SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Network Security
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Dynamic / private ports
proxy
49 -152 - 65 -535
PBX (Private Branch Exchange)
HIDS
2. Connects devices together to form a subnet - broadcasts incoming packets to all devices
stateful inspection
protocol analyzer
fiber optic
hub
3. A sniffer mode used to capture traffic addressed to/from another machine on the network
promiscuous
false positive
spoofing attacks
active
4. Known as thinnet - 10mbps - limited to 185 meters
10base2
promiscuous
NIDS network connections
blind
5. Twisted pair cable with speed capability of 1Gbps
cat5
session hijacking
NIDS network connections
DoS attacks
6. Protocol used to map an known IP address to its corresponding media access control (MAC) address
null session
dual homed
ARP
multi homed
7. A flaw in TCP/IP to verify that a packet really comes from the addess indicated in the IP header leads to this attack
defense in depth
IP spoofing
content filter
replay
8. Evolved from IDS - monitors network traffic - detects and responds to attack on network
spoofing
NIPS
router
NIDS
9. IP spoofing attack where the attacker can only send packets and has to guess about replies
DMZ
ping flooding
blind
DoS attacks
10. Man in the middle attack where the content of an intercepted message is altered before it is sent on
firewalls
active
hub
false negative
11. Examines a entire packet and determines action based on a complex set of rules
defense in depth
risk mitigation
NAT
application gateway
12. Collection on honeypots
proxy server
NIPS
broadcast domain
honeynet
13. Malicious activity not reported or detected
false negative
DNS spoofing
firewalls
port address translation
14. Take control of a session between a server and client - the users gets kicked off the session while the attacker inserts himself into the session by sending a reset request to the client
49 -152 - 65 -535
fraggle
ping of death
session hijacking
15. Level 2 firewall often used to filter web traffic
protocol analyzer
land attack
proxy
smurf
16. An attack where fragmented UDP packets with odd offset values are sent to the victim - when the OS attempts to rebuild the fragments they overwrite each other and cause confusion
ping of death
teardrop
switch
fraggle
17. Connects two or more subnets - determines the best path to forward packets based on packet header and forwarding table information
firewalls
IP spoofing
spoofing attacks
router
18. An application layer gateway works at this layer of the OSI model
application
fraggle
VLAN
NIDS
19. DMZ implementation using two firewalls with different rule sets for the DMZ and intranet
router
ping of death
dual homed
layered
20. Packets with a forged source IP address - purpose to conceal the identity of the sender or impersonate another computing system
twisted pair
firewall architectures
49 -152 - 65 -535
IP spoofing
21. One private IP address is mapped to one public IP address
man in the middle
static NAT
IP spoofing
active
22. One device per network segment - does not use local system resources - can't examine encrypted traffic - OS independent - less expensive
NIDS
informed
hub
false positive
23. An attack where an attacker captures sensitive information and sends it again later in an attempt to replicate the transaction
active
IP spoofing
router
replay
24. A DoS attack that subverts the normal "three way handshake" of TCP/IP by sending SYN packets - but no corresponding ACK packets
SYN flood
VLAN
ARP
network
25. Unauthenticated connections - creating the potential for a successful connection as an anonymous user
stateful inspection
null session
tcp/ip hijacking
fiber optic
26. A method - used by switches and email servers - of delivering messages which are temporarily held by an intermediary before being sent to their final destination
store and forward
49 -152 - 65 -535
router
behavior based
27. Attack where an attacker intercepts traffic and tricks parties at either end into believing they are communicating with each other
man in the middle
false negative
risk mitigation
fraggle
28. A logical connection point allowing computers and software to communicate and exchange data
port
spoofing attacks
proxy
informed
29. Twisted pair cable with speed capability of 10Mbps
NAT
DMZ
ping of death
cat3
30. Unauthenticated Windows session where an attacker can gather list of users - groups - machines - shares - user and host SID
store and forward
null session
blind
extranet
31. Generate random TCP sequence numbers and encrypt traffic countermeasure what attacks
fraggle
defense in depth
man in the middle and replay
spoofing attacks
32. A ping message is broadcast to an entire network with a spoofed source IP addess of the victim computer - flooding the victim computer with responses during this attack
man in the middle and replay
smurf
firewalls
allow by default
33. IDS that relies on the identification of known attack signatures
network
router
knowledge based
port
34. When a hacker takes over a TCP session between two machines - also known as session hijacking - foiled by the use of encrypted sessions
screened host
NIDS network connections
screened subnet
tcp/ip hijacking
35. A group of hosts on logical network segment that communicate as if they were attached to the same broadcast domain - regardless of their physical location
HIDS
NIDS network connections
VLAN
router
36. User / registered ports
PBX (Private Branch Exchange)
1024 - 49 -151
ARP poisoning
man in the middle and replay
37. Most common DMZ implementation using three firewall interfaces (internet - intranet - DMZ)
twisted pair
multiple interface firewall
extranet
network
38. Web servers - FTP servers - DNS servers - mail servers should be located on the _____________
NIPS
subnet
DMZ
port
39. Man in the middle attack where the attacker captures the traffic and sends it to the original recipient without altering the intercepted data
encrypt session key
passive
spoofing
NIPS
40. Allows all traffic except traffic that is specifically denied - also known as permissive access
dual homed
passive
allow by default
teardrop
41. IPS response method - terminate process/session - block/reject and redirect network traffic
VLAN
honeypot
active
tcp/ip hijacking
42. Forging an IP address with the address of a trusted host
IP spoofing
risk mitigation
teardrop
source - destination - protocol
43. Cable used most in networks - maximum speed 1Gbps - maximum length 100 meters - susceptible to tap
NIDS network connections
twisted pair
man in the middle and replay
ARP
44. A variation of a smurf attack using UDP
twisted pair
null session
1024 - 49 -151
fraggle
45. Cable with copper core - has no physical transmission security and is easy to tap - 10mbps - maximum length 500 meters
coaxial
dual homed
website spoofing
smurf
46. Firewall with several NICs connected to different networks
multi homed
DoS attacks
router
ARP poisoning
47. Cable designed for transmission at higher speeds (100Mbps - 2Gbps) and longer distances (2km) - expensive -eliminates signal tapping
fiber optic
protocol
firewalls
spoofing
48. Malicious insiders - connections that bypass the firewall (i.e. IM) - encrypted traffic/tunneling - social engineering - physical access are missed by ___________
knowledge based
ARP poisoning
firewalls
dynamic NAT
49. Examines content passing through and makes a decision on the data based on a set of criteria - normal uses email filtering and web browsing
content filter
risk mitigation
stateful inspection
land attack
50. A logical division of a computer network - in which all nodes can reach each other by broadcast at the data link layer - equivalent to a VLAN
source - destination - protocol
broadcast domain
false negative
deny by default