SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Information Security
Start Test
Study First
Subject
:
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. An AP that is set up by an attacker.
DNS Log
Server-Side
Evil Twin
Backup frequency
2. Countless requests for a TCP connection sent to an FTP server - web server - or system attached to the internet.
SYN Flood
Smurf Attack
Challenge
Sniffer
3. Web application attacks are considered ____ attacks.
Server-Side
Token
Encryption
Digital Certificate
4. The action that is taken by the subject over the object is called a ____.
Operation
White Hat
Dumpster Diving
Adware
5. Pretending to be another person.
Impersonation
Backup scope
Man-made Threat
Fake Antivirus
6. Mass mailings sent as Instant Messages to users. Often these can feature links to explicit porn sites.
Honeypot
Spimming
BioMetric devices
Prevention and detection
7. The geographical storage of your backups-safest place is a different place from where you keep your actual data
Boot
Distributed storage
Session hijacking
Symmetric encryption
8. Tools used to configure ________: WEP - WPA - MAC address filtering - SSID broadcasting - wireless antennae
History
Client_Hello
LEAP
Wireless security
9. Requires that if the fraudulent application of a process could potentially result in a breach of security - then the process should be divided between two or more individuals.
Malicious Insiders
Separation of duties
Macro
Wireless VLANs
10. Attack computer systems by transmitting a virus hoax - with a real virus attached. By masking the attack in a seemingly legitimate message - unsuspecting users more readily distribute the message and send the attack on to their co-workers and friends
Hoaxes
Flaming
Protocol analyzer
Prevention and detection
11. ____ uses "speckling" and different colors so that no two spam e-mails appear to be the same.
Geometric variance
Man-in-the-Middle Attack
BioMetric devices
Worm
12. Requires mutual authentication used for WLAN encryption using Cisco client software.
LEAP
Encryption
Port Scanner
Man-in-the-Middle Attack
13. Users who access a Web server are usually restricted to the ____ directory.
Root
Cracker
Backup scope
MPack
14. Could become a key element in authentication in the future.
Ciphertext
Protocol analyzer
Cognitive biometrics
Honeypot
15. Software attack using special monitoring software to gain access to private communications on the network wire or across a wireless network. (aka sniffing attack)
Token
computer footprint
Operation
Eavesdropping Attack
16. Securing a restricted area by erecting a barrier is called ____.
Fencing
Hardware Attack
GIF Layering
ACL
17. In a ____ infection - a virus injects itself into the program's executable code instead of at the end of the file.
DAC
Ciphertext
Swiss Cheese
Content-Filtering Firewall
18. This attack is where every possible combination of letters - numbers - and characters is used to create encrypted passwords.
Spyware
Brute Force
Black Hat
Script Kiddie
19. Software written with malicious intent to cause annoyance or damage - need to attach to something (such as an executable file)
Stateful packet filtering
Replay Attack
Virus
Natural Threat
20. A threat that originates from outside the company. (ex. power failure.)
External Threat
Protocol analyzer
Hacker
Malicious Insiders
21. Software that comes hidden in free downloadable software and tracks online movements - mines the information stored on a computer - or uses a computer's CPU and storage for some task the user knows nothing about - can cause extremely slow performance
Security
Identification
Distributed
Spyware
22. A program that is automatically downloaded to your computer without your consent or even your knowledge.
Word Splitting
Drive-by Download
Internal Threat
Honeynet
23. An attack that accesses unauthorized information from a wireless device through a Bluetooth connection - often between cell phones and laptop computers.
Bluesnarfing
Blacklisting Software
Mandatory Access Control
Bluejacking
24. A technique for crashing by sending too much data to the buffer in a comuter's memory
BioMetric devices
Account expiration
Identity Theft
Buffer Overflow
25. A ____ is a computer typically located in an area with limited security and loaded with software and data files that appear to be authentic - yet they are actually imitations of real data files.
