SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Network Security
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Used by ISPs - single public network IP address is shared among many hosts on a private network - also known as PAT
zone transfer
port address translation
knowledge based
cat5
2. Blocks all traffic from passing through the firewall except for traffic that is explicitly allowed - also known as restrictive access - best practice
cat3
deny by default
tcp/ip hijacking
switch
3. A person or program masquerades as another by presenting false information to gain an illegitimate advantage
promiscuous
behavior based
DNS spoofing
spoofing
4. A feature of firewalls / routers that disguise the IP address of internal systems allowing connection to the Internet using one public address
port
subnet
NAT
cat5
5. A group of hosts on logical network segment that communicate as if they were attached to the same broadcast domain - regardless of their physical location
fraggle
ping flooding
VLAN
promiscuous
6. Generate random TCP sequence numbers and encrypt traffic countermeasure what attacks
man in the middle and replay
passive
land attack
IP spoofing
7. IP spoofing attack where the attacker can monitor packets and participate in bidirectional communication
dynamic NAT
informed
bastion host
ARP poisoning
8. A logical connection point allowing computers and software to communicate and exchange data
NAT
active
dynamic NAT
port
9. Level 1 firewall that looks at the head of a packet - (not content) - operates rapidly - application independent - either allow or deny packets
10Base5
IP spoofing
packet filter
store and forward
10. Take control of a session between a server and client - the users gets kicked off the session while the attacker inserts himself into the session by sending a reset request to the client
port address translation
stateful inspection
honeypot
session hijacking
11. Cable used most in networks - maximum speed 1Gbps - maximum length 100 meters - susceptible to tap
twisted pair
ping flooding
land attack
dynamic NAT
12. Session hijacking countermeasure
proxy
multi homed
HIDS
encrypt session key
13. An application layer gateway works at this layer of the OSI model
10Base5
application
NIDS
1024 - 49 -151
14. Malicious insiders - connections that bypass the firewall (i.e. IM) - encrypted traffic/tunneling - social engineering - physical access are missed by ___________
zone transfer
firewalls
network
VLAN
15. Protocol used to map an known IP address to its corresponding media access control (MAC) address
passive
bastion host
packet filter
ARP
16. Attack where an attacker intercepts traffic and tricks parties at either end into believing they are communicating with each other
port
man in the middle
packet filter
land attack
17. An attacker redirects traffic by falsifying the IP address requested by ARP request
bastion host
session hijacking
SYN flood
ARP poisoning
18. A locked down/hardened host on the public side of the firewall highly exposed to attacks (i.e. web server - email server)
bastion host
NIDS
repeater
multi homed
19. A logical group of computers connected via a switch/hub that share the same network prefix in their IP address
network
repeater
subnet
NIDS
20. Collection on honeypots
DMZ
49 -152 - 65 -535
IP spoofing
honeynet
21. Cable with copper core - has no physical transmission security and is easy to tap - 10mbps - maximum length 500 meters
coaxial
store and forward
informed
IP spoofing
22. One process on every system - use local system resources - detect attacks that NIDS misses - examine data after decrypted - can be OS specific - more expensive
HIDS
extranet
man in the middle
proxy server
23. IDS that relies on usage patterns and baseline operation - can ID new vulnerability - high rate of false alarms
proxy
behavior based
IP spoofing
land attack
24. Firewall with two NICs - one internal and one external facing - NAT is often used with this firewall
dual homed
risk mitigation
website spoofing
informed
25. IPS response method - terminate process/session - block/reject and redirect network traffic
ARP
active
promiscuous
application gateway
26. Head of a packet contains...
encrypt session key
source - destination - protocol
honeynet
DNS spoofing
27. Ping flooding - ping of death - smurf - fraggle - SYN flood - land - teardrop - email flood
content filter
IP spoofing
stateful inspection
DoS attacks
28. An attacker redirects valid request to malicious sites by feeding a DNS server altered records which are retained in its cache
private
49 -152 - 65 -535
DNS spoofing
router
29. Malicious activity not reported or detected
false negative
DoS attacks
ARP poisoning
NIDS
30. Used to pass data from one VLAN to another
router
false negative
repeater
multiple interface firewall
31. Evolved from IDS - monitors network traffic - detects and responds to attack on network
router
promiscuous
NIPS
stateful inspection
32. One device per network segment - does not use local system resources - can't examine encrypted traffic - OS independent - less expensive
NIDS
twisted pair
switch
active
33. Unauthenticated Windows session where an attacker can gather list of users - groups - machines - shares - user and host SID
source - destination - protocol
land attack
null session
port address translation
34. A DoS attack that subverts the normal "three way handshake" of TCP/IP by sending SYN packets - but no corresponding ACK packets
firewalls
SYN flood
teardrop
protocol analyzer
35. Connects devices together to form a subnet - packet forwarding is based on MAC addresses - works at the data link layer of the OSI
honeypot
protocol
firewalls
switch
36. Crashing a computer by sending oversized packets (over 64 bytes) that it doesn't know how to handle
ping of death
application gateway
encrypt session key
port
37. IP - email - website - DNS - and ARP
NIDS network connections
passive
spoofing attacks
false positive
38. A pool of public IP addresses is shared by a collection of private IP addresses
SYN flood
49 -152 - 65 -535
dual homed
dynamic NAT
39. A complete transfer of all DNS zone information from one server to another
zone transfer
proxy
subnet
NIDS network connections
40. A decoy system - intentionally left exposed to attract/distract attackers - logs and monitors attacker activities
honeypot
packet filter
application
ping of death
41. Web servers - FTP servers - DNS servers - mail servers should be located on the _____________
spoofing attacks
NAT
network
DMZ
42. Examines a entire packet and determines action based on a complex set of rules
application gateway
stateful inspection
split horizon DNS
DNS spoofing
43. Variation of the SYN flood where SYN packets are spoofed to have the same source and destination IP address and port
IP spoofing
1024 - 49 -151
null session
land attack
44. A firewall that checks all layers of a packet including content - verifying an expected response to a current communication session - also call a deep packet inspection
screened host
stateful inspection
man in the middle
dual homed
45. IDS response method using logging and notification
NIPS
screened host
passive
router
46. A flaw in TCP/IP to verify that a packet really comes from the addess indicated in the IP header leads to this attack
1024 - 49 -151
IP spoofing
port address translation
coaxial
47. A level 3 firewall that remembers / tracks network connections - maintains a state table - distinguish which side of a firewall a connection was initiated - higher security
network
multiple interface firewall
stateful inspection
protocol
48. Two authoritative sources for your domain namespace with differing contents depending on whether the query is internal or external
spoofing
ping of death
session hijacking
split horizon DNS
49. Unauthenticated connections - creating the potential for a successful connection as an anonymous user
private
null session
NAT
NIPS
50. Capture and analyze network traffic - also known as packet analyzer - sniffer - network analyzer
false negative
protocol analyzer
session hijacking
smurf
