Test your basic knowledge |

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. An attempt to gain access by bombarding it with guesses until the password is found.






2. 20 - FTP data - 21 - FTP - 23 - Telnet - 25 - SNMP - 53 - DNS - 79 - Finger - 80 - HTTP - 110 - POP - 443 - HTTPS






3. 53 bytes - 48 bytes for data - 5 bytes for the header






4. It handles the establishment and maintenance of connections between systems






5. Confidentiality - integrity - availability






6. Handles transmissions across the physical media like wires - fiber - etc






7. Not frequently seen on LANs because of expense - because of its traffic predictability and high bandwidth support - it's good for video streaming - encapsulates common protocols - uses virtual path identifiers to create end to end connectivity - has






8. Malware - insider threat - natural disaster - terrorism - pandemic






9. Connects many WANs - MANs - and LANs - provided via ISP






10. Provides insight into traffic on the network - help detect problems with network operations - provides auditing for other security measures






11. 1 and 2 - Voice/Low speed data - 3 - Voice/Data 10Mb - 4 - Voice/Data 16Mb - 5 - 5e - Voice/Data 100Mb to 1Gb - 6 - Standard for gigabit






12. The Practice of sending an ACK inside another packet going to the same destination






13. An attacker spoofs the victim's IP and sends an ICMP ECHO request to the broadcast address of a network. When every system responds - a DoS occurs.






14. Attempt to manipulate or trick a person into providing information or access - bypass network security by exploiting humans - vector is often outside attack by telephone or visitor inside






15. rules indicate criteria in packets that represent events of interest - rules are applied to packets as they are received - alerts are created when matches are found






16. Switches along the path can be requested to allocate the desired amount of bandwidth. If the circuit has the required bandwidth - the circuit is set up.






17. Provides insight into the tactics - motives - and attacker tools






18. An appliance that controls access between public internet and a companies private network - or between a PC NIC and the rest of the PC.






19. Isolates systems when they initially connect to the network - allows systems to be scanned and checked prior to being put on a trusted segment






20. Improper deployment can increase attack risk - if production systems aren't sufficiently protected - they can be vulnerable from a honeypot - legal liability






21. True positive - false positive - true negative - false negative






22. risk = threat x vulnerability - impossible to eliminate - security is an exercise in loss reduction






23. Multiple levels of protection must be deployed - an exercie in detection - measures must be across a wide range of controls - compromises happen when people leave sites - risk - CIA triad - strategies






24. Prepends to the beginning of the file and gains control when the first instruction of the infected COM file is executed - appending to the end - virus writes its payload to the end and inserts jump instruction as the first instruction - which execute






25. packet filter firewalls rely on TCP flags to determine connection state. Attacker can send ACK packets only to bypass firewall.






26. Message in its encrypted form






27. Trying to ID modems in a telephone exchange that may be susceptible to compromise






28. destruction of data - leaking confidential information - providing backdoor access






29. Simplest form of a research honeypot - useful in identifying nature of TCP scans - allows attacker to complete 3-way handshake - listens on a defined port - logs incoming requests for analysis






30. 192.0.0.0 through 223.255.255.255 - subnet mask of 255.255.255.0






31. FIN 130 - ACK 131 - FIN 570 - ACK 571






32. flags anomalous conditions in traffic on the network - requires understanding on what is normal - bases good traffic as a baseline






33. 1.0.0.0 through 127.255.255.255 - subnet mask starts at 255.0.0.0






34. Confidentiality - integrity - availability






35. Not a replacement for firewalls - hardening - strong policies - or other DiD methods - low maintenance - inexpensive






36. The practice of sending an ACK inside another packet going to the same destination






37. Protocol for mapping an IP address to a physical machine address that is recognized on the local network. A table - usually called the ARP cache - is used to maintain a correlation between each MAC and its corresponding IP address






38. Spread as an office attachment with executable code programmed using macro facility - targets are data files - visual basic editor and other macro languages - payload executes when the code is launched






39. Most commonly used transport protocol today - ensures reliable packet delivery - has error handling built in






40. Uses inclusive or exclusive lists - inclusive analysis utilizes a list of keywords - exclusive analysis utilizes a list of events that can be ignored






41. Trivial File Transfer Protocol - method to transfer files from one device to another without needing authentication






42. Network scanner.






43. A system resource that has no legitimate purpose or reason for someone to connect to it - its purpose is to draw in attackers to understand how they break into a system






44. Personal area network - phone tethering - bluetooth - etc






45. Publish separate mail - web - and DNS servers to the internet - provide appropriate access from internal network to internet - protect internal from external attack - provide defense in depth - protect all aspects of the system






46. fast - with little fidelity - examines header information and limited payload data






47. Hash Authentication - asymmetric - non repudiation - digital signature - hash + asymmetry






48. It interacts with the application layer to determine which network services will be required






49. -Malicious code might execute destructive overwrite to hard disks -Malicious mas mailing code might expose sensitive information to the internet - web server compromise might expose organization to ridicule - Web server compromise might expose custom






50. It makes sure the data sent from one side to the other is in a format useful to the other side