SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
GIAC
Start Test
Study First
Subjects
:
certifications
,
giac
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. UDP based infection - infected through vulnerability in SQL server - caused DoS on saturated networks
Some external threat concerns
SQL Slammer Worm
A netcat listener
To establish a TCP session
2. War dialing - war driving - Sniffing - eavesdropping - dumpster diving - social engineering
3-way handshake
Total cell size for asynchronous transfer mode (ATM)
Rotation?
Some Pen Test techniques
3. A sends a SYN packet to B - B acknowledges with a SYN/ACK - A replies with ACK
Switches
Trojan horse
3-way handshake
Some common UDP ports
4. Multiple levels of protection must be deployed - an exercie in detection - measures must be across a wide range of controls - compromises happen when people leave sites - risk - CIA triad - strategies
IDS
Nmap
Defense in depth
Ciphertext
5. Replicates traffic onto all ports - no traffic monitoring - cannot control which ports should or shouldn't receive frames - forming a large collision domain.
Hubs
Logic bomb
Asynchronous Transfer Mode
Vulnerabilities
6. OSI
What's a VLAN
When talking about protocols and referencing layers - what stack is used
NIDS advantages
Logic bomb
7. Migrate to WPA2 - use strong authentication like PEAP or TTLS - audit network installations - require mutual auth between client and infrastructure equipment
Best way to protect wireless networks
SQL Slammer Worm
COM/Script program infector
The four types of events reported by IDS
8. Outside attack from network - Outsider attack from telephone - Insider attack from local network - insider attack from local system - attack from malicious code
IDS not
A network protocol
HIDS monitor
The five threat vectors
9. low interaction production honeypot - network daemon that can simulate other hosts - each host can appear as a different OS
What threats should be protected against - based on threat levels
Honeyd
Worms
WAN
10. size is whatever the length of the UDP portion of the packet. Could be as large as 65 -535
Datagram length of a UDP packet
A netmask
Some reasons to use UDP over TCP
Types of ATM virtual circuits
11. An agreement on how different computer will work - protocols define the format and order of messages and what to do upon receipt of the messages - basically the rules of the network
The four basic approaches to defense in depth
Best way to protect wireless networks
ACK piggybacking
A network protocol
12. True positive - false positive - true negative - false negative
Logic bomb
ATM work
To establish a TCP session
The four types of events reported by IDS
13. 1. physical 2. data 3. network 4. transport 5. session 6. presentation 7. application
What ways should the crypto key be protected?
The OSI Protocol Stack
Some NIDS topology limitations
The Information Centric defense in depth
14. Attaches itself to existing program files and activated when the exe is launched
NIDS advantages
Macro virus
Program infector
Types of viruses
15. Prepends to the beginning of the file and gains control when the first instruction of the infected COM file is executed - appending to the end - virus writes its payload to the end and inserts jump instruction as the first instruction - which execute
When talking about protocols and referencing layers - what stack is used
COM/Script program infector
What primary threats should be protected against
Alteration of code
16. Worms and Wireless - modems - tunnel anything through HTTP - social engineering
Some ways to bypass firewall protections
A netmask
Risk
Asynchronous Transfer Mode
17. Protected at rest - protected in transit - secure the key
Plaintext
What ways should the crypto key be protected?
NIDS challenges
Nmap
18. 8 bytes per packet - UDP SRC port - UDP DST Ports - UDP length - UDP Checksum
Types of ATM virtual circuits
Rootkit
Anomaly analysis work
UDP packet headers
19. The practice of sending an ACK inside another packet going to the same destination
The five threat vectors
ACK piggybacking
OS Command Injection defenses
Some other UDP based protocols
20. It handles the establishment and maintenance of connections between systems
Risk
IDS not
Network stumbler
The session layer
21. Connection oriented - before systems can communicate over an ATM network - they must establish a virtual circuit between each other - this can span across multiple ATM switches that also handle communications for other systems - at the end of the con
ATM work
Some malware propagation techniques
Some types of malicious code
Some honeypot advantages
22. Known - unknown - zero day
What categories do vulnerabilities fall into?
A netcat listener
Some NIDS topology limitations
Switches
23. Provides insight into traffic on the network - help detect problems with network operations - provides auditing for other security measures
DDoS attack
Some firewall challenges
NIDS advantages
MAN
24. Syn - Syn/Ack - Ack
The session layer
To establish a TCP session
IDS signature analysis work
Buffer overflow
25. It allows the transport layer to detect when the UDP headers or the payload have been modified in transit
COM/Script program infector
What range is a class A network?
Bridge
Checksum in UDP
26. Protocol for mapping an IP address to a physical machine address that is recognized on the local network. A table - usually called the ARP cache - is used to maintain a correlation between each MAC and its corresponding IP address
Address resolution protocol
Nmap scanning techniques
Kismet
A network protocol
27. It interacts with the application layer to determine which network services will be required
the application layer
Router
Some malware capabilities
Some honeypot advantages
28. Spread as an office attachment with executable code programmed using macro facility - targets are data files - visual basic editor and other macro languages - payload executes when the code is launched
Macro virus
A blind FTP
ATM work
Honeyd
29. Relies on executable code insertion and user interaction to spread
Some other UDP based protocols
Browsing attack
Parasitic malware
Hping
30. Poor programming without error checking can allow commands to be run in an input field. This can point to a command further in the buffer that will execute the attacker's payload.
