All Flashcards

Question 1

Q

What is TOTP?

Answer

A

Time Based One Time Password Algorithm

Question 2

Q

What is WPA2 and what does it use?

Answer

A

WiFi Protected Access 2. Uses CCMP.

Question 3

Q

What is CCMP and what does it use?

Answer

A

Counter Mode Cipher Block Chaining Message Authentication Code Protocol. Uses AES and MIC with CBC-MAC. Used in WPA2.

Question 4

Q

What is AES?

Answer

A

Advanced Encryption Standard.

Question 5

Q

What is WPS and why is it bad?

Answer

A

WiFi Protected Setup. It uses a PIN which makes brute force easy. It was designed for easy device connections.

Question 6

Q

MAC (address)

Answer

A

Media Access Control

Question 7

Q

MAC (with respect to authentication)

Answer

A

Message Authentication Code

Question 8

Q

What is MAC (with respect to access) and what does it do?

Answer

A

Mandatory Access Control. The OS controls who gets access based on security levels, GPO, etc.

Question 9

Q

What is DAC and what does it do?

Answer

A

Discretionary Access Control. The owner controls who has access.

Question 10

Q

What is ABAC and what does it do?

Answer

A

Attribute Based Access Control. Control is based on user attributes.

Question 11

Q

What is MIC?

Answer

A

Message Integrity Check.

Question 12

Q

What is CBC and describe it?

Answer

A

Cipher Block Chaining. Easy to implement. Each plaintext block is XORed with the previous ciphertext block.

Question 13

Q

What is PSK?

Answer

A

Pre-shared key.

Question 14

Q

What is typosquatting?

Answer

A

Changing the URL to a similar (but wrong) one.

Question 15

Q

What is prepending?

Answer

A

Adding an extra letter to the beginning of a URL to send you somewhere else.

Question 16

Q

What is pretexting?

Answer

A

Making up a situation to get information.

Question 17

Q

What is pharming?

Answer

A

Redirect a real website to a bogus site.

Question 18

Q

What is Vishing?

Answer

A

Voice phishing.

Question 19

Q

What is Smishing?

Answer

A

SMS phishing.

Question 20

Q

What is WAF?

Answer

A

Web Application Firewall.

Question 21

Q

What is a rainbow table?

Answer

A

Optimized prebuilt set of hashes.

Question 22

Q

What is disassociation?

Answer

A

Disassociate a device from WiFi.

Question 23

Q

What is DNS poisoning?

Answer

A

Modify the DNS server to direct web traffic, often done by modifying the host file which takes precedence over DNS queries.

Question 24

Q

What is reconstitution?

Answer

A

A plan to fix everything starting with the most important stuff. Can take many months.

Question 25

Q

What are precursors?

Answer

A

Early warning signs.

Question 26

Q

What is DLP?

Answer

A

Data Loss Prevention.

Question 27

Q

What is SIEM?

Answer

A

Security Information and Event Management.

Question 28

Q

What is IPS?

Answer

A

Intrusion Protection System.

Question 29

Q

What is IDS?

Answer

A

Intrusion Detection System.

Question 30

Q

What is CASB?

Answer

A

Cloud Access Security Broker.

Question 31

Q

What is Data Masking?

Answer

A

Data obfuscation, hiding some of the original data.

Question 32

Q

What is a DNS Sinkhole?

Answer

A

A DNS that hands out incorrect IP addresses.

Question 33

Q

What is COPE?

Answer

A

Corporate Owned Personally Enabled (device).

Question 34

Q

What is a blockchain?

Answer

A

Distributed ledger, everyone maintains the ledger.

Question 35

Q

What is Transference?

Answer

A

Risk management strategy, buy some insurance.

Question 36

Q

What is TTL and what is it?

Answer

A

Time to live. The amount of time or hops that a packet is set to exist inside a network before being discarded by the router.

Question 37

Q

What is key escrow?

Answer

A

Someone else holds the decryption keys.

Question 38

Q

What is 802.1X?

Answer

A

IEEE standard for port based nac (PNAC).

Question 39

Q

What is IEEE?

Answer

A

Institute of Electrical and Electronic Engineers.

Question 40

Q

What is TACACS+.

Answer

A

Terminal Access Controller Access Control System.

Question 41

Q

What is LDAP and LDAPS, what ports and protocols does each use, including the security protocol for LDAPS?

Answer

A

Lightweight Directory Access Protocol and Lightweight Directory Access Protocol Secure. LDAP uses TCP port 389 and LDAPS uses TCP port 636. LDAPS uses SSL for encryption.

Low Down All Pine on port 389. Lax Digs And Proper Six on ya port 636.

Question 42

Q

What is Kerberos?

Answer

A

Network authentication protocol. Authenticate once.

Question 43

Q

What is IPsec and what does it do?

Answer

A

Internet Protocol Security. It is a group of protocols for securing connections between devices. IPsec helps keep data sent over public networks in a secure manner. It is often used to set up VPNs and it works by encrypting IP packets along with authenticating the source where the packets came from.

