SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Network Security
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Connects two or more subnets - determines the best path to forward packets based on packet header and forwarding table information
10Base5
active
static NAT
router
2. Examines a entire packet and determines action based on a complex set of rules
smurf
defense in depth
application gateway
application
3. Type of IP addresses not routed on the internet: 10.x.x.x - 172.16.x.x - 192.168.x.x
spoofing
IP spoofing
private
active
4. Cable with copper core - has no physical transmission security and is easy to tap - 10mbps - maximum length 500 meters
repeater
proxy server
active
coaxial
5. Twisted pair cable with speed capability of 10Mbps
twisted pair
website spoofing
cat5
cat3
6. Cable designed for transmission at higher speeds (100Mbps - 2Gbps) and longer distances (2km) - expensive -eliminates signal tapping
NIDS network connections
fiber optic
SYN flood
cat5
7. Collection on honeypots
hub
zone transfer
honeynet
ARP poisoning
8. Two authoritative sources for your domain namespace with differing contents depending on whether the query is internal or external
split horizon DNS
0 - 1023
protocol
source - destination - protocol
9. Monitors network traffic to identify possible attacks
NIDS
website spoofing
subnet
split horizon DNS
10. Firewall with two NICs - one internal and one external facing - NAT is often used with this firewall
coaxial
dual homed
active
null session
11. Generate random TCP sequence numbers and encrypt traffic countermeasure what attacks
coaxial
false negative
multiple interface firewall
man in the middle and replay
12. Malicious activity not reported or detected
spoofing
false negative
source - destination - protocol
dual homed
13. A logical group of computers connected via a switch/hub that share the same network prefix in their IP address
twisted pair
session hijacking
subnet
smurf
14. A pool of public IP addresses is shared by a collection of private IP addresses
dynamic NAT
0 - 1023
stateful inspection
passive
15. Level 1 firewall that looks at the head of a packet - (not content) - operates rapidly - application independent - either allow or deny packets
stateful inspection
10Base5
packet filter
allow by default
16. IDS that relies on the identification of known attack signatures
NIDS
spoofing attacks
knowledge based
split horizon DNS
17. A physical or logical subnetwork that houses systems accessible to a larger untrusted network - usually the Internet - also known as DMZ
smurf
screened subnet
honeynet
active
18. Seeks to reduce the probability and/or impact of a specific risk below an acceptable threshold
router
blind
risk mitigation
spoofing
19. User / registered ports
1024 - 49 -151
ping of death
website spoofing
subnet
20. Well known ports - allow administrative access - used for network services - considered only ports allowed to transmit traffic thru a firewall
0 - 1023
NIDS network connections
active
fraggle
21. IP spoofing attack where the attacker can only send packets and has to guess about replies
source - destination - protocol
null session
replay
blind
22. When a hacker takes over a TCP session between two machines - also known as session hijacking - foiled by the use of encrypted sessions
PBX (Private Branch Exchange)
passive
tcp/ip hijacking
session hijacking
23. A method - used by switches and email servers - of delivering messages which are temporarily held by an intermediary before being sent to their final destination
ARP poisoning
store and forward
stateful inspection
screened subnet
24. Connects devices together to form a subnet - packet forwarding is based on MAC addresses - works at the data link layer of the OSI
switch
null session
subnet
screened subnet
25. Session hijacking countermeasure
encrypt session key
store and forward
dual homed
blind
26. Level 2 firewall often used to filter web traffic
proxy
VLAN
cat5
man in the middle
27. Firewall with several NICs connected to different networks
ARP poisoning
IP spoofing
website spoofing
multi homed
28. Web servers - FTP servers - DNS servers - mail servers should be located on the _____________
DMZ
router
dual homed
multi homed
29. Unauthenticated Windows session where an attacker can gather list of users - groups - machines - shares - user and host SID
application gateway
null session
application
proxy
30. Attempt to block service or reduce activity by overloading the victim machine with ping requests
ping flooding
0 - 1023
port
land attack
31. A variation of a smurf attack using UDP
source - destination - protocol
protocol analyzer
fraggle
session hijacking
32. Evolved from IDS - monitors network traffic - detects and responds to attack on network
man in the middle
protocol
NIPS
screened subnet
33. A level 3 firewall that remembers / tracks network connections - maintains a state table - distinguish which side of a firewall a connection was initiated - higher security
twisted pair
screened subnet
stateful inspection
dual homed
34. Promiscuous NIC to sniff passing traffic - admin NIC to send alerts to centralized management system
active
NIDS network connections
0 - 1023
dual homed
35. Firewall that intercepts and inspects messages before delivering them - placed between trusted and untrusted networks - degrade network traffic - also know as application gateway
proxy
land attack
NIDS network connections
IP spoofing
36. A packet filtering firewall works at this layer of the OSI model
null session
active
network
behavior based
37. Packet filtering - proxies - stateful inspection
protocol
firewalls
land attack
PBX (Private Branch Exchange)
38. A ping message is broadcast to an entire network with a spoofed source IP addess of the victim computer - flooding the victim computer with responses during this attack
active
informed
smurf
false negative
39. Dynamic / private ports
NIPS
ping flooding
49 -152 - 65 -535
router
40. Capture and analyze network traffic - also known as packet analyzer - sniffer - network analyzer
protocol analyzer
informed
NAT
10base2
41. One private IP address is mapped to one public IP address
dual homed
static NAT
firewalls
NIPS
42. An attacker redirects traffic by falsifying the IP address requested by ARP request
smurf
10Base5
firewalls
ARP poisoning
43. Network configuration that permits selected outsiders access internal information systems
deny by default
extranet
DoS attacks
cat5
44. A DoS attack that subverts the normal "three way handshake" of TCP/IP by sending SYN packets - but no corresponding ACK packets
allow by default
screened host
multi homed
SYN flood
45. Connects devices together to form a subnet - broadcasts incoming packets to all devices
honeypot
tcp/ip hijacking
hub
ping of death
46. Known as thicknet - 10mbps - limited to 500 meters
active
encrypt session key
honeypot
10Base5
47. A complete transfer of all DNS zone information from one server to another
zone transfer
49 -152 - 65 -535
protocol
firewalls
48. Crashing a computer by sending oversized packets (over 64 bytes) that it doesn't know how to handle
firewall architectures
NAT
ping of death
dynamic NAT
49. A locked down/hardened host on the public side of the firewall highly exposed to attacks (i.e. web server - email server)
active
NIDS
fiber optic
bastion host
50. Bbenign activity reported as malicious
VLAN
false positive
subnet
blind
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests