SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
GIAC
Start Test
Study First
Subjects
:
certifications
,
giac
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. removable media - email attachments - web browsing - social networking - network vulnerabilities - IM applications - p2p
Some malware propagation techniques
NAC
Internet
Group
2. 192.0.0.0 through 223.255.255.255 - subnet mask of 255.255.255.0
What range is a class C network?
The session layer
The OSI model
What's a VLAN
3. Attaches itself to existing program files and activated when the exe is launched
Some FTP dangers
Program infector
Some honeypot advantages
The network layer
4. free windows based wireless scanner for 802.1b - detects access point settings - supports GSP integration - identifies networks as encrypted or unencrypted
Best way to protect wireless networks
Checksum in UDP
Types of ATM virtual circuits
Network stumbler
5. Uses inclusive or exclusive lists - inclusive analysis utilizes a list of keywords - exclusive analysis utilizes a list of events that can be ignored
Log monitoring work?
ACK piggybacking
Brute force
Browsing attack
6. Netmasks or subnets provide a method for identifying what portion of an address is the network - and what portion is the host
Some malware capabilities
The conficker worm
IDS signature analysis work
A netmask
7. Stateful firewalls maintain state of traffic flows
Stateful firewall
Risk
A network protocol
Integrity of Data
8. Going around with equipment to detect wireless networks
Wardriving
Trap door
Permutation
Anomaly analysis work
9. Anonymous FTP - FTP passes through clear text - Bounce attacks with the PORT command - user can cause an FTP to open a connection from the FTP's own commands and bypass a firewall
File Integrity checking work
Some FTP dangers
Honeyd
SYN flood
10. Protocol for mapping an IP address to a physical machine address that is recognized on the local network. A table - usually called the ARP cache - is used to maintain a correlation between each MAC and its corresponding IP address
Vulnerabilities
Internet
Address resolution protocol
Total cell size for asynchronous transfer mode (ATM)
11. Very simplistic. All systems are attached to the same cable segment. Rarely used because they're unreliable - low fault tolerance - poor traffic isolation - with limited scalability
Bus Topology
The three goals of security
The five threat vectors
Internet
12. logic bomb - trojan horse - trap door
A network protocol
Boot record infector
Types of ATM virtual circuits
Some types of malicious code
13. One is for talking - one is for implementing
The OSI model
Some reasons to use UDP over TCP
The difference in stacks
Port scan
14. True positive - false positive - true negative - false negative
The four types of events reported by IDS
Some Pen Test techniques
The three goals of security
A netmask
15. Improper deployment can increase attack risk - if production systems aren't sufficiently protected - they can be vulnerable from a honeypot - legal liability
Macro virus
IDS signature analysis work
Some disadvantages of honeypots
ATM work
16. Full open - half open (stealth scan) - UDP - Ping
Ack Piggybacking
Network stumbler
The three goals of security
Nmap scanning techniques
17. ATM supports two types of virtual circuits: permanent virtual circuits and switches virtual circuit - PVC is set up in advance - usually manually - SVC is established automatically through a signaling protocol and can be created on the fly - establis
Deep packet inspection
Types of ATM virtual circuits
What range is a class B network?
Proxy or application gateway
18. Syn - Syn/Ack - Ack
Worms
LAN
To establish a TCP session
Smurf attack
19. Protocol for mapping an IP address to a physical machine address that is recognized on the local network - A table - usually called the ARP cache - is used to maintain a correlation between each MAC and it's corresponding IP address
Address Resolution Protocol (ARP)
Snort
The TCP/IP model
DDoS attack
20. Migrate to WPA2 - use strong authentication like PEAP or TTLS - audit network installations - require mutual auth between client and infrastructure equipment
Best way to protect wireless networks
Router
Some common UDP ports
UDP packet headers
21. TCP/IP - the IP protoco - The core routing protocol of the internet - - deals with transmission of packets between end points - defines the addressing scheme for the internet
When implementing protocols - what stack should be used?
Rootkit
Some reasons to use UDP over TCP
Rotation?
22. Switches along the path can be requested to allocate the desired amount of bandwidth. If the circuit has the required bandwidth - the circuit is set up.
When setting up a virtual circuit
LAN
OS Command Injection defenses
Stateful firewall
23. Attacks systems through known vulnerabilities - automatically scans for more systems to attack - lowers system defenses - installs rootkit or root shell - opens up back doors - self contained malware that can copy itself
Worms
Rootkit
The goals of cryptography
Some Pen Test techniques
24. Network scanner.
The data link layer
A netmask
Vulnerabilities
Nmap
25. Take the file and try to compress it. If it compresses - it means there is a pattern and it's more easily crackable
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
26. Most commonly used transport protocol today - ensures reliable packet delivery - has error handling built in
Some other UDP based protocols
The goals of cryptography
Overview of TCP
Bus Topology
27. A cracking tool inserted into the OS that allows the attacker to do as they please.
PAN
Firewall
What's an easy way to test encryption?