Question 44

Q

What is SSL, what does it do, and what port does it use?

Answer

A

Secure Sockets Layer. A standard for securing an internet connection by encrypting data sent between a website and browser. Uses TCP port 443.

Question 45

Q

What is TLS and what port does it use?

Answer

A

An updated and more secure version of SSL. Still commonly referred to as SSL. Uses TCP port 443.

Question 46

Q

What is HTTPS, what does it do, and what port does it use?

Answer

A

Hypertext Transfer Protocol Secure. The secure version of HTTP. Uses TLS, formerly known as SSL. Uses two keys, a public and private key. The private key is controlled by the owner of a website and is kept private, and lives on a web server and is used to decrypt the information of the public key. The public key is available to everyone who wants to interact with the server in a secure way. Information that’s encrypted by the public key can only be decrypted by the private key. Uses TCP port 443.

Question 47

Q

What is a stateful firewall?

Answer

A

A firewall that remembers the state of the session, and everything within a valid flow is allowed.

Question 48

Q

What is a Faraday cage?

Answer

A

A cage that blocks EMF. It is a mesh of conductive material that cancels the EMF effect on the interior, similar to how a microwave door blocks microwaves.

Question 49

Q

What is MSP?

Answer

A

Managed Service Provider. Can also be a cloud service provider, but not all cloud service providers are MSPs.

Question 50

Q

What is CMS?

Answer

A

Content Management System. Secure the access to data and protect it from outsiders.

Question 51

Q

What is MCM?

Answer

A

Mobile Content Management.

Question 52

Q

What is HSM?

Answer

A

Hardware Security Module. Common with MicroSD cards.

Question 53

Q

What is TPM?

Answer

A

Trusted Platform Module. A specification for cryptographic functions. Comes with unique keys burned in. Persistent memory for burned in keys. Versatile memory for storage keys and hardware information. Password protected. Cryptographic processor, random number generator.

Question 54

Q

What is UEFI?

Answer

A

Unified Extensible Firmware Interface.

Question 55

Q

What is XSS and the two types?

Answer

A

Cross-site Scripting. An exploitation in which information with one site is shared with another. Can be persistent (think sharing malicious social media link, everyone gets the payload) or non-persistent (aka reflected) (think using a search box to run a script).

Question 56

Q

What is ARO?

Answer

A

Annualized Rate of Occurrence. How likely is a risk to happen in a year?

Question 57

Q

What is SLE?

Answer

A

Single Loss Expectancy. How much monetary loss from a single event. I.e. how much money is lost from a single laptop theft?

Question 58

Q

What is ALE?

Answer

A

Annualized Loss Expectancy. ARO x SLE. How much expected loss in a year?

Question 59

Q

What is RTO?

Answer

A

Recovery Time Objective. Time to recover to a specific point. I.e. must be back to X% level of service within Y amount of time.

Question 60

Q

What is RPO?

Answer

A

Recovery Point Objective. How much data loss is acceptable?

Question 61

Q

What is CSRF?

Answer

A

Cross Site Request Forgery. AKA C-SRF (sea surf). The website trusts your browser and requests are made without your consent or knowledge.

Question 62

Q

What is SQL injection?

Answer

A

Add your own commands to an application’s SQL query, like through a text box submission.

Question 63

Q

What is PCI DSS?

Answer

A

Payment Card Industry Data Security Standard.

Question 64

Q

What is SSL Stripping/ HTTP Downgrade?

Answer

A

Combines on-path attack with a downgrade attack. Attacker must sit in the middle of the conversation and modifies the data between the victim and web server.

Answer 65

A

Remote Access Trojan? Backdoor, allows for admin control.

Answer 66

A

Takes advantage of a vulnerability and installs malware that includes a remote access backdoor.

Answer 67

A

Standard for Information Security Management Systems.

Answer 68

A

Privacy Information Management System.

Answer 69

A

Standard for Information Management Security (SIMS).

Answer 70

A

Code of practice for information security controls.

Answer 71

A

Privacy Information Management Systems.

Answer 72

A

International standards for risk management practices.

Answer 73

A

General Data Privacy Regulation. Used by European Union.

Answer 74

A

Cloud Security Alliance.

Answer 75

A

Cloud Controls Matrix. Cloud-specific security controls. Controls are mapped to standards, best practices, and regulations.

Answer 76

A

Simple Mail Transfer Protocol and Simple Mail Transfer Protocol Secure. Used by clients to deliver email to a server. Also used by servers to forward mail to their final destination. SMTP uses TCP port 25 and SMTPS uses TCP port 587.

Send Mail To Persons over 25 but under 587. We can send between 25 and 587 emails per day.

Answer 77

A

Secure/ Multipurpose Inter Mail Extensions. Uses public key encryption and digital signing of mail content.

The mime needs extensions because he can’t speak on his own.

