SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Network Security
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Session hijacking countermeasure
stateful inspection
man in the middle
subnet
encrypt session key
2. Man in the middle attack where the content of an intercepted message is altered before it is sent on
null session
active
stateful inspection
DNS spoofing
3. Packets with a forged source IP address - purpose to conceal the identity of the sender or impersonate another computing system
proxy
protocol
IP spoofing
application gateway
4. One device per network segment - does not use local system resources - can't examine encrypted traffic - OS independent - less expensive
promiscuous
NIDS
application gateway
website spoofing
5. A method - used by switches and email servers - of delivering messages which are temporarily held by an intermediary before being sent to their final destination
dual homed
store and forward
1024 - 49 -151
broadcast domain
6. A DoS attack that subverts the normal "three way handshake" of TCP/IP by sending SYN packets - but no corresponding ACK packets
NAT
SYN flood
honeynet
bastion host
7. A set of rules computers use to communicate with each other across a network
10base2
PBX (Private Branch Exchange)
1024 - 49 -151
protocol
8. IDS that relies on the identification of known attack signatures
fraggle
PBX (Private Branch Exchange)
proxy
knowledge based
9. Cable with copper core - has no physical transmission security and is easy to tap - 10mbps - maximum length 500 meters
1024 - 49 -151
coaxial
packet filter
teardrop
10. Level 2 firewall often used to filter web traffic
active
private
proxy
knowledge based
11. A decoy system - intentionally left exposed to attract/distract attackers - logs and monitors attacker activities
false negative
10base2
port
honeypot
12. Known as thinnet - 10mbps - limited to 185 meters
allow by default
10base2
risk mitigation
VLAN
13. A person or program masquerades as another by presenting false information to gain an illegitimate advantage
protocol
spoofing
router
honeynet
14. When a hacker takes over a TCP session between two machines - also known as session hijacking - foiled by the use of encrypted sessions
firewalls
blind
tcp/ip hijacking
replay
15. Connects devices together to form a subnet - broadcasts incoming packets to all devices
1024 - 49 -151
HIDS
dynamic NAT
hub
16. Two authoritative sources for your domain namespace with differing contents depending on whether the query is internal or external
man in the middle
split horizon DNS
store and forward
static NAT
17. Monitors network traffic to identify possible attacks
NIDS
fraggle
proxy
behavior based
18. Used by ISPs - single public network IP address is shared among many hosts on a private network - also known as PAT
encrypt session key
firewalls
port address translation
proxy
19. A variation of a smurf attack using UDP
HIDS
DoS attacks
fraggle
extranet
20. An attack where fragmented UDP packets with odd offset values are sent to the victim - when the OS attempts to rebuild the fragments they overwrite each other and cause confusion
10Base5
risk mitigation
teardrop
0 - 1023
21. An attack where an attacker captures sensitive information and sends it again later in an attempt to replicate the transaction
extranet
blind
DMZ
replay
22. IP - email - website - DNS - and ARP
protocol analyzer
behavior based
spoofing attacks
screened subnet
23. Attempt to block service or reduce activity by overloading the victim machine with ping requests
ping flooding
router
ARP
multi homed
24. Web servers - FTP servers - DNS servers - mail servers should be located on the _____________
0 - 1023
49 -152 - 65 -535
1024 - 49 -151
DMZ
25. Dynamic / private ports
layered
encrypt session key
false positive
49 -152 - 65 -535
26. Crashing a computer by sending oversized packets (over 64 bytes) that it doesn't know how to handle
NIDS
tcp/ip hijacking
informed
ping of death
27. Examines content passing through and makes a decision on the data based on a set of criteria - normal uses email filtering and web browsing
content filter
dual homed
DNS spoofing
twisted pair
28. Known as thicknet - 10mbps - limited to 500 meters
firewalls
10Base5
active
ping of death
29. A physical or logical subnetwork that houses systems accessible to a larger untrusted network - usually the Internet - also known as DMZ
NIDS
port address translation
IP spoofing
screened subnet
30. One private IP address is mapped to one public IP address
NIDS network connections
honeypot
static NAT
fiber optic
31. Most common DMZ implementation using three firewall interfaces (internet - intranet - DMZ)
multiple interface firewall
HIDS
firewalls
broadcast domain
32. Firewall that communicates directly with a perimeter router and the internal network - 2 NICs - screens internal traffic
allow by default
screened host
deny by default
router
33. Used to pass data from one VLAN to another
router
10Base5
49 -152 - 65 -535
firewalls
34. Creating a illegitimate website with the intention of convincing victims that they are visiting a legitimate site - typically to collect confidential information
DMZ
repeater
encrypt session key
website spoofing
35. IP spoofing attack where the attacker can monitor packets and participate in bidirectional communication
active
informed
ping of death
IP spoofing
36. Connects devices together to form a subnet - packet forwarding is based on MAC addresses - works at the data link layer of the OSI
passive
VLAN
deny by default
switch
37. A logical group of computers connected via a switch/hub that share the same network prefix in their IP address
subnet
risk mitigation
blind
extranet
38. IDS response method using logging and notification
zone transfer
passive
ping flooding
firewall architectures
39. Attack where an attacker intercepts traffic and tricks parties at either end into believing they are communicating with each other
false positive
ARP poisoning
man in the middle
ping of death
40. An application layer gateway works at this layer of the OSI model
false positive
network
application
IP spoofing
41. Unauthenticated Windows session where an attacker can gather list of users - groups - machines - shares - user and host SID
application
null session
blind
hub
42. Acts as an organizations internal phone system
IP spoofing
NIDS
router
PBX (Private Branch Exchange)
43. Level 1 firewall that looks at the head of a packet - (not content) - operates rapidly - application independent - either allow or deny packets
session hijacking
static NAT
firewall architectures
packet filter
44. DMZ implementation using two firewalls with different rule sets for the DMZ and intranet
risk mitigation
layered
firewalls
fiber optic
45. A firewall that checks all layers of a packet including content - verifying an expected response to a current communication session - also call a deep packet inspection
network
bastion host
blind
stateful inspection
46. Seeks to reduce the probability and/or impact of a specific risk below an acceptable threshold
honeynet
switch
risk mitigation
1024 - 49 -151
47. Packet filtering - proxies - stateful inspection
extranet
firewalls
0 - 1023
bastion host
48. A packet filtering firewall works at this layer of the OSI model
dual homed
network
NIDS
VLAN
49. A complete transfer of all DNS zone information from one server to another
zone transfer
land attack
NIDS
subnet
50. User / registered ports
protocol
1024 - 49 -151
false positive
teardrop