2:


3 Months PDF Access For All ISC Exams with Updates
$200

$800

Buy Bundle 2

ISC Bundle 3:


6 Months PDF Access For All ISC Exams with Updates
$300

$1200

Buy Bundle 3

ISC Bundle 4:


12 Months PDF Access For All ISC Exams with Updates
$400

$1600

Buy Bundle 4
Disclaimer: Fair Usage Policy - Daily 5 Downloads

System Security Certified Practitioner (SSCP) Exam Dumps


Exam Code: SSCP
Exam Name: System Security Certified Practitioner (SSCP)

  • 90 Days Free Updates
  • ISC Experts Verified Answers
  • Printable PDF File Format
  • SSCP Exam Passing Assurance

Get 100% Real SSCP Exam Dumps With Verified Answers As Seen in the Real Exam. System Security Certified Practitioner (SSCP) Exam Questions are Updated Frequently and Reviewed by Industry TOP Experts for Passing SSCP Exam Quickly and Hassle Free.

ISC SSCP Dumps


Struggling with System Security Certified Practitioner (SSCP) preparation? Get the edge you need! Our carefully created SSCP dumps give you the confidence to pass the exam. We offer:

1. Up-to-date SSCP practice questions: Stay current with the latest exam content.
2. PDF and test engine formats: Choose the study tools that work best for you.
3. Realistic ISC SSCP practice exam: Simulate the real exam experience and boost your readiness.

Pass your SSCP exam with ease. Try our study materials today!


Prepare your SSCP exam with confidence!

We provide top-quality SSCP exam dumps materials that are:

1. Accurate and up-to-date: Reflect the latest ISC exam changes and ensure you are studying the right content.
2. Comprehensive Cover all exam topics so you do not need to rely on multiple sources.
3. Convenient formats: Choose between PDF files and online System Security Certified Practitioner (SSCP) practice test for easy studying on any device.

Do not waste time on unreliable SSCP practice test. Choose our proven SSCP study materials and pass with flying colors. Try Dumps4free System Security Certified Practitioner (SSCP) 2024 material today!

SSCP Exams
  • Assurance

    System Security Certified Practitioner (SSCP) practice exam has been updated to reflect the most recent questions from the ISC SSCP Exam.

  • Demo

    Try before you buy! Get a free demo of our SSCP exam dumps and see the quality for yourself. Need help? Chat with our support team.

  • Validity

    Our ISC SSCP PDF contains expert-verified questions and answers, ensuring you're studying the most accurate and relevant material.

  • Success

    Achieve SSCP success! Our System Security Certified Practitioner (SSCP) exam questions give you the preparation edge.

If you have any question then contact our customer support at live chat or email us at support@dumps4free.com.