Answer 78

A

Internet Message Access Protocol and Internet Message Access Protocol Secure. Retrieves email from a server. IMAP uses TCP port 143 and IMAPS uses TCP port 993.

Answer 79

A

Cloud Access Security Broker. Security policies in the cloud. Implemented as client software, local security appliances, or cloud based security solutions.

Answer 80

A

Wired Equivalent Privacy. Not good.

Answer 81

A

Extensible Authentication Protocol. An authentication framework. Integrates with 802.1X.

Answer 82

A

An IEEE standard for port based network access control (PNAC). Uses a centralized authentication server and all users can use their normal credentials to authenticate to an 802.1X network.

Answer 83

A

Protected Extensible Authentication Protocol. Protected EAP. Created by Cisco, Microsoft, and RSA Security. It encapsulates EAP in a TLS tunnel.

Answer 84

A

EAP Transport Layer Security. Strong security that requires a digital certificate on the AS (authentication server) and all other devices.

EAP! I forgot the digital certificate on the AS!

Answer 85

A

Authentication Server.

Answer 86

A

EAP Tunneled Transport Layer Security. Supports other authentication protocols in a TLS tunnel. Requires a digital certificate on the AS. Does not require a certificate on every device. Builds a TLS tunnel using this digital certificate. Use any authentication method inside the TLS tunnel, including other EAPs, MS-CHAPv2, and anything else.

You can send anything in a tunnel.

Answer 87

A

Extensible Authentication Protocol - Microsoft Challenge Handshake Authentication Protocol version 2. Uses user account credentials in ADDS (Active Directory Domain Services) to authenticate wireless access clients instead of using smart cards or user and computer certificates for client authentication.

Answer 88

A

EAP Flexible Authentication via Secure Tunneling. AS and supplicant share a protected access credential (PAC), aka shared secret.

Answer 89

A

Protected Access Credential.

Answer 90

A

Remote Authentication Dial-In User Service. Centralized Authentication.

Answer 91

A

Security Orchestration, Automation, and Response.

Answer 92

A

Public Key Infrastructure. Policies, procedures, hardware, software, people. Digital certificates: create, distribute, manage, store, revoke.

Answer 93

A

Unified Threat Management. All-in-once security appliance.

Answer 94

A

Real Time Operating System. An OS with a deterministic processing schedule. Used in environments where a large number of events, mostly external to the computer system, must be accepted and processed in a short time or within certain deadlines. such applications are industrial control, telephone switching equipment, flight control, and real-time simulations.

Answer 95

A

System on a Chip. Multiple components running on a single chip.

Answer 96

A

Self-Encrypting Drive.

Answer 97

A

Message Authentication Code.

Answer 98

A

Mandatory Access Control. The OS controls the access through GPOs, etc.

Answer 99

A

Cloud Access Security Broker. Can be used to apply security policies to cloud based implementations. Two common functions of a CASB are visibility into application use and data security policy use. Also verification of compliance with formal standards and the monitoring and identification of threats.

Answer 100

A

Managed Service Provider. Can be a cloud service provider, but not all cloud service providers are MSPs.

Answer 101

A

Full Disk Encryption.

Answer 102

A

Secure Real-Time Transport Protocol. Used for secure VoIP. Commonly uses AES for confidentiality. Uses port 5061. Application layer protocol.

Answer 103

A

Learning as much as possible about a company from open sources.

Answer 104

A

File Transfer Protocol and File Transfer Protocol Secure. FTP uses TCP port 20 for data and TCP port 21 for control. FTPS uses TCP port 990 for control and TCP port 989 for data.

Answer 105

A

Secure Shell. Used for secure remote connections. Uses TCP port 22.

Answer 106

A

DNS Security Extensions. Does not provide any confidentiality of data.

Answer 107

A

Backs up only the files that have been changed since the last incremental backup. For example, if you do a full backup on Monday, then an incremental backup on Tuesday and Wednesday, you will need to perform three restores. Monday, then whatever changed on Tuesday, then whatever changed on Wednesday.

Answer 108

A

Backs up only the files that have been changed since the last full backup. For example, if you do a full backup on Monday, then an incremental backup on Tuesday and Wednesday, you will need to perform two restores. Monday, then Wednesday.

Answer 109

A

This portion of the startup process verifies the OS kernel signature and starts the ELAM process.

Answer 110

A

Early Launch Anti-Malware.

ELAM backwards is MALE. Males are the early form of malware.

Answer 111

A

Occurs after the Trusted Boot process and verifies that nothing on the computer has been changed by malicious software or other processes.

Answer 112

A

A UEFI BIOS boot feature that checks the digital signature of the bootloader. The Trusted Boot Process occurs after the Secure Boot has completed.

Answer 113

A

Power On Self Test. Hardware check performed prior to booting an operating system.

Answer 114

A

Secure Hash Algorithm with a message digest of 256 bits. Digital signature verification, password hashing, SSL handshakes in browsers, verifies a file was not corrupted during a file transfer.