DNS
Honeypot
Man-in-the-Middle Attack
ACL
26. A type of virus that spreads itself - not only from file to file - but also from computer to computer - do not need to attach to anything to spread and can tunnel themselves into computers.
Mandatory Access Control
Worm
Amart card
Protocol analyzer
27. Form of phishing that targets wealthy individuals.
Phishing
Mandatory Access Control
Whaling
Impersonation
28. The most popular attack toolkit - which has almost half of the attacker toolkit market is ____.
Electronic Activist (hacktivist)
SYN Flood
Authentication
MPack
29. It is able to code and decode data
CardSpace
Symmetric encryption
Cognitive biometrics
TCP/IP
30. When a device receives a beacon frame from an AP - the device then sends a frame known as a ____ frame to the AP.
Association request
Malicious Insiders
Operation
Firewalls
31. A ____ is a computer program or a part of a program that lies dormant until it is triggered by a specific logical event.
Logic Bomb
Locking Cabinets
Brute Force Attack
Kerberos
32. Four interrelated aspects to _________:Access - data - infrastructure - computers
Biometrics
History
Floor Guard
Physical security
33. The identification of a user based on a physical characteristic - such as a fingerprint - iris - face - voice - or handwriting
Bluesnarfing
LDAP injection
Script Kiddie
Biometrics
34. The process of verifying that your backups actually work
Testing
Challenge
Reverse proxy
Wireless security
35. Peering over the shoulder of someone to see the contents on that person's computer or cell phone screen.
DAP
Media for backups
Shoulder Surfing
White Hat
36. Use multiple infrared beams that are aimed across a doorway and positioned so that as a person walks through the doorway some beams are activated.
Vishing
PAT
Tailgate sensors
Subject
37. ____ can be prewired for electrical power as well as wired network connections.
What is asymmetic encryption?
Locking Cabinets
DNS Hijacking
Roller barrier
38. The breadth of your back-up (what types of files you will back up-media - documents - OS - etc)
Hardware Attack
Geometric variance
Authentication
Backup scope
39. A firewall that can block designated types of traffic from entering a protected network.
Cyber Theft
Cognitive biometrics
Buffer Overflow
Content-Filtering Firewall
40. An attack that intercepts legitimate communication between two victims and captures - analyzes and possibly alters the data packets before sending a fake reply.
Man-in-the-Middle Attack
BioMetric devices
Spear Phishing
ACL (Access Control List)
41. A user under Role Based Access Control can be assigned only one ____.
computer footprint
Role
Authentication
Natural Threat
42. Password and BioMetric
Two factor security
Human memory
Chain
Cloud computing
43. An attack that uses multiple computers on disparate networks to launch an attack from multiple hosts simultaneously.
Distributed Denial of Service (DDoS)
Ciphertext
Man-in-the-Middle Attack
Locking Cabinets
44. An authentication service commonly used on UNIX devices that communicates by forwarding user authentication information to a centralized server.
Geometric variance
Honeynet
TACACS
Wireless VLANs
45. Legitimate users who purposely or accidentally misuse their access to the environment and cause some kind of business-affecting incident <tell people passwords - etc>
Packet tampering
Insiders
Spyware
Private
46. Lock - conduit - card key - video equipment - secured guard
Encryption
Physical security access control measures
Separation of duties
Spyware
47. Forging of the return address on an e-mail so that the e-mail message appears to come from someone other than the actual sender. This is not a virus but rather a way by which virus authors conceal their identities as they send out viruses.
ARP Poisoning
Spoofing
Encryption
Account expiration
48. In the context of SSL encryption - a message issued from the client to the server that contains information about what level of security the client's browser is capable of accepting and what type of encryption the client's browser can decipher (for e
Character
Replicating
ACL
Client_Hello
49. The most common protocol suite used today for local area networks (LANs) as well as the Internet is ____.
Standard biometrics
TCP/IP
ICMP Flood
Brute Force
50. Software that searches a server - switch - router - or other device for open ports - which can be vulnerable to attack.
Natural Threat
Zone transfer
Hybird
Port Scanner
