Test your basic knowledge |

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Infects MBR - no network spreading potential






2. Simple attack done by simply browsing available information that's allowed on a local network.






3. Good for multimedia - can use small single packets - multicasting is required - speed is the highest priority






4. flags anomalous conditions in traffic on the network - requires understanding on what is normal - bases good traffic as a baseline






5. Protocol for mapping an IP address to a physical machine address that is recognized on the local network - A table - usually called the ARP cache - is used to maintain a correlation between each MAC and it's corresponding IP address






6. Bits of code embedded in programs to quickly gain access at a later time






7. A TCP version of ping - sends custom TCP packets to a host and listens for replies - enables port scanning and spoofing simultaneously






8. packet filter firewalls rely on TCP flags to determine connection state. Attacker can send ACK packets only to bypass firewall.






9. Infected millions through various methods - vulnerability in the MS Server Service - brute force admin password through network shares - infect removable devices with a malicious autorun script






10. Poor programming without error checking can allow commands to be run in an input field. This can point to a command further in the buffer that will execute the attacker's payload.






11. Very simplistic. All systems are attached to the same cable segment. Rarely used because they're unreliable - low fault tolerance - poor traffic isolation - with limited scalability






12. Provides insight into traffic on the network - help detect problems with network operations - provides auditing for other security measures






13. Provides insight into the tactics - motives - and attacker tools






14. 1 and 2 - Voice/Low speed data - 3 - Voice/Data 10Mb - 4 - Voice/Data 16Mb - 5 - 5e - Voice/Data 100Mb to 1Gb - 6 - Standard for gigabit






15. Going around with equipment to detect wireless networks






16. removable media - email attachments - web browsing - social networking - network vulnerabilities - IM applications - p2p






17. A spoofed IP is used to send a SYN to the target. It then responds with a SYN/ACK that never receives the final ACK to complete the handshake. This occupies a portion of the target's pre-established buffer for TCP and can prevent the target from acce






18. An attacker spoofs the victim's IP and sends an ICMP ECHO request to the broadcast address of a network. When every system responds - a DoS occurs.






19. 53 bytes - 48 bytes for data - 5 bytes for the header






20. rules indicate criteria in packets that represent events of interest - rules are applied to packets as they are received - alerts are created when matches are found






21. War dialing - war driving - Sniffing - eavesdropping - dumpster diving - social engineering






22. OSI






23. Allows segmentation of a switch into different networks - regardless of where a system is plugged in - creates separate networks through software not hardware

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


24. 8 bytes per packet - UDP SRC port - UDP DST Ports - UDP length - UDP Checksum






25. Attaches itself to existing program files and activated when the exe is launched






26. Common backdoor to open a port - port scan scans for open ports on remote host - scans 0 - 65 -535 twice. TCP and UDP






27. UDP based infection - infected through vulnerability in SQL server - caused DoS on saturated networks






28. keeps the same letters - but changes the position within the text - easy to break - can be combined with substitution






29. Work groups that require additional protection are segmented from the rest of the internal organization - restricting access to critical segments - system of VPNs - internal firewall - VLANs and ACLs






30. Identify critical assets and provide layered protection - data is accessed by applications - applications reside on hosts - hosts operate on networks






31. 1.0.0.0 through 127.255.255.255 - subnet mask starts at 255.0.0.0






32. Attacks systems through known vulnerabilities - automatically scans for more systems to attack - lowers system defenses - installs rootkit or root shell - opens up back doors - self contained malware that can copy itself






33. Maintains complete TCP connection state and sequencing through 2 connections - address translation built-in by virtue of second connection above






34. size is whatever the length of the UDP portion of the packet. Could be as large as 65 -535






35. Allows admins to remotely access a system for troubleshooting. - E.g VNC - GoToMyPc - PC Anywhere






36. Relies on executable code insertion and user interaction to spread






37. Full open - half open (stealth scan) - UDP - Ping






38. Threat requires a vector to cross the vulnerability - stop the ability of the threat to use the vector






39. Outside attack from network - Outsider attack from telephone - Insider attack from local network - insider attack from local system - attack from malicious code






40. Multiple levels of protection must be deployed - an exercie in detection - measures must be across a wide range of controls - compromises happen when people leave sites - risk - CIA triad - strategies






41. A cracking tool inserted into the OS that allows the attacker to do as they please.






42. TCP/IP - the IP protoco - The core routing protocol of the internet - - deals with transmission of packets between end points - defines the addressing scheme for the internet






43. Protects internal/external systems from attack - filters communications based on content - performs NAT - encrypts communications for VPN - logging to aid in intrusion detection






44. Weakness in a system - inherent in a complex system - majority are due to poor coding - gateway by which threats are manifested






45. Hash Authentication - asymmetric - non repudiation - digital signature - hash + asymmetry






46. Handles transmissions across the physical media like wires - fiber - etc






47. Intellectual property - business goals - validated data - historical






48. Replicates traffic onto all ports - no traffic monitoring - cannot control which ports should or shouldn't receive frames - forming a large collision domain.






49. local area network - small network confined to small location - all equipment owned by a single entity - vulnerable to inside threats and logic bombs






50. -Malicious code might execute destructive overwrite to hard disks -Malicious mas mailing code might expose sensitive information to the internet - web server compromise might expose organization to ridicule - Web server compromise might expose custom