Answer 115

A

Designed to check for the secure baseline of firewall settings, patch levels, and OS versions, and any other security components associated with the application.

Answer 116

A

A person who manages access rights and sets security controls on the data.

Answer 117

A

A person who manages the operational use of the data but not the rights and permissions.

Answer 118

A

A person who makes business decisions regarding the data. Usually a higher level executive.

Answer 119

A

A person who sets privacy policies and implements privacy processes and procedures.

Answer 120

A

Hardware Security Module. A high end cryptographic hardware appliance that can securely store keys and certificates for all devices.

Answer 121

A

Password Authentication Protocol.

Answer 122

A

Microsoft Challenge Handshake Protocol. An encrypted challenge is sent over the network. It is a three-way handshake. Challenege-response continues periodically. Commonly uses PPTP (Point to Point Tunneling Protocol). Don’t use it, it’s bad. Security issues with DES.

Answer 123

A

Data Encryption Standard. Don’t use it, has security issues.

Answer 124

A

Point to Point Tunneling Protocol.

Answer 125

A

Internet Protocol Security. Security for OSI layer 3. Authentication and encryption for every packet. Features confidentiality and integrity, anti-replay. Two core protocols combined, AH and ESP.

Answer 126

A

Authentication Header. Provides data integrity, origin authentication, replay attack prevention, keyed-hash mechanism. No confidentiality or encryption.

Answer 127

A

Encapsulating Security Payload. Provides confidentiality through encryption, limited traffic flow confidentiality, data integrity, and anti-replay protection.

Answer 128

A

Cipher Block Chaining. Each plaintext block is XORed with the previous ciphertext block.

Answer 129

A

A message digest is a fixed size numeric representation of the contents of a message, computed by a hash function.

Answer 130

A

The process of transforming any given key or a string of characters into another value, i.e. a message digest.

Answer 131

A

Random data fed as an additional input to a one-way function that hashes data. It defeats rainbow tables.

Answer 132

A

Counter. Block cipher mode / acts like a stream cipher. Encrypts successive values of a “counter”. Plaintext can be any size, since it’s part of the XOR i.e., 8 bits
at a time (streaming) instead of a 128-bit block.

Answer 133

A

Galois/ Counter Mode. Encryption with authentication. Very efficient encryption and authentication. Minimum latency and operation overhead. Commonly used in packetized data.

Galois was very fast and very efficient when it came to encrypting and authenticating.

Answer 134

A

Short Message Service. Text messages.

Answer 135

A

Multimedia Messaging Service. Like expanded text messages.

Answer 136

A

Certificate Signing Request.

Answer 137

A

Online Certificate Status Protocol. The browser can check for certificate revocation. An alternative to CRL. Checks validity in real time.

Answer 138

A

Someone else holds the decryption keys.

Answer 139

A

A single CA issues certs to intermediate CAs.

Answer 140

A

Simultaneous Authentication of Equals. A Diffie-Hellman derived key exchange with an authentication component. Everyone uses a different session key even with the same PSK. An IEEE standard, the dragonfly handshake.

Sae is the name of the dragonfly and Diffie-Hellman is his daddah. All dragonflies have different keys.

Answer 141

A

Perfect Forward Secrecy. Change the method of key exchange.

Answer 142

A

Establishes a shared secret between two parties that can be used for communication for exchanging data over a public network.

Answer 143

A

Elliptical Curve Cryptography. Asymmetric encryption. Need large integers composed of two or more large prime factors.

Answer 144

A

Uses a public key and private key. You can’t derive the private key from the public key.

Answer 145

A

Developed by MITRE corporation, determine the actions of an attacker such as point of intrusion, methods used to move around, and block future attacks.

Answer 146

A

Intrusion analysis, apply scientific principles to intrusion analysis such as measurement, testability, and repeatability.

Answer 147

A

National Institute of Standards and Technology Risk Management Framework.

Answer 148

A

Host Based Intrusion Prevention System. Recognizes and blocks known attacks. Uses signatures, heuristics, and behaviors. Secure OS and application configurations, and validate incoming service requests.

Answer 149

A

Web Application Firewall. Applies rules to HTTP/ HTTPS conversations. Allow or deny based on expected input. Major focus of PCI DSS.

What Are we Fucking sending over HTTP/HTTPS?

Answer 150

A

Unified Threat Management. All-in-one security appliance.

Answer 151

A

Pretty Good Privacy. Security program that enables users to communicate securely by decrypting and encrypting messages, authenticating messages through digital signatures, and encrypting files. One of the first public key cryptography softwares.

Answer 152

A

Address Resolution Protocol. Connects an IP address to a MAC address in a LAN. Think ARP table.

Answer 153

A

Determine the route a packet takes to the destination. Used in Mac and Linux. POSIX. Takes advantage of ICMP.

Answer 154

A

Determine the route a packet takes to the destination. Used in Windows. Takes advantage ICMP.

Answer 155

A

Lookup names and IP addresses. Deprecated, use dig instead (not native to Windows). Windows and POSIX.

Answer 156

A

Domain Information Groper. More advanced domain information than nslookup.

Answer 157

A

TCP/ IP information. Windows.

Answer 158

A

TCP/ IP information. Mac and Linux.

Answer 159

A

Network Mapper. Find and learn more about network devices, port scan, OS system scan (what OS is in use), service scan (what services are on this device).

Answer 160

A

Test reachability and round trip time of packets. Uses ICMP. Windows, Mac, Linux.

Answer 161

A

Combines ping and traceroute. Windows. First phase runs a traceroute and builds a map. Second phase measures round trip time and packet loss at each hop.

Answer 162

A

TCP/IP packet assembler/analyzer. A ping that can send almost anything. Send crafted frames. BE CAREFUL! Easy to flood and Dos. Uses ICMP, TCP, UDP. Example: #hping3 –destport 80 10.1.10.1

Answer 163

A

Network statistics. -a, -b, -n Windows, Mac, Linux.

Answer 164

A

Show all active connections.

Answer 165

A

Show binaries.

Answer 166

A

Do not resolve names.

Answer 167

A

Many different functions, “read” or “write” to the network. Open a port and receive some traffic. listen on a port, transfer data, scan ports and send data to a port. Become a backdoor, run a shell from a remote device. An alternative is Ncat.

Answer 168

A

Search the network for IP addresses. Avoid doing work on an IP address that isn’t there. Many different techniques. ARP (if on the local subnet), ICMP requests (ping), TCP ACK, ICMP timestamp requests.

Answer 169

A

View the local ARP table.

Answer 170

A

View the device’s routing table. Windows = route print. Mac and Linux = netstat -r.

Answer 171

A

Client URL. Retrieve data using a URL. Web pages, FTP, emails, databases, etc. Grab the raw data (think about the “Inspect” tool on a webpage).

Answer 172

A

Gather OSINT.

Answer 173

A

Combine many recon tools into a single framework.

Answer 174

A

Run port scans from a different host. Port scan proxy. Many different services, choose the option for scan origination. Your IP is hidden as the scan source.

Answer 175

A

Enumerate DNS information. Find hostnames. View host information from DNS servers.

Answer 176

A

Industry leader in vulnerability scanning.

Answer 177

A

Sandbox for malware.

Answer 178

A

View the first part of the file. -n specifies the number lines. Example: head -n 5 syslog

Answer 179

A

View the last part of the file. -n specifies the number of lines. Example: tail -n 5 syslog

Answer 180

A

Concatenate. Link together in a series. Example: cat file1.txt file2.txt

Answer 181

A

Find text in a file. Search through many files at a time.

Answer 182

A

Change mode of a file system object. r=read, w=write, x=execute. Can also use octal notation (ex., 744). Example: chmod 744 first.txt (this sets user to read, write, execute, group to read only, other to read only)

Answer 183

A

Add entries to the system log. Syslog.

Answer 184

A

Shell and script environment.
Secure Shell. Encrypted console communication over TCP port 22. Looks and acts the same as Telnet.

Answer 185

A

Shell and script environment. Command line for sys admins.

Answer 186

A

Shell and script environment.
General purpose scripting language.

Answer 187

A

A shell and script environment. Toolkit and crypto library for SSL/TLS.

Answer 188

A

Packet tool. A suite of packet replay utilities.

Answer 189

A

Packet tool. Capture packets from the command line.

Answer 190

A

Packet tool. Graphical packet analyzer.

Answer 191

A

Forensic tool. Create a bit-by-bit copy of a drive.

Answer 192

A

Create
dd if=/dev/sda of=/tmp/sda-image.img

Restore
dd if=/tmp/sda-image.img of=/dev/sda

Answer 193

A

Forensic tool. Copy information in system memory to the standard output stream.

Answer 194

A

Forensic tool. A universal hexadecimal editor for Windows. Edit disks, files, RAM. Clone disks, secure wipes, and more.

Answer 195

A

Forensic tool. Forensic drive imaging tools. Windows executable.

Forensic ToolKit to find who drive through my window.

Answer 196

A

The Sleuth Kit is an open source collection of command line and programming libraries for disk imaging and file analysis. Autopsy is a graphical frontend for these tools.

Answer 197

A

A pre-built toolkit for exploitations. Metasploit is an example.

Answer 198

A

Program to crack passwords. Username/ password combinations. Brute forcing a hash file. Limited by password complexity, hashing method, CPU power. Can increase with GPU.

Answer 199

A

Password complexity/ strength.

Answer 200

A

Completely removing data from a device.

Answer 201

A

chmod [options] [mode] [File_name]
chmod 744 file.txt (

Answer 202

A

There are three positions: Owner, Group, and Other.

R = Read
W = Write
X = Execute

Setting a Y will result in Z:
0 = none
1 = X
2 = W
3 = W,X
4 = R
5 = R,X
6 = R,W
7 = R,W,X

Answer 203

A

POST-> Secure Boot-> Trusted Boot-> Measures Boot

Answer 204

A

AKA boot manager, bootstrap loader. Program responsible for booting a computer. Acts as an intermediate between hardware and software. Loads the OS into memory.

Answer 205

A

False Rejection Rate. Example, don’t make biometrics too sensitive.

Answer 206

A

HMAC-based One Time Password.

Answer 207

A

False Acceptance Rate. Example, biometrics are not sensitive enough.

Answer 208

A

Certificate Signing Request.

Answer 209

A

Endpoint Detection and Response. Detect a threat, investigate a threat, respond to a threat. Uses behavioral analysis, machine learning, and process monitoring. Lightweight on the endpoint.

Answer 210

A

Statement on Standards for Attestation Engagements.

AICPA (American Institute of Certified Public Accountants) auditing standard Statement on Standards for Attestation Engagements number 18 (SSAE 18)

Think about when I had to review those long ass reports at MSGCU.

Answer 211

A

Cloud Security Alliance Cloud Controls Matrix

Answer 212

A

Cloud Controls Matrix.

Answer 213

A

Cloud Security Alliance.

Answer 214

A

Sits between the users and the external network. Receives the user requests and sends on their behalf. Useful for caching information, access control, URL filtering, content scanning.

NAT is a proxy. Most proxies in use are application proxy.

Answer 215

A

Industrial Control System.

Answer 216

A

Supervisory Control and Data Acquisition (system).

Answer 217

A

OCSP Stapling improves performance by positioning a digitally-signed and time-stamped version of the OCSP response directly on the webserver. This stapled OCSP response is then refreshed at predefined intervals set by the CA. The stapled OCSP response allows the web server to include the OCSP response within the initial SSL handshake, without the need for the user to make a separate external connection to the CA.

Answer 218

A

Certificate pinning embeds or “pins” a certificate inside of an application.
When the application contacts a service, the service certificate will
be compared to the pinned certificate.

Answer 219

A

Certificate chain (or Chain of Trust) is made up of a list of certificates that start from a server’s certificate and terminate with the root certificate. If your server’s certificate is to be trusted, its signature has to be traceable back to its root CA.

Answer 220

A

Certificate Revocation List.

Answer 221

A

High Availability.

Answer 222

A

A set of steps required to complete a task.

Answer 223

A

Endpoint Detection and Response.

Answer 224

A

A transitive trust states that if Domain A trusts Domain B, and Domain B trusts Domain C, then Domain A trusts Domain C. This trust relationship is not associated with the authentication process that occurs in any of these domains.

Answer 225

A

A pivot point is a point used for pen testing access, a jumping off point.

Answer 226

A

Electronic Code Book. A block cipher mode where each block is encrypted with the same key. In most use cases ECB is too simple to ensure data confidentiality. Don’t use it!

Answer 227

A

Protected Extensible Authentication Protocol. Builds a TLS tunnel that encapsulates EAP to ensure a protected authentication process.

Answer 228

A

Hash-based Message Authentication Code. Commonly used with AH in IPsec.

Answer 229

A

Discretionary Access Control. An owner decides which users can access data through permissions.

Answer 230

A

WiFi Protected Access 3. Uses GCMP block cipher mode. GCMP provides data confidentiality with AES and MIC.

Answer 231

A

Authentication, Authorization, and Accounting.

Answer 232

A

Attribute Based Access Control. User is granted permissions based on their own attributes.

Answer 233

A

Access Control Entities.

Ace was the Entity that Controlled access to the doors.

Answer 234

A

Access Control List

Answer 235

A

The practice of responding to a threat by destroying or deceiving a threat actor’s capabilities.

Answer 236

A

Using AI to identify vulnerabilities and attack vectors to circumvent security systems.

Answer 237

A

Advanced Encryption Standard. Symmetric 128, 192, or 256 bit block cipher based on the Rijndael algorithm. Replaced DES.

Answer 238

A

A software development model that focuses on iterative and incremental development to account for evolving requirements and expectations.

Answer 239

A

Automated Indicator Sharing. Threat intelligence data feed operated by the DHS.

Answer 240

A

Department of Homeland Security.

Answer 241

A

A layer 7 firewall technology that inspects packets at the Application layer.

Answer 242

A

Software designed to run on a server to protect a particular application such as a web server or SQL server.

Answer 243

A

Advanced Persistent Threat. An attacker’s ability to obtain, maintain, and diversify access to network systems using exploits and malware.

Answer 244

A

Open-source platform producing programmable circuit boards for education and industrial prototyping.

Answer 245

A

An optional security feature of a switch that prevents excessive ARP replies from flooding a network segment.

Answer 246

A

Change the ARP table to redirect traffic to a different MAC address.

Answer 247

A

A cipher that uses public and private keys. Uses either RSA or ECC, but the private key is not derivable from the public one.

