SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Information Security
Start Test
Study First
Subject
:
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. A ____ tester has an in-depth knowledge of the network and systems being tested - including network diagrams - IP addresses - and even the source code of custom applications.
Script Kiddie
White box
Speech recognition
ICMP Flood
2. Attack computer systems by transmitting a virus hoax - with a real virus attached. By masking the attack in a seemingly legitimate message - unsuspecting users more readily distribute the message and send the attack on to their co-workers and friends
Wireless security
Hash encoding
Hoaxes
Subject
3. A ____ is designed to separate a nonsecured area from a secured area.
VPN
Two factor security
Mantrap
BioMetric devices
4. A random string of text issued from one computer to another in some forms of authentication. It is used - along with the password (or other credential) - in a response to verify the computer's credentials.
UDP Flood
Challenge
Macro
Buffer Overflow
5. The Chinese government uses _____ to prevent Internet content that it considers unfavorable from reaching its citizenry.
Offline cracking
DNS poisoning
MPack
Impersonation
6. A user under Role Based Access Control can be assigned only one ____.
Vishing
Mantrap
Role
Hoaxes
7. Attacker sets up a rogue DNS server that responds to legitimate requests with IP addresses for malicious or non-existent websites.
70
DNS Hijacking
CardSpace
Virtualization
8. An attacker slips through a secure area following a legitimate employee.
Role
Tailgating
Identification
Fake Antivirus
9. A standard that provides a predefined framework for hardware and software developers who need to implement access control in their devices or applications.
Standard biometrics
Firewalls
Access Control
Adware
10. The protection of information from accidental or intentional misuse by persons inside or outside an organization
Electronic Vandal
SSO
Whaling
Information security
11. A framework for transporting authentication protocols instead of the authentication protocol itself.
VPN
EAP
Mandatory Access Control
Smurf Attack
12. ____ involves horizontally separating words - although it is still readable by the human eye.
Content inspection
ARP Poisoning
Smurf Attack
Word Splitting
13. A ____ does not serve clients - but instead routes incoming requests to the correct server.
Reverse proxy
Two factor security
Adware
Password
14. The process of giving someone permission to do or have something
Authorization
NAT
Fake Antivirus
Distributed storage
15. A list of statements used by a router to permit or deny the forwarding of traffic on a network based on one or more criteria.
ACL (Access Control List)
Two factor security
Content-Filtering Firewall
OAuth
16. People very knowledgeable about computers who use their knowledge to invade other people's computers
Hybird
ACL (Access Control List)
Hacker
DMS (Demilitarized Zone)
17. Below 40% or above 50%
Extreme Humidity
Hardware Attack
Access Control
Honeypot
18. A threat to networked hosts in which the host is flooded with broadcast ping messages. A _____ _____ is a type of denial-of-service attack.
What is asymmetic encryption?
Smurf Attack
Media for backups
Identity Theft
19. An attacker redirects an IP address to the MAC address of a computer that is not the intended recipient.
Media for backups
ARP Poisoning
GIF Layering
SSO
20. During RADIUS authentication the AP - serving as the authenticator that will accept or reject the wireless device - creates a data packet from this information called the ____.
Authentication request
Honeypot
Virtualization
Challenge
21. How secure the data in your backups is-can use physical security or encryption
SSO
Brute Force Attack
Worm
Security
22. A user or a process functioning on behalf of the user that attempts to access an object is known as the ____.
Private
Resident
Web security gateway
Subject
23. A ____ is a set of software tools used by an attacker to hide the actions or presence of other types of malicious software - such as Trojans - viruses - or worms.
Rootkit
Session hijacking
Hardware Attack
Zone transfer
24. A variety of threats such as viruses - worms - and Trojan horses
Malicious code
Content inspection
Character
Load balancing
25. Typically used on home routers that allow multiple users to share one IP address received from an Internet service provider (ISP).
