SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Information Security
Start Test
Study First
Subject
:
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. An authentication service commonly used on UNIX devices that communicates by forwarding user authentication information to a centralized server.
Logic Bomb
Physical security
TACACS
Firewalls
2. An authentication process that involves three steps.
Bluejacking
Bluesnarfing
Vishing
Three-Way Handshake
3. Ensures that messages are not corrupt or tampered with
Human memory
Spyware
MPack
Hash encoding
4. The X.500 standard defines a protocol for a client application to access an X.500 directory called ____.
Impersonation
Electronic Activist (hacktivist)
DAP
Replicating
5. Malicious or accidental threats by employees. (ex. door to secure building left propped open.)
Floor Guard
Testing
Internal Threat
Bluejacking
6. A technology that can help to evenly distribute work across a network.
Load balancing
Black Hat
BioMetric devices
History
7. The most popular attack toolkit - which has almost half of the attacker toolkit market is ____.
MPack
Dwell Time
Hash encoding
Wireless VLANs
8. An attacker motivated by the ideology to attack computer or infrastructure networks.
Wireless VLANs
Root
Packet filtering
Cyberterrorist
9. Fingerprints and patterns
Smurf Attack
Cybercriminals
Token
BioMetric devices
10. Web application attacks are considered ____ attacks.
Amart card
Loop Protection
Brute Force
Server-Side
11. Forging of the return address on an e-mail so that the e-mail message appears to come from someone other than the actual sender. This is not a virus but rather a way by which virus authors conceal their identities as they send out viruses.
Brute Force Attack
Backup frequency
Spoofing
Cracker
12. A system of security tools that is used to recognize and identify data that is critical to the organization and ensure that it is protected.
Internal Threat
Rule Based Access Control
CardSpace
DLP
13. ____ involves horizontally separating words - although it is still readable by the human eye.
Biometrics
Word Splitting
Bluejacking
Black Hat
14. Sending high volumes of ICMP (usually ping) packets to a target.
Hash encoding
LDAP injection
Social engineering
ICMP Flood
15. This attack is where every possible combination of letters - numbers - and characters is used to create encrypted passwords.
Brute Force
History
Script Kiddie
Three-Way Handshake
16. A ____ means that the application or service assigned to that port is listening for any instructions.
Firewalls
Open Port
Distributed Denial of Service (DDoS)
OAuth
17. Type of software attack where an attacker captures network traffic and stores it for retransmission at a later time to gain unauthorized access to a network.
OAuth
Virus
Honeynet
Replay Attack
18. A threat to networked hosts in which the host is flooded with broadcast ping messages. A _____ _____ is a type of denial-of-service attack.
Social engineering
Smurf Attack
Roller barrier
ACL (Access Control List)
19. An attack that forces a user to unintentionally click a link.
Clickjacking
Hardware Attack
Stateful packet filtering
Account expiration
20. To create a rainbow table - each ____ begins with an initial password that is encrypted.
CCTV
Chain
Password Crackers
Cybercriminals
21. An attacker slips through a secure area following a legitimate employee.
Two factor security
Server-Side
Rule Based Access Control
Tailgating
22. Using video cameras to transmit a signal to a specific and limited set of receivers is called ____.
Black Hat
Spoofing
Environmental Threat
CCTV
23. How many past backups you keep - what you did on your machine etc.
History
Wireless security
Authorization
Brute Force
24. A program or device that can monitor data traveling over a network. Sniffers can show - all the data being transmitted over a network - including passwords and sensitive information - tends to be a favorite weapon in the hacker's arsenal
Spoofing
Mouse Trapping
Standard biometrics
Sniffer
25. The most restrictive access control model is ____.
Mandatory Access Control
PAT
Challenge
Wireless security
26. Business ____ theft involves stealing proprietary business information such as research for a new drug or a list of customers that competitors are eager to acquire.