Answer 248

A

The points at which a network or application receives external connections or inputs/outputs that are potential vectors to be exploited by a threat actor.

Answer 249

A

A specific path by which a threat actor gains unauthorized access to a system.

Answer 250

A

A PNAC switch or router that activates EAPoL and passes a supplicant’s authentication data to an AS such as a RADIUS server.

Answer 251

A

Extensible Authentication Protocol over LAN.

Answer 252

A

Building Automation System. Components and protocols that facilitates the centralized configuration and monitoring of mechanical and electrical systems withing offices and data centers.

Answer 253

A

The chip and firmware in a smartphone that acts as a cellular modem.

Answer 254

A

A collection of security and configuration settings that are to be applied to a particular system or network in the organization.

Answer 255

A

Bourne again shell. A command shell and scripting language for Unix-like systems.

Answer 256

A

A server typically found in a DMZ that is configured to provide a single service to reduce the possibility of a compromise.

A bastion does one thing.

Answer 257

A

A network monitoring system that detects changes in normal operating data sequences and identifies abnormal sequences. AKA behavior-based detection.

Answer 258

A

Business Impact Analysis. A systematic activity that identifies organizational risks and determines their effect on ongoing, mission critical operations.

Answer 259

A

A type of password attack that exploits weaknesses in the mathematical algorithms used to encrypt passwords, in order to take advantage of the probability of different password inputs producing the same encrypted output.

Answer 260

A

A type of symmetric encryption that encrypts data one block at a time, often in a 64-bit block. It is usually more secure but slower than stream ciphers.

Answer 261

A

The defensive team in an exercise.

Answer 262

A

A wireless attack attack where the attacker gains access to information on a device using a Bluetooth connection.

Answer 263

A

Report of boot state integrity data that is signed by a tamper-proof TPM key and reported to a network server.

Answer 264

A

Business Partnership Agreement. Agreement by two companies to work together closely. Like Quizitive.

Answer 265

A

Bridge Protocol Data Unit guard. Switch port security feature that disables the port if it receives BPDU notifications related to spanning tree. This is configured on access ports where any BPDU frames are likely to be malicious.

Answer 266

A

An attack in which data goes past the boundary of the destination buffer and begins to corrupt adjacent memory. This can allow for system crashes or execution of arbitrary code.

Answer 267

A

Reward for reporting vulnerabilities.

Answer 268

A

Command and Control. AKA C2. An infrastructure of hosts and services with which attackers direct, distribute, and control malware over botnets.

Answer 269

A

Certificate Authority. A server that guarantees subject identities by issuing signed digital certificate wrappers for their public keys.

Answer 270

A

Common Access Card. A smart card that provides certificate-based authentication and supports 2FA.

Answer 271

A

controller area network bus. A serial network designed to allow communications between embedded programmable logic controlers.

Answer 272

A

completely automated public Turing test to tell computers and humans apart.

Answer 273

A

A web page or website to which a client is redirected before being granted full network access.

Answer 274

A

Training event where learners must identify a token within a live network environment.

Answer 275

A

The process of extracting data from a computer when that data has no associated file system metadata.

Answer 276

A

Cloud Access Security Broker. Enterprise management software designed to mediate access to cloud services by users across all types of devices.

Answer 277

A

Cipher Block Chaining. An encryption mode of operation where and XOR is applied to the first plaintext block.

Answer 278

A

Counter Mode with Cipher Block Chaining Message Authentication Code Protocol. An encryption protocol used for wireless LANs that address the vulnerabilities of WEP protocol.

Answer 279

A

Cryptographic Erase. A method of sanitizing a self-encrypting drive by erasing the media encryption key.

It keeps erasing my memory of this acronym.

Answer 280

A

The record of evidence history from collection, to presentation in court, to disposal.

Answer 281

A

the process by which the need for change is recorded and approved.

The approval process.

Answer 282

A

The process through which changes to the configuration of information systems are implemented, as part of the organization’s overall configuration management efforts.

Answer 283

A

challenge handshake authentication protocol.

Developed for dial-up networks.

Uses an ecrypted three-way handshake to authenticate the client to the server.

The challenge-response is repeated throughout the connection.

Answer 284

A

The output of a hash function. chmod Linux command for managing file permissions.

Answer 285

A

Confidentiality, Integrity, Availability. The three principles of security control and mangement.

Answer 286

A

A Layer 5 firewall tech that tracks the active state of a connection, and can make decisions based on the contents of network traffic as it relates to the state of the connection.

Answer 287

A

Center for Internet Security. A not for profit.

Answer 288

A

Classifying the ownership and managment of a cloud as public, private, community, or hybrid.

Answer 289

A

classifying the provision of cloud services and the limit of cloud service provider’s responsibility.

Answer 290

A

Common Name. An X500 attribute expressing a host or username, also used as the subject identifier for a digital certificate.

Answer 291

A

Corporate Owned Business Owned (device).

