More sophisticated IDSs look for common shellcode signatures. But even these systems can be bypassed, by using polymorphic shellcode. This is a technique common among virus writers ?it basically hides the true nature of the shellcode in different disguises.

How does a polymorphic shellcode work?

A. They encrypt the shellcode by XORing values over the shellcode, using loader code to decrypt the shellcode, and then executing the decrypted shellcode

B. They convert the shellcode into Unicode, using loader to convert back to machine code then executing them

C. They reverse the working instructions into opposite order by masking the IDS signatures

D. They compress shellcode into normal instructions, uncompress the shellcode using loader code and then executing the shellcode

A majority of attacks come from insiders, people who have direct access to a company's computer system as part of their job function or a business relationship. Who is considered an insider?

A. A competitor to the company because they can directly benefit from the publicity generated by making such an attack

B. Disgruntled employee, customers, suppliers, vendors, business partners, contractors, temps, and consultants

C. The CEO of the company because he has access to all of the computer systems

D. A government agency since they know the company's computer system strengths and weaknesses

Which of the following is a hashing algorithm?

A. MD5

B. PGP

C. DES

D. ROT13

Which of the following are valid types of rootkits? (Choose three.)

A. Hypervisor level

B. Network level

C. Kernel level

D. Application level

E. Physical level

F. Data access level

Which of the following items of a computer system will an anti-virus program scan for viruses?

A. Boot Sector

B. Deleted Files

C. Windows Process List

D. Password Protected Files