Hardening Techniques 2.5

Question 1

To keep and OS hardened, all […] should be installed

• Security patches
• Service Packs

Answer 1

Updates

Question 2

To harden user accounts, you should have a […] in place that enforces minimum length and complexity

Answer 2

Password Policy

Question 3

To protect your data as it travels across the network, you should use a […] to encrypt traffic

Answer 3

VPN

Question 4

A new type of antivirus, called a […], doesn’t just use signatures as a detection tool, but also uses behavior analysis, machine learning, and process monitoring.

It can also respond to a threat without user intervention
- Isolate the system
- Quarantine threat
- Roll back to previous configuration

Answer 4

Endpoint Detection and Response (EDR)

Question 5

A software based firewall that runs on a device is called a […] firewall

It allows or disallows incoming or outgoing application traffic

Answer 5

Host Based

Question 6

Often built into the EDR / Anti Malware, a […] recognizes and blocks known attacks as they happen.

Answer 6

Host Based Intrusion Prevention System (HIPS)

Question 7

[…] leave possible entry points into your network, and should be closed unless required.

Control access with a firewall

Answer 7

Open ports and services

Question 8

Use the command […] to scan for any open ports on a system

Answer 8

nmap

Question 9

Any new equipment should have its […] when first logging into it.

Answer 9

Default password changed