SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Network Security
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. IP - email - website - DNS - and ARP
promiscuous
spoofing attacks
SYN flood
dynamic NAT
2. An application layer gateway works at this layer of the OSI model
DNS spoofing
passive
website spoofing
application
3. Cable used most in networks - maximum speed 1Gbps - maximum length 100 meters - susceptible to tap
honeynet
tcp/ip hijacking
dynamic NAT
twisted pair
4. A DoS attack that subverts the normal "three way handshake" of TCP/IP by sending SYN packets - but no corresponding ACK packets
split horizon DNS
SYN flood
encrypt session key
ARP
5. Malicious insiders - connections that bypass the firewall (i.e. IM) - encrypted traffic/tunneling - social engineering - physical access are missed by ___________
IP spoofing
firewalls
repeater
null session
6. A physical or logical subnetwork that houses systems accessible to a larger untrusted network - usually the Internet - also known as DMZ
1024 - 49 -151
null session
screened subnet
NIDS
7. Take control of a session between a server and client - the users gets kicked off the session while the attacker inserts himself into the session by sending a reset request to the client
static NAT
bastion host
session hijacking
source - destination - protocol
8. A decoy system - intentionally left exposed to attract/distract attackers - logs and monitors attacker activities
honeypot
NIDS network connections
false negative
deny by default
9. Packets with a forged source IP address - purpose to conceal the identity of the sender or impersonate another computing system
port address translation
website spoofing
IP spoofing
screened subnet
10. Evolved from IDS - monitors network traffic - detects and responds to attack on network
source - destination - protocol
session hijacking
NIPS
NIDS
11. Head of a packet contains...
VLAN
twisted pair
source - destination - protocol
false positive
12. Most common DMZ implementation using three firewall interfaces (internet - intranet - DMZ)
session hijacking
multiple interface firewall
defense in depth
broadcast domain
13. A pool of public IP addresses is shared by a collection of private IP addresses
content filter
passive
blind
dynamic NAT
14. Network configuration that permits selected outsiders access internal information systems
extranet
screened subnet
hub
stateful inspection
15. Web servers - FTP servers - DNS servers - mail servers should be located on the _____________
honeypot
VLAN
DMZ
hub
16. DMZ implementation using two firewalls with different rule sets for the DMZ and intranet
layered
dual homed
zone transfer
null session
17. IP spoofing attack where the attacker can only send packets and has to guess about replies
blind
subnet
encrypt session key
10base2
18. Examines content passing through and makes a decision on the data based on a set of criteria - normal uses email filtering and web browsing
broadcast domain
content filter
ping of death
router
19. A logical group of computers connected via a switch/hub that share the same network prefix in their IP address
DNS spoofing
false positive
NIPS
subnet
20. User / registered ports
session hijacking
DoS attacks
application
1024 - 49 -151
21. Firewall that communicates directly with a perimeter router and the internal network - 2 NICs - screens internal traffic
screened host
ping of death
10base2
risk mitigation
22. Dynamic / private ports
proxy server
smurf
49 -152 - 65 -535
spoofing attacks
23. Protocol used to map an known IP address to its corresponding media access control (MAC) address
static NAT
fiber optic
ARP
repeater
24. One process on every system - use local system resources - detect attacks that NIDS misses - examine data after decrypted - can be OS specific - more expensive
NIDS
HIDS
ARP
stateful inspection
25. Ping flooding - ping of death - smurf - fraggle - SYN flood - land - teardrop - email flood
PBX (Private Branch Exchange)
source - destination - protocol
DoS attacks
ping of death
26. Firewall with several NICs connected to different networks
multi homed
fiber optic
allow by default
session hijacking
27. A group of hosts on logical network segment that communicate as if they were attached to the same broadcast domain - regardless of their physical location
VLAN
honeypot
protocol analyzer
switch
28. Collection on honeypots
passive
IP spoofing
honeynet
bastion host
29. A feature of firewalls / routers that disguise the IP address of internal systems allowing connection to the Internet using one public address
10Base5
behavior based
NAT
allow by default
30. One device per network segment - does not use local system resources - can't examine encrypted traffic - OS independent - less expensive
proxy
NIDS
smurf
man in the middle and replay
31. Level 1 firewall that looks at the head of a packet - (not content) - operates rapidly - application independent - either allow or deny packets
packet filter
NAT
informed
application gateway
32. Amplifies the signal of incoming packets before broadcasting them to the network
broadcast domain
repeater
NIDS network connections
coaxial
33. Known as thinnet - 10mbps - limited to 185 meters
DNS spoofing
layered
knowledge based
10base2
34. An attacker redirects traffic by falsifying the IP address requested by ARP request
packet filter
ARP
ARP poisoning
teardrop
35. A level 3 firewall that remembers / tracks network connections - maintains a state table - distinguish which side of a firewall a connection was initiated - higher security
stateful inspection
teardrop
port address translation
man in the middle and replay
36. Unauthenticated Windows session where an attacker can gather list of users - groups - machines - shares - user and host SID
null session
network
ARP poisoning
port address translation
37. Acts as an organizations internal phone system
bastion host
PBX (Private Branch Exchange)
blind
0 - 1023
38. Allows all traffic except traffic that is specifically denied - also known as permissive access
allow by default
VLAN
replay
NAT
39. IDS that relies on the identification of known attack signatures
spoofing
allow by default
NAT
knowledge based
40. Connects two or more subnets - determines the best path to forward packets based on packet header and forwarding table information
VLAN
router
source - destination - protocol
spoofing
41. A server that sits between an intranet and it's Internet connection - masking all IP addresses
private
session hijacking
allow by default
proxy server
42. Bastion host - dual homed firewall - multi homed firewall - screened host - screened subnet
ARP
stateful inspection
0 - 1023
firewall architectures
43. Crashing a computer by sending oversized packets (over 64 bytes) that it doesn't know how to handle
NIPS
private
ping of death
deny by default
44. Attack where an attacker intercepts traffic and tricks parties at either end into believing they are communicating with each other
ping flooding
private
firewall architectures
man in the middle
45. One private IP address is mapped to one public IP address
knowledge based
port address translation
replay
static NAT
46. Two authoritative sources for your domain namespace with differing contents depending on whether the query is internal or external
proxy
split horizon DNS
content filter
VLAN
47. A complete transfer of all DNS zone information from one server to another
coaxial
fiber optic
protocol
zone transfer
48. Connects devices together to form a subnet - broadcasts incoming packets to all devices
hub
router
0 - 1023
screened host
49. Attempt to block service or reduce activity by overloading the victim machine with ping requests
IP spoofing
ping flooding
proxy server
source - destination - protocol
50. Examines a entire packet and determines action based on a complex set of rules
application gateway
passive
replay
cat3