Buffer overflow
Some common UDP ports
Plaintext
NIDS challenges
31. Connects the physical part of the network (cables) with the abstract (packets and datastreams)
To establish a TCP session
The data link layer
No State Inspection ACK flag set
Kismet
32. Small program triggered by an event that provides an action. E.g. scheduled file removal if countdown isn't reset - ie: employee was fired
Firewall
NIDS challenges
The protected enclave to defense in depth
Logic bomb
33. 53 bytes - 48 bytes for data - 5 bytes for the header
Total cell size for asynchronous transfer mode (ATM)
The threat vector analysis in defense in depth
Group
the application layer
34. Most commonly used transport protocol today - ensures reliable packet delivery - has error handling built in
Some malware propagation techniques
No State Inspection ACK flag set
IDS signature analysis work
Overview of TCP
35. A time of check/time of use attack that exploits the difference in between when a security control was applied and the time the service was used.
What ways should the crypto key be protected?
Some common TCP ports
Firewall
Race conditions
36. Metropolitan area network - spans across city or town - larger than a LAN - uses fiber for backbone
The conficker worm
MAN
The threat vector analysis in defense in depth
When talking about protocols and referencing layers - what stack is used
37. Wide Area Network - Larger than MAN or LAN - uses public network - phone lines - and leased lines to tie LAN and MAN over a dispersed area
Some types of malicious code
WAN
Honeyd
Some disadvantages of honeypots
38. An FTP that allows downloads only if the user knows the exact name of the file they're looking for
Some common UDP ports
A blind FTP
Some firewall benefits
What categories do vulnerabilities fall into?
39. Handles the network address scheme and connectivity of multiple network segments. It handles communication.
Bridge
The network layer
A blind FTP
Some network design objectives
40. Handles transmissions across the physical media like wires - fiber - etc
The physical layer stack
When implementing protocols - what stack should be used?
Some common UDP ports
Deep packet inspection
41. Network traffic to the host - typically listens on all interface - uses signature analysis to identify events of interest
Log monitoring work?
HIDS monitor
Some reasons to use UDP over TCP
Nmap scanning techniques
42. It makes sure the data sent from one side to the other is in a format useful to the other side
WAN
Social engineering
The presentation layer
What categories do vulnerabilities fall into?
43. Not a replacement for firewalls - hardening - strong policies - or other DiD methods - low maintenance - inexpensive
Stateful firewall
The TCP/IP model
IDS not
File integrity checking work
44. Bits of code embedded in programs to quickly gain access at a later time
The three goals of security
Trap door
Kismet
Social engineering
45. Unified data carrying service - replacing from replay and ATM
When setting up a virtual circuit
The Information Centric defense in depth
Types of viruses
Multi protocol label switching
46. Common backdoor to open a port - port scan scans for open ports on remote host - scans 0 - 65 -535 twice. TCP and UDP
Datagram length of a UDP packet
Ack Piggybacking
Port scan
IDS signature analysis work
47. ATM supports two types of virtual circuits: permanent virtual circuits and switches virtual circuit - PVC is set up in advance - usually manually - SVC is established automatically through a signaling protocol and can be created on the fly - establis
A netmask
Some external threat concerns
Denial of service
Types of ATM virtual circuits
48. Intellectual property - business goals - validated data - historical
Alteration of code
Program infector
Checksum in UDP
What threats should be protected against - based on threat levels
49. rules indicate criteria in packets that represent events of interest - rules are applied to packets as they are received - alerts are created when matches are found
IDS signature analysis work
Hping
Integrity of Data
The network layer
50. 128.0.0.0 through 191.255.255.255 - with a subnet mask of 255.255.0.0
SQL Slammer Worm
IDS signature analysis work
What range is a class B network?
The Uniform Protection to defense in depth
Can you answer 50 questions in 15 minutes?
Let me suggest you:
Browse all subjects
Browse all tests
Most popular tests
Major Subjects
Tests & Exams
AP
CLEP
DSST
GRE
SAT
GMAT
Certifications
CISSP go to https://www.isc2.org/
PMP
ITIL
RHCE
MCTS
More...
IT Skills
Android Programming
Data Modeling
Objective C Programming
Basic Python Programming
Adobe Illustrator
More...
Business Skills
Advertising Techniques
Business Accounting Basics
Business Strategy
Human Resource Management
Marketing Basics
More...
Soft Skills
Body Language
People Skills
Public Speaking
Persuasion
Job Hunting And Resumes
More...
Vocabulary
GRE Vocab
SAT Vocab
TOEFL Essential Vocab
Basic English Words For All
Global Words You Should Know
Business English
More...
Languages
AP German Vocab
AP Latin Vocab
SAT Subject Test: French
Italian Survival
Norwegian Survival
More...
Engineering
Audio Engineering
Computer Science Engineering
Aerospace Engineering
Chemical Engineering
Structural Engineering
More...
Health Sciences
Basic Nursing Skills
Health Science Language Fundamentals
Veterinary Technology Medical Language
Cardiology
Clinical Surgery
More...
English
Grammar Fundamentals
Literary And Rhetorical Vocab
Elements Of Style Vocab
Introduction To English Major
Complete Advanced Sentences
Literature
Homonyms
More...
Math
Algebra Formulas
Basic Arithmetic: Measurements
Metric Conversions
Geometric Properties
Important Math Facts
Number Sense Vocab
Business Math
More...
Other Major Subjects
Science
Economics
History
Law
Performing-arts
Cooking
Logic & Reasoning
Trivia
Browse all subjects
Browse all tests
Most popular tests