SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
GIAC
Start Test
Study First
Subjects
:
certifications
,
giac
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Attacks systems through known vulnerabilities - automatically scans for more systems to attack - lowers system defenses - installs rootkit or root shell - opens up back doors - self contained malware that can copy itself
Worms
Shallow packet inspection
Address resolution protocol
What range is a class B network?
2. Most commonly used transport protocol today - ensures reliable packet delivery - has error handling built in
UDP packet headers
Overview of TCP
File Integrity checking work
Stateless packet filter
3. FIN 130 - ACK 131 - FIN 570 - ACK 571
Hubs
NIDS challenges
To close a TCP session
Some common TCP ports
4. Simplest form of a research honeypot - useful in identifying nature of TCP scans - allows attacker to complete 3-way handshake - listens on a defined port - logs incoming requests for analysis
LAN
A netcat listener
Some external threat concerns
Trojan horse
5. It interacts with the application layer to determine which network services will be required
the application layer
The OSI Protocol Stack
The conficker worm
Buffer overflow
6. A spoofed IP is used to send a SYN to the target. It then responds with a SYN/ACK that never receives the final ACK to complete the handshake. This occupies a portion of the target's pre-established buffer for TCP and can prevent the target from acce
Nmap
Remote maintenance
Ack Piggybacking
SYN flood
7. Trying to ID modems in a telephone exchange that may be susceptible to compromise
File integrity checking work
War Dialing
UDP packet headers
IDS signature analysis work
8. Protected at rest - protected in transit - secure the key
A blind FTP
What ways should the crypto key be protected?
No State Inspection ACK flag set
Bridge
9. Infects the EXE and make them operate slightly different - when infected - exe header sizes are altered to point to the appended viral code
Some network design objectives
Log monitoring work?
EXE program infector
ATM work
10. Common backdoor to open a port - port scan scans for open ports on remote host - scans 0 - 65 -535 twice. TCP and UDP
Some FTP dangers
Some malware capabilities
Port scan
Macro virus
11. Personal area network - phone tethering - bluetooth - etc
IDS data normalization
PAN
Bus Topology
Social engineering
12. packet filter firewalls rely on TCP flags to determine connection state. Attacker can send ACK packets only to bypass firewall.
Some reasons to use TCP over UDP
Rootkit
MAN
No State Inspection ACK flag set
13. Stateful firewalls maintain state of traffic flows
Stateful firewall
Some reasons to use UDP over TCP
Logic bomb
CIDR
14. Allows segmentation of a switch into different networks - regardless of where a system is plugged in - creates separate networks through software not hardware
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
15. Protects internal/external systems from attack - filters communications based on content - performs NAT - encrypts communications for VPN - logging to aid in intrusion detection
Some firewall benefits
Switches
Multi protocol label switching
UDP packet headers
16. Switches along the path can be requested to allocate the desired amount of bandwidth. If the circuit has the required bandwidth - the circuit is set up.
Shallow packet inspection
The different cable categories
When setting up a virtual circuit
Some external threat concerns
17. Improper deployment can increase attack risk - if production systems aren't sufficiently protected - they can be vulnerable from a honeypot - legal liability
Social engineering
ACK piggybacking
What range is a class B network?
Some disadvantages of honeypots
18. Uses a 1 to 1 substitution of arbitrary numbers - given a one character mapping - you cannot determine the key
To establish a TCP session
Arbitrary substitution
The difference in stacks
The OSI model
19. Trivial File Transfer Protocol - method to transfer files from one device to another without needing authentication
The goals of cryptography
The three goals of security
TFTP
Multi protocol label switching
20. Used by IDS for a baseline before analysis - attackers will try to de-normalize traffic to evade detection - IDS will normalize data for understood protocols
What categories do vulnerabilities fall into?
Datagram length of a UDP packet
IDS data normalization
What range is a class A network?
