Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Practice > (5) Active Reconnaissance, Mapping, And Discovery > Flashcards

(5) Active Reconnaissance, Mapping, And Discovery Flashcards

1
Q

What is host enumeration used for?

A

Host enumeration is used to make a map of an orgs networks, systems, and other groups of systems

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

How is host enumeration completed?

A

It is completed by combining information gathering tools with manual research to ID the network and systems that orgs use.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is used for asset discovery?

A

Asset discovery and discovery processes are used as part of asset management. Asset management is important because devices often get added or connected without process and authorization

it is so security professionals know what is on their network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What can active scans provide in terms of network maps?

A

Active scans can provide information about network design and topology. It can analyze information in the response it receives

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What types of data can a pen tester use to estimate in regards to network topology?

A

A pen tester makes these assumptions based on Time To Live (TTL) of the packets that it gets, traceroute information, and responses from network and security devices.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Does Nmap or Zenmap discover everything about networks?

A

Nmap or zenmap might not discover all of the devices involved in a network. Firewalls and security devices can stop scan traffic, which means that some part of the network might be missing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is important about performing network discovery and mapping?

A

When performing network discovery and mapping, it is important to spread out the systems that are discovered based on network addresses and TTL.

This helps review their relative position in the network.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are some of the drawbacks of scanning tools?

A

Topology information of scanning tools is likely to have flaws and might not match actual design of the target network. Security and network devices might have differences in TTL and trace routes, causing incorrect or missing data.

Firewalls can also make devices and systems not show up on scans, providing inaccurate topology results

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What variables does one need to be aware of when it comes to challenges created by security devices?

A

One needs to be aware of differences between wires and wireless networks, virtual networks and virtual environments, etc.

On premises vs cloud based networks need to be considered as well.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Practice (77 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions