Cisco Intro Cybersecurity Ch.4

Question 1

port scanning

Answer 1

the process of probing a computer, server, or other network host for open ports

Question 2

firewall

Answer 2

protects the network by controlling what traffic is allowed in, as well as allowed out

Question 3

DDoS

Answer 3

This attack disrupts services by simply overwhelming servers and network devices with bogus traffic.

Question 4

physical security

Answer 4

a type of security measure that restricts access to networking closets, server locations, as well as fire suppression

Question 5

botnet

Answer 5

botnet can have tens of thousands of bots, or even hundreds of thousands.

Question 6

Kill Chain

Answer 6

a conceptual outline of the stages of an information systems attack

Question 7

IPS/IDS

Answer 7

a security appliance that has the ability to block or deny traffic based on a positive rule or a signature match

Question 8

NetFlow

Answer 8

a tool used to gather information about data flowing through a network

Question 9

IPS

Answer 9

Dedicated to intrusion prevention

Question 10

AMP

Answer 10

Comes in next generation devices and can also be installed as software in host computers

Question 11

VPN

Answer 11

Designed for secure encrypted tunneling

Question 12

Router

Answer 12

Has many capabilities besides just routing functions, including traffic filtering, encryption, and capabilities for secure encrypted tunneling

Question 13

Firewall

Answer 13

Has all the capabilities of an ISR as well as advanced network management and analytics

Question 14

Kill Chain Stage 1

Answer 14

Reconnaissance

Question 15

Kill Chain Stage 2

Answer 15

Weaponization

Question 16

Kill Chain Stage 3

Answer 16

Delivery

Question 17

Kill Chain Stage 4

Answer 17

Exploitation

Question 18

Kill Chain Stage 5

Answer 18

Installation

Question 19

Kill Chain Stage 6

Answer 19

Command and Control

Question 20

Kill Chain Stage 7

Answer 20

Action