UDP Flood
PAT
Speech recognition
Electronic Activist (hacktivist)
26. Viruses and worms are said to be self-____.
Extreme Humidity
Spear Phishing
War Driving
Replicating
27. A feature that controls a device's tolerance for unanswered service requests and helps to prevent a DoS attack.
Cognitive biometrics
Drive-by Download
Floor Guard
Orphaned
28. The weakness of passwords centers on ____.
TACACS
Separation of duties
Mouse Trapping
Human memory
29. How often you perform your backups (cost-benefit analysis of backing up)
Geometric variance
Content inspection
TACACS
Backup frequency
30. If a password is communicated across a network to log on to a remote system - it is vulnerable to ______.
Protocol analyzer
Physical security access control measures
DAP
Electronic eavesdropping
31. A ____ is a computer typically located in an area with limited security and loaded with software and data files that appear to be authentic - yet they are actually imitations of real data files.
Chain
Honeypot
DAP
Reverse proxy
32. ____ is a software program that delivers advertising content in a manner that is unexpected and unwanted by the user.
Adware
History
Session hijacking
Password Crackers
33. An authentication protocol that operates over PPP and that requires the authenticator to take the first step by offering the other computer a challenge. The requestor responds by combining the challenge with its password - encrypting the new string o
Fencing
Account expiration
Geometric variance
CHAP (Challenge Handshake Authentication Protocol)
34. Software that can guess passwords
Swiss Cheese
Virtualization
Dwell Time
Password Crackers
35. The act of driving while running a laptop configured to detect and capture wireless data transmissions.
EAP
Mouse Trapping
War Driving
Virtualization
36. A program that is automatically downloaded to your computer without your consent or even your knowledge.
Electronic Vandal
Drive-by Download
Character
Three-Way Handshake
37. These accounts are user accounts that remain active after an employee has left an organization.
Identity Theft
Orphaned
Authentication
Association request
38. Hides inside other software - usually as an attachment or a downloadable file
Trojan-horse virus
Cracker
Router
Distributed Denial of Service (DDoS)
39. Sending high volumes of UDP requests to a target.
UDP Flood
Flashing
Virtualization
DNS Hijacking
40. A user accessing a computer system must present credentials or ____ when logging on to the system.
Identification
Roller barrier
Encryption
Orphaned
41. A technique that allows private IP addresses to be used on the public Internet.
NAT
Protocol analyzer
TACACS
History
42. Forging of the return address on an e-mail so that the e-mail message appears to come from someone other than the actual sender. This is not a virus but rather a way by which virus authors conceal their identities as they send out viruses.
Load balancing
Access Control
Spoofing
Spyware
43. Form of phishing that targets wealthy individuals.
Amart card
Spyware
Whaling
Distributed Denial of Service (DDoS)
44. Generally represent disgruntled employees and alike who are seeking to perform vengeful acts against their current or former employer.
Sniffer
MPack
Malicious Insiders
EAP
45. Sending extremely critcal - derogatory - and oftern vulgar email messages or newsgroup postings to other user on the internet or online services
Flaming
Speech recognition
Mandatory Access Control
Trusted OS
46. A person who uses his knowledge of operating systems and utilities to intentionally damage or destroy data or systems.
Cracker
Root
Speech recognition
DMS (Demilitarized Zone)
47. The identification of a user based on a physical characteristic - such as a fingerprint - iris - face - voice - or handwriting
Speech recognition
Cyber Theft
Biometrics
Eavesdropping Attack
48. ____ are combination locks that use buttons which must be pushed in the proper sequence to open the door.
Rogue
Firewall logs
Cipher locks
Subject
49. ____ are a loose-knit network of attackers - identity thieves - and financial fraudsters.
Brute Force Attack
ARP Poisoning
Cybercriminals
Stateful Firewall
50. A technology that can help to evenly distribute work across a network.
Insiders
Load balancing
Rule Based Access Control
Association request