IS3440 CHAP 13 TESTING AND REPORTING Flashcards

Question 1

Q

COMMAND ___ is a command on Ubuntu and Debian systems that uses the MD5 checksums to see if changes have been made to files relative to their original status as part of installed packages.

Question 2

Q

COMMAND ___ is a command to list open files; it lists open files related to networking, in numeric format.

Question 3

Q

COMMAND ___ is the implementation of the nectar command, which can test and communicate over TCP and UDP connections.

Question 4

Q

COMMAND ___ is a command used to verify network connections by port, routing tables by Internet Protocol (IP) address, and more.

Question 5

Q

COMMAND ___ is a flexible command that can be used to scan Transmission control Protocol/Internet Protocol (TCP/IP) network communication by protocol and port.

Question 6

Q

___ is a Linux distribution currently based on Ubuntu with penetration testing tools, released in live CD and live USB format.

Answer

A

BackTrack

Question 7

Q

___ is a protocol of the TCP/IP suite associated with automatic assignment of IP addresses; may also be used for the automatic acquisition of IP addresses from a Dynamic Host Configuration Protocol (DHCP) server on a remote network. Associated with UDP port 68.

Answer

A

(BOOTP) Bootstrap Protocol

Question 8

Q

___ is a password tool designed to identify passwords that are too simple for a secure system.

Question 9

Q

___ is a password tool designed to identify passwords that are too simple for a secure system.

Answer

A

John the Ripper

Question 10

Q

___ is a Linux distribution most well known for its live CDs and DVDs.

Answer

A

Knoppix STD

Question 11

Q

___ is a prominent white-hat hacker. The developer of the map command. Known in the open source security community by the single name ___.

Answer

A

Lyon, Gordon

“Fyodor”

Question 12

Q

___ is a vulnerability scanning program with a Web-based interface, based on code that was previously released under open source licenses.

Question 13

Q

___ is a utility that can read TCP and UDDP packets, normally associated with the nc command.

Question 14

Q

___ is a Linux distribution currently based on Fedora with a variety of security testing tools, including many of those listed at http://sectools.org/ .

Answer

A

Network Security Toolkit

Question 15

Q

___ is a password tool designed to identify passwords that are too simple for a secure system.

Answer

A

RainbowCrack

Question 16

Q

___ is an older open source network analyzer. Later versions were released under proprietary licenses as part of SAINT.

Answer

A

(SATAN) Security Administrator Tool for Analyzing Networks

Question 17

Q

___ is a vulnerability scanning program with a Web-based interface, based on code that was previously released as SATAN under open source licenses.

Answer

A

(SAINT) System Administrators Integrated Network Tool

Question 18

Q

___ is an intrusion detection system (IDS) with modes associated with IPTABLES firewall rules; associated rules are updated on a regular basis.

Question 19

Q

___ is a family of virtual machine software that works with everything from software-based virtualization with programs like VMware Player to bare-metal virtualization with programs like vSphere.

Question 20

Q

Which of the following commands, when used inside and outside of a firewall, can best test the effectiveness of that firewall?
iptables
telnet
nmap
lsof

Question 21

Q

Which of the following is NOT a password-cracking tool?
nmap
John the Ripper
Hydra
RainbowCrack

Question 22

Q

What is the TELNET command that would connect to an open port 25 and active server on a system with an IP address of 10.12.14.16?

Answer

A

telnet 10.12.14.16 25

Question 23

Q

Which of the following commands includes port information for TCP and UDP communication in numeric format?
.netstat -aunp
.netstat -atnp
.netstat -aund
.netstat -atunp

Answer

A

.netstat -atunp

Question 24

Q

Which of the following commands can help you discover the active hosts on the 192.168.0.0/24?
nmap -sP 192.168.0.0/24
nmap -sH 192.168.0.0/24
nmap -sh 192.168.0.0/24
nmap -sPO 192.168.0.0/24

Answer

A

nmap -sP 192.168.0.0/24

Question 25

Q

Which of the following commands verifies installed files for all of the Debian-style packages installed on a system?
rpm -Va
dpjg Va
debsums
dpkg -qa
.

Question 26

Q

You can install AIDE from supported repositories for both Red Hat Enterprise Linux and Ubuntu.
TRUE OR FALSE

Question 27

Q

Which of the following commands sets a last password change date of April, 2010, for user michael?
chage -c 2010-04-01
chage -d 2010-04-01
chage -e 2010-04-01
chage -i 2010-04-01

Answer

A

chage -d 2010-04-01

Question 28

Q

What is the full path to the PAM configuration file that regulates logins on a Linux system?

Answer

A

/etc/pam.d/login

Question 29

Q

Which of the following virtual machine options is the default open source solution for the latest Red Hat and Ubuntu distributions?
KVM
Xen
Virtualbox, open source edition
Hyper-V

Question 30

Q

Which of the following COMMANDS opens a graphical tool that depicts the current CPU and memory load for virtual machines on the target host system?
virt -viewer
virsh
virt-manager
virt -top

Answer

A

virt-manager

Question 31

Q

Nessus is still released under an open source license.

TRUE OR FALSE

Question 32

Q

Which of the following modes does not apply to Snort as an intrusion detection system?
Sniffer mode
Inline mode
Password mode
Network mode

Answer

A

Password mode

Question 33

Q

What is the COMMAND nc that would connect to and get verbose information on an open port 25 and active server on a system with an IP address of 10.12.14.16?

Answer

A

nc -v 10.12.14.16. 25

Question 34

Q

Which of the following is NOT an option for bootable Linux systems with security testing tools?
BackTrack
Knoppix STD
Netcat
Network Security Toolkit

Brainscape's Knowledge GenomeTM

IS3440 CHAP 13 TESTING AND REPORTING Flashcards

Brainscape's Knowledge Genome^TM