Chapter 8 Flashcards
1
Q
Which software below combines known scanning techniques and exploits to allow for hybrid exploits? A) Nessus B) metasploit C) nmap D) Sub7
A
B) metasploit
2
Q
What kind of attack involves a flood of broadcast ping messages, with the originating source address being spoofed to appear as a host on the network? A) amplification attack B) smurf attack C) zombie attack D) SYN attack
A
B) smurf attack
3
Q
Botnets often make use of what chat protocol in order to receive commands? A) XMPP B) AIM C) IRC D) Skype
A
C) IRC
4
Q
Which virus below combines polymorphism and stealth techniques to create a very destructive virus? A) Natas B) Macro C) Michelangelo D) Stoned
A
A) Natas
5
Q
What characteristic of viruses make it possible for a virus to potentially change its characteristics (such as file size, and internal instructions) to avoid detection? A) encryption B) stealth C) polymorphism D) time dependence
A
C) polymorphism
6
Q
What type of virus are dormant until a specific condition is met, such as the changing of a file or a match of the current date? A) encrypted virus B) logic bomb C) boot sector virus D) worm
A
B) logic bomb
7
Q
Programs that run independently and travel between computers and across networks, such as via email attachment or virtually any kind of file transfer, are known as which option below? A) file-infector viruses B) worms C) network viruses D) macro viruses
A
B) worms
8
Q
If multiple honeypots are connected to form a larger network, what term is used to describe the network? A) combolure B) lurenet C) honeycomb D) honeynet
A
D) honeynet
9
Q
A system that is capable of collecting and analyzing information generated by firewalls, ideas, and IPS systems is known as which term below? A) event collector architecture B) syslog system C) SIEM system D) log organizer
A
C) SIEM system
10
Q
A proxy that provides internet clients access to services on its own network is known as what type of proxy? A) reverse proxy B) cache proxy C) service proxy D) inverse proxy
A
A) reverse proxy
11
Q
At what layer of the OSI model do firewalls operate? A) Transport B) Data link C) Network D) Application
A
C) Network
12
Q
Which software below serves as the firewall for Linux systems? A) ZoneAlarm B) Comodo C) iptables D) ipf
A
C) iptables
13
Q
A reflective attack can be increased in intensity by combining it with what type of attack? A) smurf attack B) SYN ATTACK C) amplification attack D) friendly attack
A
C) amplification attack
14
Q
An attack in which hackers transmit bogus requests for connection to servers or applications in order to harvest useful information to guide their attack efforts is known as what option below? A) banner-grabbing attack B) reflective attack C) friendly attack D) IP spoofing attack
A
A) banner-grabbing attack
15
Q
An attack at involves a person redirecting or capturing secure transmissions as they occur is known as what type of attack? A) buffer overflow B) session hijacking attack C) man-in-the-middle attack D) banner-grabbing attack
A
C) man-in-the-middle attack