21. It allows the transport layer to detect when the UDP headers or the payload have been modified in transit
TFTP
ATM work
Checksum in UDP
PAN
22. -Malicious code might execute destructive overwrite to hard disks -Malicious mas mailing code might expose sensitive information to the internet - web server compromise might expose organization to ridicule - Web server compromise might expose custom
Types of viruses
Shallow packet inspection
Defense in depth
Some external threat concerns
23. A sends a SYN packet to B - B acknowledges with a SYN/ACK - A replies with ACK
3-way handshake
Some other UDP based protocols
The Uniform Protection to defense in depth
Some FTP dangers
24. Isolates systems when they initially connect to the network - allows systems to be scanned and checked prior to being put on a trusted segment
NAC
Best way to protect wireless networks
IDS not
Social engineering
25. open source tool for monitoring - can be used as a NIDS - has quick updates and flexibility for custom rules
Snort
Some reasons to use UDP over TCP
Proxy or application gateway
Wardriving
26. fast - with little fidelity - examines header information and limited payload data
UDP packet headers
Internet
Trap door
Shallow packet inspection
27. Message in its encrypted form
CIDR
The Uniform Protection to defense in depth
The threat vector analysis in defense in depth
Ciphertext
28. Not frequently seen on LANs because of expense - because of its traffic predictability and high bandwidth support - it's good for video streaming - encapsulates common protocols - uses virtual path identifiers to create end to end connectivity - has
The protected enclave to defense in depth
Some malware capabilities
Asynchronous Transfer Mode
Buffer overflow
29. Connects the physical part of the network (cables) with the abstract (packets and datastreams)
Trap door
Rotation?
What categories do vulnerabilities fall into?
The data link layer
30. Means multiple iterations won't matter. If you encrypt with a key - then re-encrypt - it's the same as using one key.
Asynchronous Transfer Mode
Group
TFTP
DDoS attack
31. 128.0.0.0 through 191.255.255.255 - with a subnet mask of 255.255.0.0
Some malware capabilities
The conficker worm
Checksum in UDP
What range is a class B network?
32. Metropolitan area network - spans across city or town - larger than a LAN - uses fiber for backbone
NIDS advantages
The four basic approaches to defense in depth
Some Pen Test techniques
MAN
33. OSI
What threats should be protected against - based on threat levels
IDS signature analysis work
When talking about protocols and referencing layers - what stack is used
When implementing protocols - what stack should be used?
34. Considered to be a perimeter device
Kismet
The OSI Protocol Stack
Router
NAC
35. Bits of code embedded in programs to quickly gain access at a later time
Browsing attack
NIDS advantages
Trap door
Some common UDP ports
36. 20 - FTP data - 21 - FTP - 23 - Telnet - 25 - SNMP - 53 - DNS - 79 - Finger - 80 - HTTP - 110 - POP - 443 - HTTPS
Some common TCP ports
Group
TFTP
Stateful firewall
37. Take the file and try to compress it. If it compresses - it means there is a pattern and it's more easily crackable
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
38. Free linux WLAN analysis tool - completely passive - cannot be detected - supports advanced GPS integration and mapping features - used for wardriving - WLAN vulerability assessment
DDoS attack
Kismet
Ciphertext
IDS not
39. Handles the network address scheme and connectivity of multiple network segments. It handles communication.
The network layer
Brute force
Some FTP dangers
The CIA triad
40. Netmasks or subnets provide a method for identifying what portion of an address is the network - and what portion is the host
OS Command Injection defenses
A netmask
The difference in stacks
Group
41. risk = threat x vulnerability - impossible to eliminate - security is an exercise in loss reduction
Asynchronous Transfer Mode
Some ways to bypass firewall protections
Risk
Anomaly analysis work
42. Program disguised as something helpful - only to perform actions the user did not intend. Opening ports - installing other programs - etc.
MAN
Some firewall benefits
Trojan horse
TFTP
43. Hash Authentication - asymmetric - non repudiation - digital signature - hash + asymmetry
Datagram length of a UDP packet
Some common UDP ports
What threats should be protected against - based on threat levels
Integrity of Data
44. Confidentiality - integrity - availability
The CIA triad
The different cable categories
IDS not
Trap door
45. 1.0.0.0 through 127.255.255.255 - subnet mask starts at 255.0.0.0
Datagram length of a UDP packet
Arbitrary substitution
What range is a class A network?
Remote maintenance
46. Slow - requires stateful data tracking - inspects all fields - including variable-length fields
War Dialing
The OSI model
Deep packet inspection
Address Resolution Protocol (ARP)
47. Relies on executable code insertion and user interaction to spread
Parasitic malware
The presentation layer
The OSI Protocol Stack
NIDS advantages
48. Work groups that require additional protection are segmented from the rest of the internal organization - restricting access to critical segments - system of VPNs - internal firewall - VLANs and ACLs
Stateless packet filter
Rootkit
The protected enclave to defense in depth
Trap door
49. Provides insight into the tactics - motives - and attacker tools
WAN
Router
Some honeypot advantages
The network layer
50. A time of check/time of use attack that exploits the difference in between when a security control was applied and the time the service was used.
Firewall
Smurf attack
Race conditions
HIDS monitor
Sorry!:) No result found.
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests