Intro

Question 1

Which of the following is a common security issue in Linux systems?

Answer 1

Weak passwords, excessive superuser privileges, and vulnerabilities like unintended flaws that can be exploited

Question 2

Which control enables the creation of rules that allow or block traffic?

Answer 2

iptables

Question 3

Define OWASP?

Answer 3

Open Web Application Security Project

Question 4

What does cd mean in Linux?

Answer 4

Change Directory

Question 5

What does mkdir mean in Linux?

Answer 5

Make Directory

Question 6

Which type of network is the internet considered to be?

Answer 6

WAN (Wide Area Network)

Question 7

Which type of attack involves sniffing data between two or more computers?

Answer 7

On-Path

Question 8

Kali Linux is used for penetration testing? T/F

Answer 8

True

Question 9

Reviewing systems for possible weaknesses is called?

Answer 9

Vulnerability assessment

Question 10

What items are involved in risk calculations?

Answer 10

Threat, Asset, Vulnerability

Question 11

What is a type of antivirus?

Answer 11

ClamAV

Question 12

Which part of the CIA triad ensures that data hasn’t changed in transit?

Answer 12

Integrity

Question 13

The primary use for the NMAP tool is to scan network computers? T/F

Answer 13

True

Question 14

What type of team would a SOC analyst belong to?

Answer 14

Blue team

Question 15

Which government agency is part of DHS? (Department of Homeland Security)

Answer 15

CISA

Question 16

What tool can be used for password cracking?

Answer 16

Hydra

Question 17

OWASP is a government agency? T/F

Answer 17

False

Question 18

Multiple controls to protect an asset is called?

Answer 18

Defense in depth

Question 19

SSDLC involves?

Answer 19

Applications

Question 20

SSDLC means?

Answer 20

Secure Software Development Life Cycle

Question 21

Testing of code for constant improvement is called?

Answer 21

Shift left

Question 22

How would you “harden” a Linux server?

Answer 22

Remove unnecessary services

Question 23

What does a firewall do?

Answer 23

Inspects and filters incoming traffic

Question 24

What type of attack is based on a vendor’s vulnerable equipment?

Answer 24

Supply chain

Question 25

The primary purpose of a router is?

Answer 25

Allows separate networks to communicate

Question 26

What is one of the leading causes of KNOWN vulnerabilities being exploited?

Answer 26

Poor patch management

Question 27

The most powerful account in Linux is?

Answer 27

Root

Question 28

A VPN is used to secure data at rest? T/F

Answer 28

False

Question 29

Which regulation involves software for medical use?

Answer 29

HIPAA

Question 30

HIPAA means?

Answer 30

Healthcare Insurance Portability and Accountability Act

Question 31

What does DLP stand for?

Answer 31

Data Loss Prevention

Question 32

With proper planning, all vulnerabilities can be eliminated? T/F

Answer 32

False

Question 33

When hackers exploit a new software vulnerability it is known as?

Answer 33

Zero-day

Question 34

What is network segmentation?

Answer 34

Dividing the network into multiple zones

Question 35

SQL injection involves?

Answer 35

A website, A database

Question 36

How can you mitigate XSS and SQL injection attacks?

Answer 36

Input validation

Question 37

NIST is a reliable place to find vulnerability information? T/F

Answer 37

True

Question 38

A standard is an agreed upon method used for risk management? T/F

Answer 38

True

Question 39

Can firewall be physical?

Answer 39

Yes through data centers

Question 40

CIA meaning?

Answer 40

Confidentiality, Integrity, Availability

Question 41

Is Linux open or closed source?

Answer 41

Open source

Question 42

DDOS meaning?

Answer 42

Distributed Denial of Service