Test your basic knowledge |

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Combines the functionality of a hub and bride into a single device - keeps track of MACs attached to each port






2. 1. physical 2. data 3. network 4. transport 5. session 6. presentation 7. application






3. Full open - half open (stealth scan) - UDP - Ping






4. rules indicate criteria in packets that represent events of interest - rules are applied to packets as they are received - alerts are created when matches are found






5. Protected at rest - protected in transit - secure the key






6. TCP/IP - the IP protoco - The core routing protocol of the internet - - deals with transmission of packets between end points - defines the addressing scheme for the internet






7. 8 bytes per packet - UDP SRC port - UDP DST Ports - UDP length - UDP Checksum






8. Not a replacement for firewalls - hardening - strong policies - or other DiD methods - low maintenance - inexpensive






9. Threat requires a vector to cross the vulnerability - stop the ability of the threat to use the vector






10. Most commonly used transport protocol today - ensures reliable packet delivery - has error handling built in






11. An attacker spoofs the victim's IP and sends an ICMP ECHO request to the broadcast address of a network. When every system responds - a DoS occurs.






12. UDP based infection - infected through vulnerability in SQL server - caused DoS on saturated networks






13. open source tool for monitoring - can be used as a NIDS - has quick updates and flexibility for custom rules






14. A list of files is defined that should be monitored for a change - HIDS software calculates a one-way hash for each file - if a change is made to the file - the hash is changed






15. Protocol for mapping an IP address to a physical machine address that is recognized on the local network - A table - usually called the ARP cache - is used to maintain a correlation between each MAC and it's corresponding IP address






16. Known - unknown - zero day






17. It interacts with data and prepares it to be transmitted across the network. It ensures reliable connectivity from end-to-end






18. An FTP that allows downloads only if the user knows the exact name of the file they're looking for






19. Intrusion detection system - it reports attacks against monitored systems/networks






20. Used by IDS for a baseline before analysis - attackers will try to de-normalize traffic to evade detection - IDS will normalize data for understood protocols






21. Uses flow control to handle network congestion - can send larger amounts of data per packet - has guaranteed delivery of transmitted data - better protection against spoofing - reduces need for error checking at higher OSI layers






22. NTP - BootP/DHCP - NFS file systems - SNMP - TFTP






23. Connects many WANs - MANs - and LANs - provided via ISP






24. Improper deployment can increase attack risk - if production systems aren't sufficiently protected - they can be vulnerable from a honeypot - legal liability






25. Handles the network address scheme and connectivity of multiple network segments. It handles communication.






26. Network traffic to the host - typically listens on all interface - uses signature analysis to identify events of interest






27. Free linux WLAN analysis tool - completely passive - cannot be detected - supports advanced GPS integration and mapping features - used for wardriving - WLAN vulerability assessment






28. Attempt to manipulate or trick a person into providing information or access - bypass network security by exploiting humans - vector is often outside attack by telephone or visitor inside






29. Anonymous FTP - FTP passes through clear text - Bounce attacks with the PORT command - user can cause an FTP to open a connection from the FTP's own commands and bypass a firewall






30. 1.0.0.0 through 127.255.255.255 - subnet mask starts at 255.0.0.0






31. Work groups that require additional protection are segmented from the rest of the internal organization - restricting access to critical segments - system of VPNs - internal firewall - VLANs and ACLs






32. An appliance that controls access between public internet and a companies private network - or between a PC NIC and the rest of the PC.






33. Bits of code embedded in programs to quickly gain access at a later time






34. Stateful firewalls maintain state of traffic flows






35. OSI






36. Connects the physical part of the network (cables) with the abstract (packets and datastreams)






37. Trivial File Transfer Protocol - method to transfer files from one device to another without needing authentication






38. Metropolitan area network - spans across city or town - larger than a LAN - uses fiber for backbone






39. Simple attack done by simply browsing available information that's allowed on a local network.






40. A spoofed IP is used to send a SYN to the target. It then responds with a SYN/ACK that never receives the final ACK to complete the handshake. This occupies a portion of the target's pre-established buffer for TCP and can prevent the target from acce






41. Means multiple iterations won't matter. If you encrypt with a key - then re-encrypt - it's the same as using one key.






42. Isolates systems when they initially connect to the network - allows systems to be scanned and checked prior to being put on a trusted segment






43. 128.0.0.0 through 191.255.255.255 - with a subnet mask of 255.255.0.0






44. Migrate to WPA2 - use strong authentication like PEAP or TTLS - audit network installations - require mutual auth between client and infrastructure equipment






45. Worms and Wireless - modems - tunnel anything through HTTP - social engineering






46. Malware - insider threat - natural disaster - terrorism - pandemic






47. logic bomb - trojan horse - trap door






48. Publish separate mail - web - and DNS servers to the internet - provide appropriate access from internal network to internet - protect internal from external attack - provide defense in depth - protect all aspects of the system






49. Application layer attacks may get through - dialup - VPN - extranet connections may bypass firewalls






50. 20 - FTP data - 21 - FTP - 23 - Telnet - 25 - SNMP - 53 - DNS - 79 - Finger - 80 - HTTP - 110 - POP - 443 - HTTPS






Can you answer 50 questions in 15 minutes?



Let me suggest you:

Browse all subjects

Browse all tests

Most popular tests



Major Subjects

Tests & Exams


AP
CLEP
DSST
GRE
SAT
GMAT

Browse all subjects

Browse all tests

Most popular tests