Chapter 18 - Supplement - Sheet1 Flashcards
3 Types of tools ‘network scanner’ refers to
Packet sniffers, IDS/IPS systems, port scanners
Packet Sniffer
Look inside every packet on a network segment.
Network Analyzer
When a packet sniffer can also provide network statistics, like network utilization and packet traffic data
Microsoft’s free packet sniffer
NetMon
Wireshark
Multi-platform packet sniffer
Difference between IDS and IPS
Intrusion Detection System versus Intrusion Prevention System. IDS detects unwanted attempts to manipulate network systems / environments. IPS monitors network / system activities for strange / malicious behavior and can react in real time to prevent or block intrusion activities.
Snort
One of the most popular IDS/IPS applications available. Multi-platform, open-source
Port Scanners
Software tool designed to search a host for open ports
What is a port scan
Scan for TCP and UDP open ports on a single target host to legitimately connect or to steal data or manipulate the host
What is port sweeping
Scanning multiple hosts on a network for a specific listening TCP or UDP port, like SQL.
Two open-source applications that can be used for port scanner
AngryIP, Nmap (Network Mapper)
Loopback Plug
Allows for a diagnostic procedure on the host wherein a signal is transmitted and returned to the sending device.
Wire-Map Tester
Transmits signals through each wire in a copper twiested-pair cable to dtermine if it’s connected to the correct pin on the other end.
Continuity Testers
Checks a copper cable connetion for basic isntallation problems like opens, shorts, and crossed pairs.
Protocol Analyzer
Analyzes network traffic (instead of just “sniffing” them) and can help troubleshoot complex problems.
Certifiers
AKA Certification Testers. Used to determine whehter your network meets specific ISO or TIA standards (Cat 5e, Cat6, Cat7)
TDR
Time-domain reflectometer - Tool that finds and escribes faults in metallic cables like twiested pairs and coax. Transmits short rise time pulse along a conductor. If cable is properly terminated, no signal will bounce back. Any impedements to the signal result in the signal bounce-back as well
OTDR
Optical Time-Domain Reflectometer. Similar to TDR, but for fiber. Can get estimated length, attenuation, and location faults (like breaks)
Multimeter
AKA multitester. Electronic measuring. Measures voltage, current, and resistance. Used to troubleshoot electrical problems.
Toner Probe
AKA tone generator, “fox and hound” wire tracer. Simpe copper cable tester. Can detect its signal through a wire’s sheath
Butt Set
Portable telephone that allows user to test and monitor phone lines
Cable Stripper / Snips
AKA Crimper. You can make patch cables with these
Voltage Event Recorder
Records voltage supply, measures distortion, measures power flicker, changes to power supply
True/False: An IDS box can find and fix a problem as the attack occurs.
FALSE
True/False: A TDR is used to test fiber connections.
FALSE
True/False: An IDS box will report an attack but not fix it.
TRUE
True/False: An OTDR is used to test fiber connections.
TRUE
True/False: A network analyzer will see every packet on every segment of your network
at the same time.
False - Typically can only see one segment at a time.
What type of device determines if a cable meets standards specifications?
Cable certifier
True/False: It is okay to scan the DoD network servers with a port scanner.
False.
You need to monitor the temperature of your server room. What device should you use?
Temperature monitor
You want to monitor your UPS systems and make sure they are functioning correctly.
What device should you use?
Voltage event recorder
What type of device is used to put an RJ-45 end on a Cat 5e cable?
A cable stripper/crimper
