Chapter 10

Question 1

When you divide a network into multiple smaller networks

Answer 1

Network Segmentation

Question 2

Mechanism for maintaining control over the traffic that flows into and out of a network

Answer 2

Firewalls

Question 3

IDS

Answer 3

Intrusion Detection Systems (IDS)

Question 4

Hardware or software tools that monitor networks, hosts, or applications for unauthorized activity

Answer 4

Intrusion Detection Systems (IDS)

Question 5

IPS

Answer 5

Intrusion Prevention Systems (IPS)

Question 6

Refuses traffic from the source of an attack

Answer 6

Intrusion Prevention Systems (IPS)

Question 7

Works like most antivirus systems

Answer 7

Signature-Based IDS

Question 8

Works by first determining the normal kinds of traffic and activity taking place on a network and then measuring the present traffic against the baseline in order to detect patterns that aren’t present inn the traffic normally.

Answer 8

Anomaly-Based IDS

Question 9

What is the method of protecting the traffic that flows through a network?

Answer 9

Encryption

Question 10

WEP

Answer 10

Wired Equivalent Privacy

Question 11

WPA, WPA2, WPA3

Answer 11

Wi-Fi Protected Access
Wi-Fi Protected Access 2
Wi-Fi Protected Access 3

Question 12

VPN

Answer 12

Virtual Private Network

Question 13

The simplest and easiest way to protect our data

Answer 13

Secure Protocols

Question 14

FTP

Answer 14

File Transfer Protocol

Question 15

POP

Answer 15

Post Office Protocol

Question 16

Used to detect wireless access points. Can find them even when attempts have been made to make doing so difficult

Answer 16

Kismet

Question 17

A handy tool for securing communications

Answer 17

Secure Shell (SSH)

Question 18

SSH

Answer 18

ecure Shell

Question 19

Used for discovering the networks and systems in an environment

Answer 19

Port Scanner

Question 20

Nmap (A port scanner)

Answer 20

Network Mapper

Question 21

A tool that can intercept traffic on a network. Listens for any traffic that your computer or device’s network interface can see.

Answer 21

Packet Sniffer

Question 22

A fully featured sniffer capable of intercepting traffic from a wide variety of wired and wireless sources

Answer 22

Wireshark

Question 23

A command-line packet sniffing tool

Answer 23

Tcpdump

Question 24

Detects, monitors, and sometimes tampers with the activities of an attacker. (Creating fake vulnerabilities that would make the system attractive to an attacker)

Answer 24

Honeypots

Question 25

Expanded Honeypots (Networks of Honeypots)

Answer 25

Honeynets

Question 26

ICMP

Answer 26

Internet Control Message Protocol

Question 27

A tool that can map the topology of firewalls and help locate vulnerabilities in them

Answer 27

Scapy (hping3?)