Test your basic knowledge |

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. OSI






2. low interaction production honeypot - network daemon that can simulate other hosts - each host can appear as a different OS






3. 1. physical 2. data 3. network 4. transport 5. session 6. presentation 7. application






4. Uniform protection - protected enclaves - information centric - threat vector analysis






5. A TCP version of ping - sends custom TCP packets to a host and listens for replies - enables port scanning and spoofing simultaneously






6. A time of check/time of use attack that exploits the difference in between when a security control was applied and the time the service was used.






7. Uses a 1 to 1 substitution of characters - rotate the alphabet by 'n' number of characters - rot+X means rotate the letters X characters






8. 8 bytes per packet - UDP SRC port - UDP DST Ports - UDP length - UDP Checksum






9. Netmasks or subnets provide a method for identifying what portion of an address is the network - and what portion is the host






10. Used for connecting two physical segments of a network - segments traffic - breaks up collision domains - not generally used because of switches






11. It makes sure the data sent from one side to the other is in a format useful to the other side






12. An FTP that allows downloads only if the user knows the exact name of the file they're looking for






13. Improper deployment can increase attack risk - if production systems aren't sufficiently protected - they can be vulnerable from a honeypot - legal liability






14. Provides insight into traffic on the network - help detect problems with network operations - provides auditing for other security measures






15. Infected millions through various methods - vulnerability in the MS Server Service - brute force admin password through network shares - infect removable devices with a malicious autorun script






16. TCP/IP - the IP protoco - The core routing protocol of the internet - - deals with transmission of packets between end points - defines the addressing scheme for the internet






17. Free linux WLAN analysis tool - completely passive - cannot be detected - supports advanced GPS integration and mapping features - used for wardriving - WLAN vulerability assessment






18. Syn - Syn/Ack - Ack






19. Not frequently seen on LANs because of expense - because of its traffic predictability and high bandwidth support - it's good for video streaming - encapsulates common protocols - uses virtual path identifiers to create end to end connectivity - has






20. Very simplistic. All systems are attached to the same cable segment. Rarely used because they're unreliable - low fault tolerance - poor traffic isolation - with limited scalability






21. Provides insight into the tactics - motives - and attacker tools






22. Protocol for mapping an IP address to a physical machine address that is recognized on the local network. A table - usually called the ARP cache - is used to maintain a correlation between each MAC and its corresponding IP address






23. keeps the same letters - but changes the position within the text - easy to break - can be combined with substitution






24. Spread as an office attachment with executable code programmed using macro facility - targets are data files - visual basic editor and other macro languages - payload executes when the code is launched






25. Metropolitan area network - spans across city or town - larger than a LAN - uses fiber for backbone






26. Migrate to WPA2 - use strong authentication like PEAP or TTLS - audit network installations - require mutual auth between client and infrastructure equipment






27. Full open - half open (stealth scan) - UDP - Ping






28. Resource exhaustion like DDoS or fork attack - unexpected input value the machine does not know how to process






29. Attempt to manipulate or trick a person into providing information or access - bypass network security by exploiting humans - vector is often outside attack by telephone or visitor inside






30. Take the file and try to compress it. If it compresses - it means there is a pattern and it's more easily crackable

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


31. Four layers - Network Layer - Internet Layer - Transport Layer - Application layer






32. Multiple levels of protection must be deployed - an exercie in detection - measures must be across a wide range of controls - compromises happen when people leave sites - risk - CIA triad - strategies






33. Threat requires a vector to cross the vulnerability - stop the ability of the threat to use the vector






34. An attacker spoofs the victim's IP and sends an ICMP ECHO request to the broadcast address of a network. When every system responds - a DoS occurs.






35. A sends a SYN packet to B - B acknowledges with a SYN/ACK - A replies with ACK






36. Malware - insider threat - natural disaster - terrorism - pandemic






37. Combines the functionality of a hub and bride into a single device - keeps track of MACs attached to each port






38. Bits of code embedded in programs to quickly gain access at a later time






39. Attaches itself to existing program files and activated when the exe is launched






40. Message in its encrypted form






41. 1.0.0.0 through 127.255.255.255 - subnet mask starts at 255.0.0.0






42. Simple attack done by simply browsing available information that's allowed on a local network.






43. Physical layer - Data link layer - Network Layer - Transport Layer - Session Layer - Presentation Layer - Application Layer






44. logic bomb - trojan horse - trap door






45. Wide Area Network - Larger than MAN or LAN - uses public network - phone lines - and leased lines to tie LAN and MAN over a dispersed area






46. Allows admins to remotely access a system for troubleshooting. - E.g VNC - GoToMyPc - PC Anywhere






47. Protects internal/external systems from attack - filters communications based on content - performs NAT - encrypts communications for VPN - logging to aid in intrusion detection






48. FIN 130 - ACK 131 - FIN 570 - ACK 571






49. Going around with equipment to detect wireless networks






50. Confidentiality - integrity - availability







Sorry!:) No result found.

Can you answer 50 questions in 15 minutes?


Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests



Major Subjects

Tests & Exams


AP
CLEP
DSST
GRE
SAT
GMAT

Browse all subjects

Browse all tests

Most popular tests