SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
GIAC
Start Test
Study First
Subjects
:
certifications
,
giac
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Network scanner.
UDP packet headers
Nmap
Group
Program infector
2. Take the file and try to compress it. If it compresses - it means there is a pattern and it's more easily crackable
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
3. ATM supports two types of virtual circuits: permanent virtual circuits and switches virtual circuit - PVC is set up in advance - usually manually - SVC is established automatically through a signaling protocol and can be created on the fly - establis
Types of ATM virtual circuits
DDoS attack
A netmask
The transport layer
4. A cracking tool inserted into the OS that allows the attacker to do as they please.
Rootkit
To establish a TCP session
The four basic approaches to defense in depth
Worms
5. FIN 130 - ACK 131 - FIN 570 - ACK 571
To close a TCP session
Group
Asynchronous Transfer Mode
The five threat vectors
6. 53 bytes - 48 bytes for data - 5 bytes for the header
Address Resolution Protocol (ARP)
Total cell size for asynchronous transfer mode (ATM)
Nmap scanning techniques
Arbitrary substitution
7. Connects the physical part of the network (cables) with the abstract (packets and datastreams)
What threats should be protected against - based on threat levels
Hping
The data link layer
Defense in depth
8. Not a replacement for firewalls - hardening - strong policies - or other DiD methods - low maintenance - inexpensive
Some firewall challenges
IDS not
The threat vector analysis in defense in depth
NIDS advantages
9. Anonymous FTP - FTP passes through clear text - Bounce attacks with the PORT command - user can cause an FTP to open a connection from the FTP's own commands and bypass a firewall
The physical layer stack
Deep packet inspection
Some FTP dangers
Bridge
10. A system resource that has no legitimate purpose or reason for someone to connect to it - its purpose is to draw in attackers to understand how they break into a system
Plaintext
Honeypot
Network stumbler
WAN
11. Parasitic malware - boot record infector - macro - COM/Script program infector - EXE program infector
Types of viruses
Some ways to bypass firewall protections
To close a TCP session
Some common UDP ports
12. It interacts with the application layer to determine which network services will be required
File Integrity checking work
the application layer
A network protocol
Some ways to bypass firewall protections
13. keeps the same letters - but changes the position within the text - easy to break - can be combined with substitution
Plaintext
Permutation
PAN
Stateless packet filter
14. risk = threat x vulnerability - impossible to eliminate - security is an exercise in loss reduction
Denial of service
Risk
What categories do vulnerabilities fall into?
When setting up a virtual circuit
15. Threat requires a vector to cross the vulnerability - stop the ability of the threat to use the vector
The threat vector analysis in defense in depth
Some NIDS topology limitations
What's an easy way to test encryption?
When talking about protocols and referencing layers - what stack is used
16. Simplest form of a research honeypot - useful in identifying nature of TCP scans - allows attacker to complete 3-way handshake - listens on a defined port - logs incoming requests for analysis
The four basic approaches to defense in depth
The threat vector analysis in defense in depth
A netcat listener
SYN flood
17. Attempt to manipulate or trick a person into providing information or access - bypass network security by exploiting humans - vector is often outside attack by telephone or visitor inside
NIDS challenges
Types of ATM virtual circuits
Social engineering
Total cell size for asynchronous transfer mode (ATM)
18. Isolates systems when they initially connect to the network - allows systems to be scanned and checked prior to being put on a trusted segment
NAC
ATM work
Some disadvantages of honeypots
WAN
19. A list of files is defined that should be monitored for a change - HIDS software calculates a one-way hash for each file - if a change is made to the file - the hash is changed
Deep packet inspection
File integrity checking work
Snort
The presentation layer
20. Bits of code embedded in programs to quickly gain access at a later time
WAN
Trap door
Some external threat concerns
Shallow packet inspection
21. Weakness in a system - inherent in a complex system - majority are due to poor coding - gateway by which threats are manifested
Social engineering
Vulnerabilities
Risk
Shallow packet inspection
22. Confidentiality - integrity - availability
To establish a TCP session
Stateful firewall
Ack Piggybacking
The three goals of security
23. destruction of data - leaking confidential information - providing backdoor access
IDS data normalization
Some malware capabilities
Port scan
Types of ATM virtual circuits
24. Personal area network - phone tethering - bluetooth - etc
PAN
Some reasons to use UDP over TCP
To close a TCP session
SQL Slammer Worm
25. It makes sure the data sent from one side to the other is in a format useful to the other side
ACK piggybacking
Brute force
Some Pen Test techniques
The presentation layer
26. Infects the EXE and make them operate slightly different - when infected - exe header sizes are altered to point to the appended viral code
War Dialing
Firewall
Some other UDP based protocols
EXE program infector
27. An appliance that controls access between public internet and a companies private network - or between a PC NIC and the rest of the PC.
