Fundamentals

Question 1

What is shoulder surfing?

Answer 1

Social engineering technique requiring no technical skills - look over someone’s shoulder to see password short-range or long-range.

Question 2

What are examples of passive network attacks?

Answer 2

• Shoulder surfing
• release or selling stolen data
• traffic analysis
• data capture

Question 3

What are examples of active network attacks?

Answer 3

• Unauthorized login
• DOS
• Masquerading (fake identity to gain access)
• Packet modification or replay

Question 4

What is reconnaissance?

Answer 4

Finding information about a network

Question 5

What are some methods for network attacking?

Answer 5

Reconnaissance, social engineering, privilege escalation (hopping), backdoors, code execution (XSS)

Question 6

What are two examples of enumeration tools?

Answer 6

netview and netuser

Question 7

What are two examples of port scanners?

Answer 7

nmap and nessus

Question 8

What are two examples of vulnerability scanners?

Answer 8

metasploit, ISS

Question 9

What are two examples of packet sniffers?

Answer 9

Wireshark and snort

Question 10

What are some examples of malware?

Answer 10

Virus, worm, trojan horse

Question 11

What are some countermeasures to network security threats?

Answer 11

NAT, IDS/IPS (Intrusion Detection/Prevention System), Firewalls, AAA routing, proxy servers, policies, training and awareness