CYBER 160 Module 2~ Threat management and cybersecurity resources

Question 1

type of test that exploits vulnerabilites just as a threat actor would and gain unauthorized access

Answer 1

pen test or penetration test

Question 2

monetary reward given for uncovering a software vulnerability

Answer 2

bug bounty

Question 3

limitations or parameters in a penetration test

Answer 3

rules of engagement

Question 4

returning all system back to normal following a penetration test

Answer 4

clean up

Question 5

gathering information from outside the organization

Answer 5

footprinting

Question 6

directly probing for vulnerabilities and useful information

Answer 6

active reconsissance

Ex: unprotected wireless data transmissions from wireless local area networks

Question 7

searching for wireless signals from an automobile or on foot using a portobale computing device

Answer 7

war driving

Question 8

efficient means of discovering a Wi-Fi signals using drones

Answer 8

war flying

Question 9

searching online for publicly accessible information

Answer 9

passive reconnissance

Question 10

publicly accessible informaiton

Answer 10

open source intelligence (OSINT)

Question 11

frequent and ongoing process often automated that continuously identifies vulnerabilities risks and monitors cybersecurity progress

Answer 11

vulnerability scan

Question 12

valid authentication credentials such as username and password which are supplied to vulnerability scanners to mimic the work of a threat actor who posses the credentials

Answer 12

credential scan

Type of major vulnerability scan

Question 13

vulnerability scan that provides no authentication information to the tester

Answer 13

non-credential scan

Question 14

vulnerability scan that attempts to employ any vulnerabilities which it finds like threat actors

Answer 14

intrusive scan

Question 15

vulnerability scan that does not attempt to exploit the vulnerabilities but only records that of what it discovered

Answer 15

nonintrusive scan

Question 16

tool that identifies vulnerabilities in an operating system and application software the most popular

Answer 16

Common Vulnerabilities and Exposure (CVE)

Question 17

numbering rating system of the impact of vulnerabilities

Answer 17

Common Vulnerability Scoring System (CVSS)

Question 18

tool that consolidates real-time securtity monitoring and management of security information with analysis and reporting security events

Answer 18

Security Information and Event Management (SIEM)

software that runs on a computer

Question 19

interpretation and classificaiton of emotions (pos,neg,neutral) with in text data using text analysis techniques

Answer 19

sentiment analysist

Question 20

designed to help security teams manage and respond to security warnings and alarms

Answer 20

Security Orchestration Automation and Responce

Question 21

proactively searching for cyber threats that have gone undetected in a network

Answer 21

threat hunting

Question 22

data feeds of information of the latest threats

Answer 22

threat feeds

Question 23

a place of information from enterprises and government used to share information on the latest attacks

Answer 23

fusion center

Question 24

series of documented process used to define policies and process for implementing and managing security controls in enterprise enviroments

Answer 24

framework

Question 25

Most common frameworks

Answer 25

NIST,ISO,AICPA,CIS,CSA

NIST= National Institute of Standard and Technology
ISO= Intern Organization for Standardization
AICPA= American Institute of Certificate Public Accountats
CIS= Center of Internet Security
CSA= Cloust Security Alliance

Question 26

guidance document designed to help organizations access and manage risks to their information and systems

Answer 26

NSIT Management Framework (RMF)

Question 27

used as a measuring stick companies can use to compare their cybersecurity practices to the threats they face

Answer 27

NIST Cybersecurity Framework (CSF)

Question 28

created NIST cybersecurity framework for helping private companies identify, detect and respond to cyber attacks

Answer 28

NIST (national institure of standards of Technology)

Question 29

typically developed by established proffesional organizations or government agencies using the expertise of seasoned security proffesional

Answer 29

Industry regulations

Question 30

document approved through consensus by a recognized standardization body

Answer 30

standard

Question 31

database of behavior of threat actors and how they orchestrate and manage attacks

Answer 31

adversary tactics,techniques and procerdures (TTP)

Question 32

white paper document which are authored by technology bodies employing speacilist,engineers,scientist who are experts in those areas

Answer 32

Request for comments (RFCs)