CASP

Question 1

What is an IDS

Answer 1

Intrusion Detection System- a system that monitors traffic that transverses a network segment in real time.

Question 2

What are the types of IDS’s

Answer 2

Host Based and Network Based

Question 3

What is a Network Intrusion Prevention System (NIPS)

Answer 3

A
network security/threat prevention technology that examines network traffic to detect and prevent exploits.

Question 4

What is a Web Application Firewall (WAF)

Answer 4

An appliance, plug in, or filter that applies a set of rules to an HTTP connection.

Question 5

What are the types of WAF’s

Answer 5

1.Appliance Based
2.Cloud Based
3.Code Integrated

Question 6

What are the WAF modes

Answer 6

1.Positive Mode
2. Negative Mode

Question 7

What is Network Access Control (NAC)?

Answer 7

Steps taken to ensure that all security standards are met prior to connecting a device to the network.

Question 8

What are the NAC types?

Answer 8

1. Infrastructure
2. Endpoint
3. Hardware

Question 9

What is the function of Domain Name Server Security Extensions
(DNSSEC)?

Answer 9

Provides integrity and authentication
for DNS responses.

Question 10

What is Network Address Translation (NAT)?

Answer 10

A method of mapping an
IP address space into another by modifying network address information in the IP header of packets while they are in transit across a traffic routing device

Question 11

What are the NAT types?

Answer 11

1. Full-Cone
   2.Address-Restricted-Cone
2. Port-Restricted-Cone

Question 12

What are the types of Proxies?

Answer 12

1. Forward
2. Reverse
3. Anonymous
   4.Transparent

Question 13

What is the function of an Apllication Programing Interface (API)?

Answer 13

It allows two applications to communicate with one another to access data.

Question 14

What is Virtual Private Cloud (VPC)?

Answer 14

A virtual version of a physical network.

Question 15

What are the types of Cloud Computing?

Answer 15

1. Private
2. Public
3. Community
4. Hybrid

Question 16

What is a Federation in reference to networks?

Answer 16

The trust relationship that exists
between organizations

Question 17

What is Vertical Scaling?

Answer 17

Adding additional
resources to a system so that it meets demand.

Question 18

What is Horizontal Scaling?

Answer 18

Adding
additional nodes or machines to your infrastructure to
cope with new demands.

Question 19

What are the Development Approaches?

Answer 19

1. DevSecOps
2. Agile
3. Waterfall
4. Spiral
5. Versioning
6. Continuous Integration/Continuous delivery (CI/CD)

Question 20

What is the Waterfall Method?

Answer 20

A less flexible process in which development requires formal reviews
before moving into the next
phase

Question 21

What is the Spiral Method?

Answer 21

A nested version of waterfall method
where the estimated costs and schedules are revised at the end of each risk assessmed

Question 22

What is Continuous Integration/Continuous Delivery
(CI/CD) Pipelines method ?

Answer 22

A series of steps that include all the stages from the start of the CI/CD process responsible for creating seamless software delivery

Question 23

What is Virtual Desktop Infrastructure (VDI)?

Answer 23

The process of running a user desktop inside a virtual machine that lives on a server in the datacenter.

Question 24

What is the function of DIAMETER?

Answer 24

Replaces RADIUS but is not compatible with RADIUS. Provides better performance and encryption.

Question 25

What is Kerberos?

Answer 25

The default authentication protocol for windows based single sign on.

Question 26

What are the Authentication Factors?

Answer 26

1. Something you Know (knowledge factor) 2. Something you have (ownership factor) 3. Something you are (characteristics factor) 4. Somewhere you are (location factor) 5. Something you do (action factor)

Question 27

What is Single Sign On (SSO)?

Answer 27

It allows a user to login once and access all appropriate network resources.

Question 28

What is JSON?

Answer 28

JavaScript object notation.

Question 29

What is Virtual Desktop Infrastructure (VDI)?

Answer 29

Remote desktop services architectures that provide the flexibility to work anywhere.

Question 30

What are the 3 models of VDI?

Answer 30

1. Centralized 2. Hosted 3. Remote Virtual Desktop

Question 31

What is Middleware?

Answer 31

Software that provides common services and capabilities to applications outside of what's offered by the operating system.

Question 32

What are the types of privelage escalation?

Answer 32

1. Vertical 2. Horizontal

Question 33

What is Database Activity Monitor (DAM)?

Answer 33

Tools that monitor, capture, and record database events in near real-time and provides alerts about security violations.

Question 34

What are the 3 models of DAM?

Answer 34

1. Interception Based 2. Memory Based 3. Log Based

Question 35

What is the RFC that sets aside IP Addresses for NAT?

Answer 35

RFC 1918

Question 36

What is a UTM?

Answer 36

Unified Threat Management- All in one security that bundles multiple security functions into one appliance.

Question 37

What is API?

Answer 37

Application Programming Interface- Allows two apps to communicate each other to access data.

Question 38

What are the types of Mobile Schemes?

Answer 38

1. COBO (Company-Owned Business Only) 2. COPE (Company-Owned Personal Enabled) 3. CYOD (Choose Your Own Device) 4. POCE (Personally Owned Corporate Enabled) 5. BYOD (Bring Your Own Device)

Question 39

What is resilience?

Answer 39

Resilience is the process and outcome of successfully adapting.

Question 40

What is redundancy?

Answer 40

The inclusion of extra components in case of failure in other components.

Question 41

What is whitebox testing?

Answer 41

Static Application Security Testing (SAST)- code based testing.

Question 42

What is black box testing?

Answer 42

Dynamic Application Security Testing (DAST)- functional testing.

Question 43

What is Fault Tolerance?

Answer 43

A process that enables an operating system to respond to a failure in hardware or software.

Question 44

What are the gateway protocols?

Answer 44

1. RIP 2. OSPF 3. BGP

Question 45

Why are the 3 SDN Planes?

Answer 45

1. Control 2. Data 3. Application

Question 46

What is an Unsecure Direct Object Reference?

Answer 46

Pages or services allow requests to be made to specific objects without the proper verification of the requestor’s right to the content.

Question 47

What are the goals of pentesting?

Answer 47

1. Determine if there is a vulnerability that can be exploited via blind test. 2. Determine if the target’s is able to detect and respond to the attack via double blind test

Question 48

What are the types of Pentest teams?

Answer 48

1. Red- attackers 2. Blue Defenders 3. White- Referees

Question 49

What are the types of Privilege Escalation?

Answer 49

1. Vertical 2. Horizontal

Question 50

What are SCADA systems?

Answer 50

Supervisory Control And Data Acquisitions- Systems that monitor utilities and control power distribution.

Question 51

What is the Certificate Revocation List?

Answer 51

A list that Identifies certificates that have been revoked due to fraud, theft, change in name or relationship with the CA.

Question 52

What is SE Linux?

Answer 52

Linux Kernel security module that provides a mechanism for supporting access control security policies, including mandatory access controls(MAC).