Rule Based Access Control
Identification
Wireless security
Data
27. An authentication system developed by the Massachusetts Institute of Technology (MIT) and used to verify the identity of networked users.
VPN
Kerberos
Locking Cabinets
Logic Bomb
28. Small electronic devices that change user passwords automatically
Token
Dwell Time
RADIUS
Reverse proxy
29. Could become a key element in authentication in the future.
Whaling
Cognitive biometrics
Boot
Rogue
30. When DNS servers exchange information among themselves it is known as a ____.
Distributed
Distributed storage
Zone transfer
Authorization
31. ____ involves stealing another person's personal information - such as a Social Security number - and then using the information to impersonate the victim - generally for financial gain.
Authentication request
Spimming
Electronic Activist (hacktivist)
Identity Theft
32. Lock - conduit - card key - video equipment - secured guard
EAP
Spoofing
Phishing
Physical security access control measures
33. A ____ is a series of instructions that can be grouped together as a single command and are often used to automate a complex set of tasks or a repeated series of tasks.
Macro
Fencing
MPack
Distributed
34. Fire - extreme weather - flooding - extreme temperatures - extreme humidity.
Backup scope
Malicious code
Bluejacking
Environmental Threat
35. A security attack in which an internet user sends commands to another internet user's machine that cause the screen to fill with garbage characters. A flashing attack causes the user to terminate her session.
Cipher locks
Flashing
GIF Layering
Authentication
36. Using a single authentication credential that is shared across multiple networks.
TACACS
Drive-by Download
Identity management
IEEE 802.1x
37. A set of permissions that are attached to an object.
Distributed storage
Macro
Backup scope
ACL
38. An attacker redirects an IP address to the MAC address of a computer that is not the intended recipient.
TCP/IP
DNS
ARP Poisoning
Worm
39. A hacker who exposes security flaws in applications and operating systems so manufacturers can fix them before they become widespread problems.
White Hat
DNS
Environmental Threat
Session hijacking
40. A ____ is a set of software tools used by an attacker to hide the actions or presence of other types of malicious software - such as Trojans - viruses - or worms.
Backup frequency
Rootkit
Vishing
LDAP injection
41. Peering over the shoulder of someone to see the contents on that person's computer or cell phone screen.
Spear Phishing
Tailgate sensors
Backup scope
Shoulder Surfing
42. Software that comes hidden in free downloadable software and tracks online movements - mines the information stored on a computer - or uses a computer's CPU and storage for some task the user knows nothing about - can cause extremely slow performance
Shoulder Surfing
Spimming
Spyware
Web security gateway
43. These accounts are user accounts that remain active after an employee has left an organization.
Hash encoding
Orphaned
Content filtering
Cracker
44. In a ____ infection - a virus injects itself into the program's executable code instead of at the end of the file.
Flashing
Offline cracking
Media for backups
Swiss Cheese
45. Hurricanes - tornadoes - flooding and earthquakes are all examples of this.
Identity management
Natural Threat
ACL (Access Control List)
White box
46. When organizations use software that filters content to prevent the transmission of unauthorized information
Dumpster Diving
Social engineering
Malicious Insiders
Content filtering
47. During RADIUS authentication the AP - serving as the authenticator that will accept or reject the wireless device - creates a data packet from this information called the ____.
Challenge
DAP
Authentication request
Roller barrier
48. In the context of SSL encryption - a message issued from the client to the server that contains information about what level of security the client's browser is capable of accepting and what type of encryption the client's browser can decipher (for e
Client_Hello
Web security gateway
Rootkit
Rainbow Tables
49. Although brute force and dictionary attacks were once the primary tools used by attackers to crack an encrypted password - today attackers usually prefer ____.
Cipher locks
Rainbow Tables
Web security gateway
Open Port
50. Sifting through a company's garbage to find information to help break into their computers
Dumpster Diving
Cybercriminals
Cyberbullying
Three-Way Handshake