SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Network Security
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Known as thicknet - 10mbps - limited to 500 meters
NIPS
allow by default
proxy
10Base5
2. Take control of a session between a server and client - the users gets kicked off the session while the attacker inserts himself into the session by sending a reset request to the client
layered
allow by default
SYN flood
session hijacking
3. Seeks to reduce the probability and/or impact of a specific risk below an acceptable threshold
risk mitigation
cat5
informed
source - destination - protocol
4. Man in the middle attack where the attacker captures the traffic and sends it to the original recipient without altering the intercepted data
spoofing attacks
stateful inspection
allow by default
passive
5. A logical group of computers connected via a switch/hub that share the same network prefix in their IP address
honeynet
subnet
teardrop
encrypt session key
6. An attacker redirects valid request to malicious sites by feeding a DNS server altered records which are retained in its cache
cat3
DNS spoofing
zone transfer
1024 - 49 -151
7. A logical connection point allowing computers and software to communicate and exchange data
port
cat3
null session
teardrop
8. A complete transfer of all DNS zone information from one server to another
port address translation
cat5
zone transfer
IP spoofing
9. Packets with a forged source IP address - purpose to conceal the identity of the sender or impersonate another computing system
DNS spoofing
ping of death
port address translation
IP spoofing
10. Attempt to block service or reduce activity by overloading the victim machine with ping requests
content filter
ping flooding
10Base5
defense in depth
11. One private IP address is mapped to one public IP address
screened subnet
IP spoofing
10base2
static NAT
12. Collection on honeypots
honeynet
informed
coaxial
IP spoofing
13. Unauthenticated connections - creating the potential for a successful connection as an anonymous user
null session
spoofing
cat5
screened subnet
14. A set of rules computers use to communicate with each other across a network
blind
website spoofing
protocol
cat5
15. Acts as an organizations internal phone system
fraggle
active
PBX (Private Branch Exchange)
encrypt session key
16. Head of a packet contains...
DNS spoofing
application gateway
source - destination - protocol
screened subnet
17. A decoy system - intentionally left exposed to attract/distract attackers - logs and monitors attacker activities
ping flooding
0 - 1023
honeypot
active
18. When a hacker takes over a TCP session between two machines - also known as session hijacking - foiled by the use of encrypted sessions
1024 - 49 -151
firewalls
tcp/ip hijacking
ARP poisoning
19. Generate random TCP sequence numbers and encrypt traffic countermeasure what attacks
man in the middle and replay
knowledge based
NIDS
repeater
20. IP spoofing attack where the attacker can only send packets and has to guess about replies
ARP poisoning
blind
cat3
man in the middle
21. Bbenign activity reported as malicious
knowledge based
false positive
1024 - 49 -151
firewall architectures
22. A flaw in TCP/IP to verify that a packet really comes from the addess indicated in the IP header leads to this attack
zone transfer
man in the middle
SYN flood
IP spoofing
23. A method - used by switches and email servers - of delivering messages which are temporarily held by an intermediary before being sent to their final destination
passive
blind
store and forward
static NAT
24. Ping flooding - ping of death - smurf - fraggle - SYN flood - land - teardrop - email flood
zone transfer
firewall architectures
false positive
DoS attacks
25. One process on every system - use local system resources - detect attacks that NIDS misses - examine data after decrypted - can be OS specific - more expensive
DoS attacks
HIDS
website spoofing
tcp/ip hijacking
26. Known as thinnet - 10mbps - limited to 185 meters
HIDS
NIDS
active
10base2
27. Packet filtering - proxies - stateful inspection
multi homed
firewalls
IP spoofing
honeypot
28. A pool of public IP addresses is shared by a collection of private IP addresses
risk mitigation
10base2
dynamic NAT
packet filter
29. Connects two or more subnets - determines the best path to forward packets based on packet header and forwarding table information
firewalls
router
split horizon DNS
ARP poisoning
30. An application layer gateway works at this layer of the OSI model
session hijacking
application
passive
proxy
31. IDS response method using logging and notification
website spoofing
passive
NIPS
spoofing
32. Variation of the SYN flood where SYN packets are spoofed to have the same source and destination IP address and port
passive
switch
land attack
active
33. DMZ implementation using two firewalls with different rule sets for the DMZ and intranet
layered
deny by default
blind
screened subnet
34. A firewall that checks all layers of a packet including content - verifying an expected response to a current communication session - also call a deep packet inspection
NIDS
null session
stateful inspection
land attack
35. A variation of a smurf attack using UDP
extranet
fraggle
honeypot
10Base5
36. A person or program masquerades as another by presenting false information to gain an illegitimate advantage
network
null session
router
spoofing
37. Attack where an attacker intercepts traffic and tricks parties at either end into believing they are communicating with each other
port
man in the middle
packet filter
passive
38. An attack where an attacker captures sensitive information and sends it again later in an attempt to replicate the transaction
twisted pair
NIDS
replay
tcp/ip hijacking
39. Cable with copper core - has no physical transmission security and is easy to tap - 10mbps - maximum length 500 meters
coaxial
layered
network
content filter
40. Level 2 firewall often used to filter web traffic
source - destination - protocol
proxy
DoS attacks
DNS spoofing
41. Session hijacking countermeasure
encrypt session key
1024 - 49 -151
informed
router
42. Level 1 firewall that looks at the head of a packet - (not content) - operates rapidly - application independent - either allow or deny packets
zone transfer
fiber optic
firewall architectures
packet filter
43. A physical or logical subnetwork that houses systems accessible to a larger untrusted network - usually the Internet - also known as DMZ
subnet
screened subnet
ping flooding
informed
44. IDS that relies on the identification of known attack signatures
NIDS
IP spoofing
knowledge based
screened host
45. Type of IP addresses not routed on the internet: 10.x.x.x - 172.16.x.x - 192.168.x.x
private
application
fiber optic
null session
46. A feature of firewalls / routers that disguise the IP address of internal systems allowing connection to the Internet using one public address
content filter
NAT
network
port
47. Amplifies the signal of incoming packets before broadcasting them to the network
session hijacking
man in the middle and replay
repeater
null session
48. A DoS attack that subverts the normal "three way handshake" of TCP/IP by sending SYN packets - but no corresponding ACK packets
router
defense in depth
layered
SYN flood
49. A packet filtering firewall works at this layer of the OSI model
multi homed
NAT
encrypt session key
network
50. Unauthenticated Windows session where an attacker can gather list of users - groups - machines - shares - user and host SID
null session
firewalls
router
behavior based
Sorry!:) No result found.
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests
