CEHv10

Question 1

What is preventative control?

Answer 1

Controls in place to prevent something from occurring. A smart card could be preventative meassure

Question 2

What is Corrective control

Answer 2

An attempt to correct an issue. Like antivirus attempting to remove malware.

Question 3

What is Registration Authority

Answer 3

The registration authority (RA) is the entity responsible for receiving certificate request, identifying the subject and requesting the CA to issue a certificate.

Question 4

what is the OCSP?

Answer 4

Online Certificate Status Protocol. Obtains revocation status of X.509 certificates

Question 5

What does the Verification Authority (VA) do?

Answer 5

Validates the identity of a subject when a certificate is used.

Question 6

What does a CA Certificate Authority do?

Answer 6

Issues certificates based on requests from the RA

Question 7

What does SOAP do?

Answer 7

Simple Object Access Protocol. Is platform independent, simplifies communication and leverages multiple transport protocols.

Not faster then CORBA because it utilizes XML which takes longer then binary.

Question 8

What is CORBA?

Answer 8

Common Object Request Broker Architect. A standard defined by the object management group (OMG). Designed to facilitate the communication of systems that are deployed on diverse platforms

Question 9

What is IPChains

Answer 9

A firewall on older linux kernels up to verion 2.2x

Has the ability to filter packet fragments.

Question 10

What is IPTables

Answer 10

A linux firewall that replaced IPChains from Linux kernel version 2.4x and above

Question 11

What is ipfwadm?

Answer 11

An older linux firewall replaced by IPChains.

Question 12

What are the 3 types of the Web Application Architecture

Answer 12

1. Client or presentation layer - The frontend of the application.
2. Business logic layer - Controls how the application works.
3. Database Layer - Handles and stores data required by the application.

Question 13

What is een alternate data stream

Answer 13

Hiding data in existing files

Question 14

True statements regarding whitfiled diffie and martin hellman.

Answer 14

1. The algo named after them performs encryption

2. They invented Public Key Encryption

Question 15

What is the NMAP TCP Connect scan?

Answer 15

Peforms a full tcp connection or completes the full tcp handshake. It is very easy to detect on the hosts being scanned.

Question 16

what can a network vulnerability scanner not do?

Answer 16

Scan through a firewall.

Question 17

What are the 8 steps of a CEH scanning methodology

Answer 17

1. check for live systems
2. check for open ports
3. check beyond the IDS
4. Grab banners
5. Scan for vulnerabilities
6. Draw network diagrams
7. prepare proxies
8. Pen test the network for scanning vulnerabilities.

Question 18

Describe an N-Tier architecture

Answer 18

Each server performs a single and unique role in the group. Web-server, database server and application server.

Question 19

Describe service-oriented architecture (SOA)

Answer 19

The components provide a service to other components via a communication protocol.

Question 20

What is seperation of duties

Answer 20

A security concepts that prescribes breaking operatino int parts and assign the parts to individuals to prevent fraud.

Question 21

What is Dual control

Answer 21

I requeres 2 individuals to be present to perform a sensitive operation. Like missile launch.

Question 22

What is OWASP

Answer 22

Testing methodologies to address security controls

Question 23

What is OWASP top 10 proactive controls?

Answer 23

1. verify security early and often
2. parameterize queries
3. encode data.
4. validate inputs.
5. implement identity and authentication controls
6. implement appropriate access controls
7. protect data
8. implement logging and intrusion detection
9. leverage security frameworks and libraries
10. implement error and exception handling

Question 24

What is NIST

Answer 24

National Institute of Standards and Technology. valt onder de amerikaanse overheid en zet zich in voor standaardisatie in de wetenschap.

Question 25

what are the dom objects for a javascript XSS defacment attack?

Answer 25

getElemenetByID()

getElementsByTagName()

Question 26

Wat zijn de 7 lagen van het OSI model?

Answer 26

7. Toepassing - DATA
8. Presentatie - DATA
9. Sessie - DATA
10. Transport - Segmenten
11. Netwerk - Paketten
12. Datalink - Frames
13. Fysiek - Bits

Question 27

TCP Session Hijack

Answer 27

Transport Layer attack. Layer 4 OSI

Question 28

MAC Spoofing

Answer 28

Data layer attack. Layer 2 OSI

Question 29

ICMP flooding

Answer 29

Network layer attack. Layer 3 OSI

Question 30

Telnet DoS attack

Answer 30

Session layer attack. Layer 5 OSI

Question 31

What is PCI DSS Standard

Answer 31

Payment Card Industry - Data Security Standard

Question 32

What are the steps of an incident management process

Answer 32

1. prepare for incident handling and response
2. detect and analyze
3. classify and prioritize
4. notify
5. contain
6. investigate
7. eradicate and recover
8. perform post-incident activities

Question 33

what are the core components of Metasploit

Answer 33

1. libraries
2. modules
3. interfaces

Question 34

CSIRT

Answer 34

Computer Security Incident Response Team. Provides incident response services to users and organization, government agency in partnership with homeland security.

Question 35

NIST

Answer 35

National Institute of Standards and Technology. a non-regulatory agency of the united states department of commerce.

Question 36

What is a bastion host?

Answer 36

A gateway between an inside and an outside network located on the public side of the dmz and is designed to protect against attacks aimed at the inside network.

Question 37

Name 3 anonymizers

Answer 37

proxify
psiphon
tor

Question 38

Name the ISO Standards and what they do

Answer 38

27000 outlines how to best secure a large organization

27001 describes how to perform a risk assessment

27002 describes how to apply security controls after performing the risk assessment described in ISO 27001

27005 describes how to best manage security risks using an organized and systematic approach

27006 describes audits and certifications for security management systems.

Question 39

What is the purpose of a Mole tool?

Answer 39

To automate sql injection attacks

Question 40

What is Cain and Able

Answer 40

A password recovery tool for windows

Question 41

What is DataThief

Answer 41

A program to reverse engineer data points from a graph

Question 42

What is Netcat

Answer 42

A tool to read and write data across the network using tcp or udp protocols. Netcat is commonly embedded in Trojan Payloads.

Question 43

Which statements are true of ARP?

Answer 43

1. maps 48 bit addresses to 32 bit addresses

2. prone to man in the middle attacks.

Question 44

Name the Security Laws and Standards

Answer 44

PCI-DSS - Payment Card Industry Data Security Standard

ISO 27001

HIPAA - Health Insurrance Portability and Accountability Act

SOX - Sarbane-Oxley Act 2002 _ Financial institutes like ABN Amro of Wallstreet

DMCA - Digital Millenium Copyright Act

FISMA - Federal Information Security Management Act

Question 45

What are the 9 Security Policy Creation Steps

Answer 45

1. Risk Assesment
2. Use security standards and Frameworks as guide
3. Get management and staff input
4. enforce the policy. Use penalties for non-compliance
5. Publish final draft
6. Have all staff read/sign that they understood the policy
7. employ tools to help enforce policy
8. staff training
9. review and update regularly

Question 46

What is the Vulnerability Life Cycle

Answer 46

Baseline - Vulnerability assesment - Risk assessment - Remediate - Verify - Monitor - Baseline