信管网每日一练
信息安全工程师 - 每日一练 导航

信息安全工程师每日一练试题(2026/7/6)

2026年07月07日来源:信管网 作者:cnitpm

信息安全工程师当天每日一练试题地址:www.cnitpm.com/exam/ExamDay.aspx?t1=6

往期信息安全工程师每日一练试题汇总:www.cnitpm.com/class/27/e6_1.html

信息安全工程师每日一练试题(2026/7/6)在线测试:www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2026/7/6

点击查看:更多信息安全工程师习题与指导

信息安全工程师每日一练试题内容(2026/7/6)

  • 试题1

    攻击者在发动攻击之前会目标系统的信息,以下(  )不在攻击者收集的范围内。
    A.目标系统用户的IP地址

    查看答案

    试题参考答案:C

    完整试题与解析:www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2026/7/6

  • 试题2

    以下哪个工具主要用于检测网站服务器上的WebShell恶意代码?
    A.Nikto

    查看答案

    试题参考答案:D

    完整试题与解析:www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2026/7/6

  • 试题3

    己知DES算法S盒如下, 如果该S盒的输入为001011, 则其二进制输出为( )

    A.1011

    查看答案

    试题参考答案:B

    完整试题与解析:www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2026/7/6

  • 试题4

    操作系统或网络设备的使用控制采用(   )
    A.基于角色的访问控制规则

    查看答案

    试题参考答案:C

    完整试题与解析:www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2026/7/6

  • 试题5

    1949年,( )发表了题为《保密系统的通信理论》的文章,为密码技术的研究奠定了理论基础,由此密码学成了一门科学。
    A.Shannon

    查看答案

    试题参考答案:A

    完整试题与解析:www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2026/7/6

  • 试题6

    (   )Snort是轻量型的NIDS,它首先通过libpcap软件包监听( sniffer/logger)获得网络数据包,然后进行入侵检测分析。
    A.STAT

    查看答案

    试题参考答案:B

    完整试题与解析:www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2026/7/6

  • 试题7

    当发现核心业务系统中断或硬件设备故障时,启动I级处置程序,具体操作不正确的是(   )
    A.迅速判断故障节点,启用备用设备或线路

    查看答案

    试题参考答案:B

    完整试题与解析:www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2026/7/6

  • 试题8

    访问控制是对信息系统资源进行保护的重要措施,适当的访问控制能够阻止未经授权的用户有意或者无意地获取资源。信息系统访问控制的基本要素不包括(  )。
    A、主体
    B、客体
    C、授权访问
    D、身份认证

    查看答案

    试题参考答案:D

    完整试题与解析:www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2026/7/6

  • 试题9

    数据中心通常是指为实现对数据信息的集中处理、存储、传输、交换、管理以及为相关电子言息设备运行提供运行环境的建筑场所。以下描述错误的是(  )
    A.数据中心所有设备的金属外壳都应接地

    查看答案

    试题参考答案:B

    完整试题与解析:www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2026/7/6

  • 试题10

    There are different ways to perform IP based DoS Attacks. The most common IP based DoS attack is that an attacker sends an extensive amount of connection establishment (1)(e.g. TCP SYN requests) to establish hanging connections with the controller or a DPS. Such a way, the attacker can consume the network resources which should be available for legitimate users. In other (2), the attacker inserts a large amount of (3)packets to the data plane by spoofing all or part of the header fields with random values. These incoming packets will trigger table-misses and send lots of packet-in flow request messages to the network controller to saturate the controller resources. In some cases, an (4)who gains access to DPS can artificially generate lots of random packet-in flow request messages to saturate the control channel and the controller resources. Moreover, the lack of diversity among DPSs fuels fuels the fast propagation of such attacks.
    Legacy mobile backhaul devices are inherently protected against the propagation of attacks due to complex and vendor specific equipment. Moreover, legacy backhaul devices do not require frequent communication with core control devices in a manner similar to DPSs communicating with the centralized controller. These features minimize both the impact and propagation of DoS attacks. Moreover, the legacy backhaul devices are controlled as a joint effort of multiple network element. For instance, a single Long Term Evilution(LTE)eNodeB  is connected up to 32 MMEs. Therefore, DoS/DDoS attack on a single core element will not terminate the entire operation of a backhaul device(5)the net work.
    (1)
    A.message
    B、information
    C、requests
    D、data
    (2)
    A.methods
    B、cases
    C、hands
    D、sections
    (3)
    A.bad
    B、real
    C、fake
    D、new
    (4)
    A.user
    B、administrator
    C、editor
    D、attacker
    (5)
    A.or
    B、of
    C、in
    D、to

    查看答案

    试题参考答案:C、B、C、D、B

    完整试题与解析:www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2026/7/6

温馨提示:因考试政策、内容不断变化与调整,信管网提供的以上信息仅供参考,如有异议,请考生以权威部门公布的内容为准!

分享至:

信管网 - 信息系统项目管理专业网站

下载APP-在线学习