MAN
Firewall
Some common TCP ports
Kismet
28. 8 bytes per packet - UDP SRC port - UDP DST Ports - UDP length - UDP Checksum
Port scan
UDP packet headers
Ack Piggybacking
What threats should be protected against - based on threat levels
29. Four layers - Network Layer - Internet Layer - Transport Layer - Application layer
Denial of service
The TCP/IP model
Alteration of code
Macro virus
30. rules indicate criteria in packets that represent events of interest - rules are applied to packets as they are received - alerts are created when matches are found
Ciphertext
Port scan
IDS signature analysis work
The Information Centric defense in depth
31. 1 and 2 - Voice/Low speed data - 3 - Voice/Data 10Mb - 4 - Voice/Data 16Mb - 5 - 5e - Voice/Data 100Mb to 1Gb - 6 - Standard for gigabit
Some Pen Test techniques
Trap door
Integrity of Data
The different cable categories
32. Malware - insider threat - natural disaster - terrorism - pandemic
What primary threats should be protected against
PAN
When implementing protocols - what stack should be used?
Honeypot
33. UDP based infection - infected through vulnerability in SQL server - caused DoS on saturated networks
SQL Slammer Worm
Some common UDP ports
Multi protocol label switching
The goals of cryptography
34. Uses inclusive or exclusive lists - inclusive analysis utilizes a list of keywords - exclusive analysis utilizes a list of events that can be ignored
Log monitoring work?
Some reasons to use UDP over TCP
Plaintext
Total cell size for asynchronous transfer mode (ATM)
35. One is for talking - one is for implementing
The TCP/IP model
Hping
Checksum in UDP
The difference in stacks
36. Attaches itself to existing program files and activated when the exe is launched
Social engineering
IDS not
Denial of service
Program infector
37. local area network - small network confined to small location - all equipment owned by a single entity - vulnerable to inside threats and logic bombs
Stateful firewall
The difference in stacks
File integrity checking work
LAN
38. Switches along the path can be requested to allocate the desired amount of bandwidth. If the circuit has the required bandwidth - the circuit is set up.
Internet
When setting up a virtual circuit
DDoS attack
A netmask
39. open source tool for monitoring - can be used as a NIDS - has quick updates and flexibility for custom rules
The four types of events reported by IDS
NIDS challenges
Snort
Checksum in UDP
40. Identify critical assets and provide layered protection - data is accessed by applications - applications reside on hosts - hosts operate on networks
Bridge
Some other UDP based protocols
TFTP
The Information Centric defense in depth
41. flags anomalous conditions in traffic on the network - requires understanding on what is normal - bases good traffic as a baseline
Some malware capabilities
Anomaly analysis work
ATM work
When talking about protocols and referencing layers - what stack is used
42. Unencrypted message in its original form
Honeyd
Vulnerabilities
Plaintext
Asynchronous Transfer Mode
43. Worms and Wireless - modems - tunnel anything through HTTP - social engineering
Some other UDP based protocols
A network protocol
Some ways to bypass firewall protections
SYN flood
44. Message in its encrypted form
EXE program infector
Ciphertext
Risk
The three goals of security
45. Provides insight into traffic on the network - help detect problems with network operations - provides auditing for other security measures
NIDS challenges
NIDS advantages
The goals of cryptography
Smurf attack
46. Migrate to WPA2 - use strong authentication like PEAP or TTLS - audit network installations - require mutual auth between client and infrastructure equipment
Ciphertext
DDoS attack
Best way to protect wireless networks
TFTP
47. low interaction production honeypot - network daemon that can simulate other hosts - each host can appear as a different OS
Honeyd
Boot record infector
Stateless packet filter
LAN
48. 53 - DNS - 67 - BootP - 68 - BootP - 69 - TFTP - 123- NTP - 137-139 NBT - 161 - SNMP - 162 - SNMP - 2049 - NFS
LAN
The five threat vectors
Some common UDP ports
Checksum in UDP
49. Unified data carrying service - replacing from replay and ATM
Alteration of code
Some network design objectives
Some ways to bypass firewall protections
Multi protocol label switching
50. Uniform protection - protected enclaves - information centric - threat vector analysis
The goals of cryptography
The four basic approaches to defense in depth
Honeypot
The physical layer stack