A security analyst is concerned that a malicious piece of code was downloaded on a Linux system. After some research, the analyst determines that the suspected piece of code is performing a lot of input/output (I/O) on the disk drive.

Based on the output above, from which of the following process IDs can the analyst begin an investigation?

Options:

A 65
B 77
C 83
D 87  

Note : if you are not 100% sure then dont answer ... 

 

A security analyst is performing a vulnerability assessment on behalf of a client. The analyst must define what constitutes a risk to the organization.

Which of the following should be the analyst's FIRST action?

Options:

A Create a full inventory of information and data assets.
B Ascertain the impact of an attack on the availability of crucial resources.
C Determine which security compliance standards should be followed.
D Perform a full system penetration test to determine the vulnerabilities.

A security analyst is investigating a possible buffer overflow attack. The following output was found on a user's workstation:

graphic.linux_randomization.prg

Which of the following technologies would mitigate the manipulation of memory segments?

Options:

A NX bit
B ASLR
C DEP
D HSM  

2nd time because the first answer is confusing and not have the proper clarity 

A security analyst is investigating a possible buffer overflow attack. The following output was found on a user's workstation:

graphic.linux_randomization.prg

Which of the following technologies would mitigate the manipulation of memory segments?

Options:

A NX bit
B ASLR
C DEP
D HSM