Background

Question 1

What is shrinkwrap code?

Answer 1

Reused code that still contains vulnerabilities

Question 2

Which IEEE standard describes authentication?

Answer 2

802.1x

Question 3

What does an ICMP Type 3/Code 6 error message indicate?

Answer 3

Destination unreachable, because the router has no route to the network on which the destination resides

Question 4

What does a client use to encrypt the session key in an SSL connection?

Answer 4

Server’s public key

Question 5

Which common web transport protocol can be used to evade an IDS and tunnel malicious content?

Answer 5

SSL

Question 6

What is the broadcast address in the 172.17.0.0/16 network?

Answer 6

172.17.255.255

Question 7

What is the Layer 2 Ethernet broadcast address?

Answer 7

0xffffffffffff

Question 8

Which web site can be used to determine the owner of a target web site?

Answer 8

whois.com

Question 9

Which IP address does a computer use to refer to itself?

Answer 9

127.0.0.1 or the loopback address

Question 10

What does an ICMP Type 3/Code 4 error message indicate?

Answer 10

Destination unreachable, because the packet requires fragmentation, but the don’t fragment bit is set

Question 11

What is a rootkit?

Answer 11

Low-level software that hides backdoor processes

Question 12

What is the darknet?

Answer 12

Network, software or service available outside of normal internet traffic and search engines

Question 13

Which IEEE standard describes VLAN encapsulation?

Answer 13

802.1q

Question 14

At which layer of the OSI model does a cross-site scripting attack occur?

Answer 14

Application layer (Layer 7)

Question 15

What type of firewall monitors the TCP handshake between packets to determine whether a requested session is legitimate?

Answer 15

Circuit level gateway

Question 16

At which layer of the OSI model do proxy servers operate?

Answer 16

Application (Layer 7)

Question 17

Which type of NAT uses a one-to-one mapping model?

Answer 17

Static NAT

Question 18

Which IEEE standard describes Ethernet?

Answer 18

802.2

Question 19

What does an ICMP Type 3/Code 13 error message indicate?

Answer 19

Destination unreachable, because it is administratively prohibited (router is blocking ICMP)

Question 20

Which key is required to decrypt a message encrypted by a client’s public key?

Answer 20

Client’s private key

Question 21

What is shellshock?

Answer 21

A vulnerability exposed in the Unix Bash shell allowing attackers to execute arbitrary commands

Question 22

Which type of NAT uses a one-to-many mapping model?

Answer 22

Port Address Translation (PAT)

Question 23

What is called when traffic between point A and point B takes one route to get there and another to return?

Answer 23

Asymmetric routing

Question 24

Which IEEE standard describes Wireless Fidelity (WiFi)?

Answer 24

802.11

Question 25

Which IEEE standard describes Logical Link Control (LLC)?

Answer 25

802.2

Question 26

At which layer of the OSI model does an ARP poisoning attack occur?

Answer 26

Data Link layer (Layer 2)

Question 27

At which layer of the OSI model does an IP spoofing attack occur?

Answer 27

Network (Layer 3)

Question 28

At which layer of the OSI model does an attack using a rogue DHCP server occur?

Answer 28

Network (Layer 3)

Question 29

At which layer of the OSI model do packet filtering firewalls operate?

Answer 29

Network (Layer 3)

Question 30

Which tunneling protocol operates at the Data Link layer and uses Microsoft Point-to-Point Encryption (MPPE) to protect the connection?

Answer 30

Point-to-Point Tunneling Protocol (PPTP)

Question 31

Which type of NAT uses a many-to-many mapping model?

Answer 31

Dynamic NAT

Question 32

192.168.5.1/24 an example of which kind of reserved IP address?

Answer 32

A network ID

Question 33

192.168.6.255/24 an example of which kind of reserved IP address?

Answer 33

A broadcast address

Question 34

Which protocol maps IP addresses to MAC addresses?

Answer 34

Address Resolution Protocol (ARP)

Question 35

Which key is required to decrypt a message that was encrypted with a server’s private key?

Answer 35

Server’s public key

Question 36

What is heartbleed?

Answer 36

A vulnerability exposed in the OpenSSL cryptographic library allowing attackers to steal server private keys and user session cookies and passwords.