Answer 292

A

Code on how to act.

Answer 293

A

Potentially unsecure programming practice of using code originally written for a different context.

Answer 294

A

The method of using a digital signature to ensure the source and integrity of the programming code.

Answer 295

A

A network appliance that thathers or receives log and or state data from other network systems.

Answer 296

A

the act of two different plaintext inputs producing the same exact ciphertext output.

Answer 297

A

an access control scheme that verifies an object’s identity based on various environmental factors like time location and behavior.

Answer 298

A

software development method in which app and platform requirements are frequently tested and validated for immediate availability.

Answer 299

A

software development method in which app and platform updates are committed to production rapidly.

Answer 300

A

software development method in which code updates are tested and committed to a development or build server/code repository rapidly.

Answer 301

A

risk that arises when a control does not provide the level of mitigation that was expected.

Answer 302

A

counter mode. an encryption mode of operation where a numerical counter value is used to create a constantly changing IV. AKA CM (counter mode)

Answer 303

A

brute force attack in which stolen user account names and passwords are tested against multiple websites.

Answer 304

A

certificate revocation list. A list of certificates that were revoked before their expiration date.

Answer 305

A

where FAR and FRR meet.

Answer 306

A

cyber threat intelligence

Answer 307

A

Common Vulnerabilities and Exposures.

Answer 308

A

Common vulnerability scoring system. A risk management approach to quantifying vulnerability data and then taking into account the degree of risk to different types of systems or information.

Answer 309

A

Choose your own device.

Answer 310

A

information that is primarily stored on specific media rather than moving from one medium to another

Answer 311

A

the entity that determines why and how personal data is collected, stored, and used.

Answer 312

A

information that is present in the volitile memory of a host such as sysem memory or cache.

Answer 313

A

information being transmitted between two hosts.

Answer 314

A

a deidentification method where generic or placeholder labels are usbstituted for real data whle preserving the structure oof the original data

Answer 315

A

only necessary and sufficient personal information can be collected.

Answer 316

A

leftover information on a storage medium after basic sanitation attempts

Answer 317

A

the principle that countries and states may impose indivdual requirements on data collected or stored within their jurisdiction.

Answer 318

A

a person who is primarily responsible for data quality, ensuring data is labeled and identified with the appropriate meta data.

Answer 319

A

a configuration option that enables a switch to inspect DHCP traffic to prevent MAC spoofing.

Answer 320

A

multi-layered secruity.

Answer 321

A

methods that remove identifying information from data before it is distributed.

Answer 322

A

Distinguished encoding rules. The binary format used to structure the information in a digital certificate.

Answer 323

A

A type of security control that acts during an incident to identify or record what is happening.

Answer 324

A

A type security control that discourages intrusion attempts.

Answer 325

A

Diffie-Hellman. A technique that provides a secure key exchange.

Answer 326

A

An attack in which an attacker responds to a client requesting address assignment from a DHCP server.

Answer 327

A

The Differentiated Services Code Point (DSCP) field is used to indicate a priority value for layer 3 packet to facilitate QoS or Class of Service Scheduling (CoS).

Answer 328

A

A message digest encrypted using the sender’s private key that is appended to a message to authenticate the sender and prove message integrity.

Answer 329

A

A network service that stores identity information about all the objects in a particular network.

Answer 330

A

An application attack that allows access to commands, files, and directories.

Answer 331

A

Cybersecurity resilience strategy that increases attack costs by providing multiple types of controls, technologies, vendors, and crypto implementations.

Answer 332

A

Demilitarized zone. A segment isolated from the rest of the private network by one or more firewalls that accepts connections from the internet over designated ports.

Answer 333

A

Destination network address translation. A NAT service where private internal addresses are mapped to one or more public addresses to facilitate internet connectivity for hosts on a local network via a router.

Answer 334

A

An attack which an attacker modifies a computer’s DNS configurations to point to a malicious DNS server.

Answer 335

A

An attack where the attacker exploits the open nature of the DNS system to redirect a dmain name to the wrong IP address. Often done by editing the host file.

Answer 336

A

DNS Security Extensions. A security protocol that provides authentication of DNS data upholds DNS data integrity.

Answer 337

A

The attacker steals a domain name by altering its registration information then transfers the domrain name to another entity. AKA brandjacking.

Answer 338

A

a cryptographic attack where the attacker exploits the need for backwards compatibility to force a computer to abandon the user of encrypted messages in favor of plaintext messages.

Answer 339

A

Data privacy officer. Data governance role with responsibility for compliant collection and processing of personal and sensitive data.

Answer 340

A

Disaster recovery plan.

Answer 341

A

Digital signature algorithm. Public key encryption standard used for digital signatures that provides authentication and integrity verification for messages.

Answer 342

A

A text displayed by a host server containing details like software type and version running in a system or server.

Brainscape's Knowledge GenomeTM

All Flashcards

Brainscape's Knowledge Genome^TM