Test your basic knowledge |

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Not frequently seen on LANs because of expense - because of its traffic predictability and high bandwidth support - it's good for video streaming - encapsulates common protocols - uses virtual path identifiers to create end to end connectivity - has






2. Physical layer - Data link layer - Network Layer - Transport Layer - Session Layer - Presentation Layer - Application Layer






3. Handles transmissions across the physical media like wires - fiber - etc






4. Trivial File Transfer Protocol - method to transfer files from one device to another without needing authentication






5. Small program triggered by an event that provides an action. E.g. scheduled file removal if countdown isn't reset - ie: employee was fired






6. Unified data carrying service - replacing from replay and ATM






7. -Malicious code might execute destructive overwrite to hard disks -Malicious mas mailing code might expose sensitive information to the internet - web server compromise might expose organization to ridicule - Web server compromise might expose custom






8. Threat requires a vector to cross the vulnerability - stop the ability of the threat to use the vector






9. 8 bytes per packet - UDP SRC port - UDP DST Ports - UDP length - UDP Checksum






10. Poor programming without error checking can allow commands to be run in an input field. This can point to a command further in the buffer that will execute the attacker's payload.






11. Spread as an office attachment with executable code programmed using macro facility - targets are data files - visual basic editor and other macro languages - payload executes when the code is launched






12. Outside attack from network - Outsider attack from telephone - Insider attack from local network - insider attack from local system - attack from malicious code






13. 192.0.0.0 through 223.255.255.255 - subnet mask of 255.255.255.0






14. Improper deployment can increase attack risk - if production systems aren't sufficiently protected - they can be vulnerable from a honeypot - legal liability






15. A time of check/time of use attack that exploits the difference in between when a security control was applied and the time the service was used.






16. Free linux WLAN analysis tool - completely passive - cannot be detected - supports advanced GPS integration and mapping features - used for wardriving - WLAN vulerability assessment






17. Protocol for mapping an IP address to a physical machine address that is recognized on the local network - A table - usually called the ARP cache - is used to maintain a correlation between each MAC and it's corresponding IP address






18. Used for connecting two physical segments of a network - segments traffic - breaks up collision domains - not generally used because of switches






19. Infected millions through various methods - vulnerability in the MS Server Service - brute force admin password through network shares - infect removable devices with a malicious autorun script






20. Not a replacement for firewalls - hardening - strong policies - or other DiD methods - low maintenance - inexpensive






21. 1. physical 2. data 3. network 4. transport 5. session 6. presentation 7. application






22. A list of files is defined that should be monitored for a change - HIDS software calculates a one-way hash for each file - if a change is made to the file - the hash is changed






23. Uses flow control to handle network congestion - can send larger amounts of data per packet - has guaranteed delivery of transmitted data - better protection against spoofing - reduces need for error checking at higher OSI layers






24. Netmasks or subnets provide a method for identifying what portion of an address is the network - and what portion is the host






25. Known - unknown - zero day






26. Network traffic to the host - typically listens on all interface - uses signature analysis to identify events of interest






27. An appliance that controls access between public internet and a companies private network - or between a PC NIC and the rest of the PC.






28. Uses a 1 to 1 substitution of arbitrary numbers - given a one character mapping - you cannot determine the key






29. 1 and 2 - Voice/Low speed data - 3 - Voice/Data 10Mb - 4 - Voice/Data 16Mb - 5 - 5e - Voice/Data 100Mb to 1Gb - 6 - Standard for gigabit






30. logic bomb - trojan horse - trap door






31. Most common approach - firewall - VPN - intrusion detection - AV - disk encryption - all parts of the organization receive equal protection - particularly vulnerable to malicious inside attacks






32. Malware - insider threat - natural disaster - terrorism - pandemic






33. Publish separate mail - web - and DNS servers to the internet - provide appropriate access from internal network to internet - protect internal from external attack - provide defense in depth - protect all aspects of the system






34. It interacts with the application layer to determine which network services will be required






35. Means multiple iterations won't matter. If you encrypt with a key - then re-encrypt - it's the same as using one key.






36. Connection oriented - before systems can communicate over an ATM network - they must establish a virtual circuit between each other - this can span across multiple ATM switches that also handle communications for other systems - at the end of the con






37. 128.0.0.0 through 191.255.255.255 - with a subnet mask of 255.255.0.0






38. 53 - DNS - 67 - BootP - 68 - BootP - 69 - TFTP - 123- NTP - 137-139 NBT - 161 - SNMP - 162 - SNMP - 2049 - NFS






39. It handles the establishment and maintenance of connections between systems






40. Metropolitan area network - spans across city or town - larger than a LAN - uses fiber for backbone






41. local area network - small network confined to small location - all equipment owned by a single entity - vulnerable to inside threats and logic bombs






42. One is for talking - one is for implementing






43. An attacker recruits zombie systems ahead of time to simultaneously release a flood of traffic at a specific target.






44. Replicates traffic onto all ports - no traffic monitoring - cannot control which ports should or shouldn't receive frames - forming a large collision domain.






45. Good for multimedia - can use small single packets - multicasting is required - speed is the highest priority






46. Switches networks make it difficult to monitor traffic in promiscuous mode - topology must be able to support traffic aggregation for monitoring






47. Handles the network address scheme and connectivity of multiple network segments. It handles communication.






48. free windows based wireless scanner for 802.1b - detects access point settings - supports GSP integration - identifies networks as encrypted or unencrypted






49. Simplest form of a research honeypot - useful in identifying nature of TCP scans - allows attacker to complete 3-way handshake - listens on a defined port - logs incoming requests for analysis






50. Relies on executable code insertion and user interaction to spread






Can you answer 50 questions in 15 minutes?



Let me suggest you:



Major Subjects



Tests & Exams


AP
CLEP
DSST
GRE
SAT
GMAT

Most popular tests