General Cyber

Question 1

What is a SCADA network?

Answer 1

SCADA systems are used to monitor and control a plant or equipment in industries such as telecommunications, water and waste control, energy, oil and gas refining and transportation.

Question 2

What is TACACS+ used for?

Answer 2

TACACS+ is used on AAA servers. authentication, authorization, and accounting services.

Question 3

What is tarpitting?

Answer 3

A tarpit is a service on a computer system that purposely delays incoming connections.

Question 4

What is PFS?

Answer 4

PFS (Perfect Forward Secrecy) is an additional security layer for your VPN connection. The primary purpose of using PFS is to ensure the security and confidentiality of all past and future communication and traffic even though the current key is compromised.

Question 5

Is 3DES Symmetric or Asymmetric encryption?

Answer 5

Symmetric

Question 6

Is AES Symmetric or Asymmetric encryption?

Answer 6

Symmetric

Question 7

AES, Blowfish, DES, Triple DES, Serpent, and Twofish are what kind of encryption?

Answer 7

Symmetric

Question 8

RSA , DIFFLE, ELLIPTICAL KEY are what kind of encryption?

Answer 8

Asymmetric

Question 9

What is Diffie–Helman?

Answer 9

Diffie–Hellman key exchange is a method of securely exchanging cryptographic keys over a public(insecure) channel and was one of the first public-key protocols.
Combining Bobs Private Key and Alices Public Key yields the same key as Alices Private Key and Bobs Public key.

Question 10

What is IVR?

Answer 10

Interactive voice response is a technology that allows a computer to interact with humans through the use of voice and DTMF (Dial Tone Multi Frequency) tones input via a keypad.

Question 11

Which of these would be the most useful attack to gain access to a WPA2-PSK network?

Answer 11

Dictionary Attack

Question 12

Which encryption uses large prime numbers to encrypt public keys?

Answer 12

RSA

Question 13

What is a buffer overflow?

Answer 13

A buffer overflow is when user input overflows the size of the accepting buffer and is written into memory. Attackers use buffer overflows to insert malicious code into a program

Question 14

How to prevent a buffer overflow?

Answer 14

Write the application to make sure the application doesn’t allow anything to write into memory where it isn’t expected.

Question 15

What is a good way to prevent an Evil Twin?

Answer 15

Don’ broadcast the SSID of the network

Question 16

What is a rouge access point?

Answer 16

an access point that can be plugged into your network that allows unauthorized access.

Question 17

how to prevent rouge access point?

Answer 17

802.1x requires authentication for resources on network. uses NAC (network access control)

Question 18

What is 802.1x

Answer 18

standard for NAC (Network Access Control)

Question 19

What is EAP?

Answer 19

The Extensible Authentication Protocol (EAP) is a protocol for wireless networks that expands on authentication methods used by the Point-to-Point Protocol (PPP), a protocol often used when connecting a computer to the Internet.

Question 20

________ involves altering the operating system to install applications from an unofficial source.

Answer 20

sideloading

Question 21

What technique does a hacker use to identify the type of operating system or application running on a target system?

Answer 21

Banner grabbing

Question 22

________ are used to crack WPA/WPA2 passwords by making educated guesses using a pre-defined list of possible passwords.

Answer 22

Dictionary attacks

Question 23

_________ was intended to be an open source encryption protocol from its inception. The patents expired on other listed protocols, or they were initially classified and not available to the public.

Answer 23

Blowfish

Question 24

___________ attack involves sending fragmented TCP/IP packets to a target. The victim is unable to properly reconstruct the order of the packets, but the overlap of the fragments causes this to fail, resulting in a DoS for the victim.

Answer 24

Teardrop

Question 25

___________ gateway is a type of firewall that operates at the session layers of the OSI model. They can also operate as a ‘shim-layer’ between the transport and application layers of the TCP/IP stack. Their function is to monitor the TCP handshaking between packets, determining whether a requested session is legitimate.

Answer 25

Circuit-level

Question 26

_______ systems are found in numerous household applicances (washing machine), and can be used in both smaller portable devices (digital watch) and large static installations (traffic light).

Answer 26

Embedded

Question 27

How can sniffers be mitigated and broadcast traffic be decreased?

Answer 27

VLAN

Question 28

IEEE 802.1q defines what?

Answer 28

Ethernet Frame VLAN Tagging

Question 29

What port does the basic TACACS+ protocol use?

Answer 29

TCP 49

Question 30

How does EAP-FAST provide authentication?

Answer 30

Protected Access Credentials (PAC)

Question 31

What is WPS and what does it do?

Answer 31

WPS stands for Wi-Fi Protected Setup. it was originally called Wi-Fi Simple Config. 7 That’s because we wanted to find a way to get people to connect to a wireless network securely, but do it in a way that would not require inputting any complicated passphrases.
There’s a lot of different ways to connect to a WPS enabled network. One might be to use a PIN that’s connected on an access point. One might be that you push a button on the front of the access point.

Question 32

primary differences between an incremental and differential backup

Answer 32

B. Incremental backups take less time to complete

C. Differential backups only back up files since the last full backup

Question 33

What is the difference between an isolated/segmented VLAN and an air gap?

Answer 33

An isolated VLAN does not allow network access. An air gap, unless completely isolated does.