Rootkit
28. keeps the same letters - but changes the position within the text - easy to break - can be combined with substitution
Kismet
Permutation
What primary threats should be protected against
Rootkit
29. Small program triggered by an event that provides an action. E.g. scheduled file removal if countdown isn't reset - ie: employee was fired
Logic bomb
What primary threats should be protected against
To establish a TCP session
File Integrity checking work
30. Infects the EXE and make them operate slightly different - when infected - exe header sizes are altered to point to the appended viral code
To establish a TCP session
The difference in stacks
Trap door
EXE program infector
31. NTP - BootP/DHCP - NFS file systems - SNMP - TFTP
Risk
File integrity checking work
Some other UDP based protocols
Plaintext
32. A sends a SYN packet to B - B acknowledges with a SYN/ACK - A replies with ACK
3-way handshake
IDS
What range is a class A network?
Some honeypot advantages
33. 128.0.0.0 through 191.255.255.255 - with a subnet mask of 255.255.0.0
Switches
Permutation
What range is a class B network?
Trojan horse
34. deployment challenges including topology and access limitations - analyzing encrypted traffic - quantity vs. quality of signatures - performance limitations with extensive analysis techniques - very costly for proper management
Vulnerabilities
NIDS challenges
Some types of malicious code
The Information Centric defense in depth
35. Used by IDS for a baseline before analysis - attackers will try to de-normalize traffic to evade detection - IDS will normalize data for understood protocols
The transport layer
Nmap
IDS data normalization
Address Resolution Protocol (ARP)
36. Confidentiality - integrity - availability
The three goals of security
Datagram length of a UDP packet
EXE program infector
The four types of events reported by IDS
37. Means multiple iterations won't matter. If you encrypt with a key - then re-encrypt - it's the same as using one key.
MAN
Group
NIDS advantages
Some NIDS topology limitations
38. Maintains complete TCP connection state and sequencing through 2 connections - address translation built-in by virtue of second connection above
Proxy or application gateway
Program infector
IDS signature analysis work
WAN
39. Application layer attacks may get through - dialup - VPN - extranet connections may bypass firewalls
The TCP/IP model
Logic bomb
Trap door
Some firewall challenges
40. A list of files is defined that should be monitored for a change - HIDS software calculates a one-way hash for each file - if a change is made to the file - the hash is changed
To establish a TCP session
File integrity checking work
Multi protocol label switching
Alteration of code
41. Not a replacement for firewalls - hardening - strong policies - or other DiD methods - low maintenance - inexpensive
Group
Permutation
IDS not
War Dialing
42. A low end firewall that can quickly be deployed using existing hardware. They examine packets themselves with no content.
Program infector
A blind FTP
Anomaly analysis work
Stateless packet filter
43. Uses a 1 to 1 substitution of characters - rotate the alphabet by 'n' number of characters - rot+X means rotate the letters X characters
IDS data normalization
Rotation?
COM/Script program infector
The network layer
44. risk = threat x vulnerability - impossible to eliminate - security is an exercise in loss reduction
Rotation?
Risk
Some FTP dangers
A netcat listener
45. Allows admins to remotely access a system for troubleshooting. - E.g VNC - GoToMyPc - PC Anywhere
Remote maintenance
A netcat listener
Kismet
Risk
46. Program disguised as something helpful - only to perform actions the user did not intend. Opening ports - installing other programs - etc.
Anomaly analysis work
Some FTP dangers
Trojan horse
Checksum in UDP
47. Wide Area Network - Larger than MAN or LAN - uses public network - phone lines - and leased lines to tie LAN and MAN over a dispersed area
Some NIDS topology limitations
WAN
The Information Centric defense in depth
Router
48. A time of check/time of use attack that exploits the difference in between when a security control was applied and the time the service was used.
Vulnerabilities
Social engineering
Race conditions
Browsing attack
49. Worms and Wireless - modems - tunnel anything through HTTP - social engineering
Some ways to bypass firewall protections
When setting up a virtual circuit
Snort
IDS signature analysis work
50. Malware - insider threat - natural disaster - terrorism - pandemic
IDS not
ACK piggybacking
NIDS advantages
What primary threats should be protected against
Sorry!:) No result found.
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests