Key Concepts

Question 1

If unencrypted files were intercepted, which arm of the CIA triad would be breached or violated?

Answer 1

Confidentiality, because the files weren’t
Encrypted.

Question 2

If the CIA triad is too restrictive to describe an entire situation, what model should you use?

Answer 2

Pakerian hexad

Question 3

What is symmetric cryptography?

(AKA: Symmetric key cryptography)

Answer 3

Uses a single key to both encrypt the plaintext and decrypt the ciphertext.

They key must be shared between the sender and receiver and anyone with the key can decipher the text.

Question 4

Name a chief weakness of symmetrical cryptography.

Answer 4

The key must be shared between sender and recipient. If an attacker gets the key, they can potentially compromise confidentiality and integrity.

Question 5

What is a block cypher?

Answer 5

Takes a predetermined number of bits (or binary digits which are either a 1 or a 0), known as a block, and encrypts that block. Blocks typically have 64 bits but can be higher or lower.

Question 6

What is a stream cipher?

Answer 6

Encrypts each bit in the plaintext message one bit at a time.

Question 7

What two types of ciphers does symmetric cryptography make use of?

Answer 7

Block and stream ciphers

Question 8

What type of cipher is most frequently used in symmetrical cryptography?

Answer 8

Block ciphers.

Question 9

What kind of encryption is DES?

Answer 9

Symmetric

Question 10

What kind of encryption is 3DES?

Answer 10

Symmetric

Question 11

What kind of encryption is AES?

Answer 11

Symmetric

Question 12

What is DES

Answer 12

Block cipher using a 56 bit key.

Question 13

What is AES

Answer 13

Symmetrical cipher using 3 different ciphers: one with a 128 bit key, one with a 192 bit key, and one with a 256 bit key. All of which encrypt blocks of 128 bits.

Question 14

What kind of encryption is Twofish?

Answer 14

Symmetric block cipher

Question 15

What kind of encryption is Serpent?

Answer 15

Symmetric block cipher

Question 16

What kind of encryption is Blowfish?

Answer 16

Symmetric block cipher

Question 17

What kind of encryption is Cast5?

Answer 17

Symmetric block cipher

Question 18

What kind of encryption is RC6?

Answer 18

Symmetric block cipher

Question 19

What kind of encryption is IDEA

Answer 19

Symmetric block cipher

Question 20

What kind of encryption is RC4

Answer 20

Symmetric stream cipher

Question 21

What kind of encryption is ORYX?

Answer 21

Symmetric stream cipher

Question 22

What kind of encryption is SEAL?

Answer 22

Symmetric stream cipher

Question 23

What is asymmetric key cryptography?

Answer 23

Uses two keys: a public key and a private key.

You use the public key to encrypt the data and the private key to decrypt the data. Anyone can access the public key, only the host can access the private key.

Question 24

What is the main advantage asymmetric cryptography has over symmetric cryptography?

Answer 24

You don’t need to distribute the key.

Question 25

What kind of encryption is RSA?

Answer 25

Asymmetric

Question 26

What kind of encryption is used in Secure Sockets Layer (SSL) protocol?

Answer 26

RSA asymmetric key algorhithm.

Question 27

SSL

Answer 27

Secure sockets layer protocol

Question 28

ECC

Answer 28

Elliptic curve cryptography

Question 29

What is elliptic curve cryptography ECC?

Answer 29

A class of cryptographic algorithms. Can use short keys while maintaining a higher cryptographic strength than many other types of algorithms.

Question 30

What kind of encryption does SHA-2 use

Answer 30

Elliptic curve cryptography (ECC) (Asymmetric)

Question 31

SHA-2

Answer 31

Secure hash algorhithm 2

Question 32

ECDSA

Answer 32

Elliptic curve digital signature algorhithm.

Question 33

What kind of encryption is ElGamal?

Answer 33

Asymmetric algorithm

Question 34

What kind of encryption is Diffie-Hellman?

Answer 34

Asymmetric algorithm

Question 35

What kind of encryption is Digital signature standard (DSS)

Answer 35

Asymmetric algorithm

Question 36

DSS

Answer 36

Digital signature standard

Question 37

What kind of encryption does Pretty good privacy (PGP) use?

Answer 37

Asymmetric cryptography

Question 38

What kind of encryption does Transport Layer Security TLS use?

Answer 38

Asymmetric cryptography

Question 39

TLS

Answer 39

Transport Layer Security

Question 40

ITAR

Answer 40

International traffic in arms regulations

Question 41

What are the 3 types of modern cryptography?

Answer 41

Symmetrical
Asymmetrical
Hash

Question 42

MD5

Answer 42

Message-direct 5

Question 43

What kind of encryption is MD5

Answer 43

Hash

Question 44

What kind of encryption is Sha-3

Answer 44

Hash

Question 45

What is a digital signature?

Answer 45

Allows you to sign a message so that others can detect any changes to the message after you’ve sent it, ensure that the message was legitimately sent by the expected party, and prevent the sender from denying that they sent the message.

Question 46

How would you digitally sign a message?

Answer 46

Sender generates a hash of the message then uses their private key to encrypt the hash. The sender then sends this digital signature along with the message, usually by appending it to the message itself.

When the message arrives at the receiving end, the receiver uses the public key corresponding to the senders private key to decrypt the digital signature thus restoring the original hash of the message. Receiver can then verify the message’s integrity by hashing the message again and comparing the two hashes.

Question 47

What is a digital certificate?

Answer 47

Created by taking the public key and identifying information such as name and address and having them signed by a trusted entity that handles digital certificates called a certificate authority.

Question 48

Name a well known certificate authority.

Answer 48

VeriSign

Question 49

PKI

Answer 49

Public key infrastructure

Question 50

Name 3 free or open source encryption products

Answer 50

VeraCrypt
BitLocker
dm-crypt (Linux only)

Question 51

What are the two types of compliance?

Answer 51

Regulatory and industry compliance

Question 52

What is regulatory compliance?

Answer 52

Adherence to the laws specific to the industry in which you’re operating.

Question 53

What is industry compliance?

Answer 53

Adherence to the regulations that aren’t mandated by law but that can nonetheless have severe impacts on your ability to conduct business.

Question 54

PCI DSS

Answer 54

Payment card industry data security standard

Question 55

What are physical controls?

Answer 55

Mitigate risks to physical security.

Question 56

What 3 kinds of controls will you use to achieve compliance with standards and regulatory requirements?

Answer 56

Physical
Administrative
Technical

Question 57

What are administrative controls?

Answer 57

Mitigate risks by implementing certain processes and procedures.

Question 58

What are technical controls?

Answer 58

Manage risk by using tehnical measures such as firewalls, access control lists ACL’s, Intrusion detection systems IDS, etc.

Question 59

What are Key controls?

Answer 59

The primary controls used to manage risk in your environment

Question 60

What are the 3 characteristics of key controls?

Answer 60

1. They provide a reasonable degree of assurance that the risk will be mitigated
2. If the control fails, it is unlikely that another control could take over for it.
3. The failure of this control will affect an entire process.

Question 61

What are compensating controls?

Answer 61

Controls that replace impractical or unfeasible key controls.

Question 62

What are the 4 steps to maintaining compliance? (In reference to regulations and controls)

Answer 62

1. Monitor
2. Review
3. Document
4. Report

Question 63

FISMA

Answer 63

Federal information security management act

Question 64

FedRAMP

Answer 64

Federal risk and authorization management program

Question 65

What is the federal information security management act (FISMA)?

Answer 65

Applies to all US federal government agencies, all state agencies that administer federal programs, and all private companies that support, sell to, or receive grant money from the federal government.

Requires that an organization implement information security controls that use a risk-based approach—one that handles security by enumerating and compensating for specific risks.

Question 66

ATO

Answer 66

Authority to operate

Question 67

What is FedRAMP federal risk and authorization management program?

Answer 67

Defines rules for government agencies contracting with cloud providers.

FedRAMP certification consists of a single Authority to Operate ATO that allows an organization to do business with any number of federal agencies.

Question 68

What is the Sarbanes—Oxley Act SOX?

Answer 68

Regulates financial data, operations, and assets fro publicly held companies.

Places specific requirements on an organizations electronic record keeping, including integrity of records, retention periods for certain kinds of information, and methods of storing electronic communications.

Question 69

What is the Gramm-Leach-Blilley Act? GLBA

Answer 69

Protects information such as personally identifiable information PII, and financial data belonging to the customers of financial institutions.

You must secure every pertinent record against unauthorized access, track people’s access to these records, and notify customers when you share their information.

Question 70

What is the children’s internet protection act CIPA?

Answer 70

Requires schools and libraries to prevent children from accessing obscene or harmful content over the internet.

Requires these institutions to have policies and technical protection measures in pace to block or filter such context.

Question 71

CIPA

Answer 71

Children’s internet protection act

Question 72

COPPA

Answer 72

Children’s online privacy protection act

Question 73

what is children’s online privacy protection act COPPA?

Answer 73

Protects the privacy of minors younger than 13 by restricting organizations from collecting their personally identifiable information PII, requiring the organizations to post a privacy policy online, make reasonable efforts to obtain parental consent, and notify parents that information is being collected.

Question 74

FERPA

Answer 74

Federal educational rights and privacy act

Question 75

What is FERPA federal education rights and privacy act?

Answer 75

Protects students records, applies to students at all levels. Defines how institutions must handle student records to protect them and how people can view or share them.

Question 76

GDPR

Answer 76

General data protection regulation

Question 77

What is the general data protection regulation GDPR?

Answer 77

Covers data protection and privacy for all individuals in the European Union.

Requires that organizations get consent before collecting people’s data, report data breaches, give individuals the right to access and remove collected data, and set specific guidelines for privacy and privacy programs.

Question 78

ISO

Answer 78

International organization for standardization

Question 79

What port does IMAP use?

Answer 79

143

Question 80

What port does File transfer protocol use?

Answer 80

20 and 21

Question 81

what port does secure shell SSH use?

Answer 81

22

Question 82

What port does HTTP use?

Answer 82

Port 80

Question 83

What ports are known as well known ports?

Answer 83

0-1023

Question 84

What is the Bell-LaPadula Model?

Answer 84

Combines Discretionary access control DAC and mandatory access control MAC.

No read up, no write down

Question 85

No read up, no write down

Answer 85

Bell-LaPadula Model

Question 86

Which aspect of the CIA triad is the Bell LaPadula model most concerned with?

Answer 86

Confidentiality.

Question 87

In the Bell-LaPadula Model, does MAC or DAC take priority?

Answer 87

MAC takes priority, DAC works within MAC controls.

Mandatory access control and discretionary access control

Question 88

What is the Biba Model?

Answer 88

No write up, no read down

Question 89

What aspect of the CIA triad is the Biba model most concerned with?

Answer 89

Integrity, even at the expense of confidentiality.

Question 90

No write up, no read down

Answer 90

Biba model

Question 91

What is the brewer and Nash model?

Answer 91

Chinese Wall.

Prevents conflicts of interest.

Level of access changes dynamically based on materials previously accessed.

Question 92

What is OPSEC?

Answer 92

Operations Security.

Process used to protect your information. Not only security measures in place but also identifying what you need to protect and what you need to protect it against.

Question 93

What is application security?

Answer 93

Securing your applications

Question 94

What is a sandbox?

Answer 94

An isolated environment containing a set of resources for a given purpose.

Question 95

ACL

Answer 95

Access control list

Question 96

What is access control?

Answer 96

A method of implementing authorization tools to allow/deny access.

Question 97

ABAC

Answer 97

Attribute-based access control

Question 98

What is attribute-based access control?

Answer 98

Based on specific attributes of a person, resource, or environment. Subject-attributes belong to individuals.

Question 99

What is mandatory access control?

Answer 99

Owner of a resource doesn’t determine who gets access. A separate group/individual has authority to set access to resources.

Question 100

What is discretionary access control?

Answer 100

Owner of the resource determines who gets access to it and exactly what level of access they have.

Question 101

What is mutual authentication?

Answer 101

Authentication mechanism in which both parties in a transaction authenticate each other.

Question 102

What is network segmentation?

Answer 102

Dividing network into smaller networks called subnets. Controls the flow of traffic between subnets.

Question 103

What is a hardware token?

Answer 103

Small device, usually the size and shape of a credit card or keychain fob or usb. Contains a certificate or unique identifier.

Question 104

What is a fuzzer?

Answer 104

A tool used to help find completely unexpected problems. Works by bombarding apps with all kinds of data and inputs from a variety of sources hoping to get the app to fail or do something unexpected.

Question 105

Name two kinds of port scanners.

Answer 105

OpenVAS
NMAP

Question 106

What kind of tool is wireshark?

Answer 106

A sniffer

Question 107

What is a sniffer?

Answer 107

Also known as a packet sniffer.

Network/protocol analyzer

Intercepts (sniffs) traffic on a network.

Question 108

What is a firewall?

Answer 108

Mechanism for maintaining control over traffic that flows in/out of networks. Placed where level of trust changes.

Question 109

RAID

Answer 109

Redundant arrays of inexpensive disks.

Question 110

What is deep packet inspection?

Answer 110

A type of firewall that can reassemble contents of traffic. Opens everything.

Privacy concerns.

Question 111

What is a stateful firewall?

Answer 111

Functions on the same level/general principle as packet filtering firewalls.

They keep track of traffic at a granular level. Allows only traffic that is part of a new or existing connection and prevents some intentionally disruptive traffic (attacks)

Question 112

What is a packet filter?

Answer 112

One of the simplest firewalls. Looks at content of each packet individually and allows or denies based on source IP and destination IP, port, and protocol being used.

Question 113

What is a packet sniffer?

Answer 113

A network / protocol analyzer.

Question 114

What kind of an attack is SQL injection?

Answer 114

Server side attack

Question 115

What kind of attack is cross-site scripting?

Answer 115

Client-side attack

Question 116

What kind of attack is cross-site request forgery?

Answer 116

Client side attack

Question 117

What kind of an attack is clickjacking?

Answer 117

Client-side attack

Question 118

What is SQL injection?

Answer 118

Privilege escalation. Input containing SQL commands is submitted to the app. Ex: “or 1=1” input for username. May cause system to automatically record you entered a valid username

Question 119

What is cross-site scripting?

Answer 119

Attack carried out by placing code written in scripting language into a web page or other media like adobe flash displayed by client browser. When others view this media, it automatically executes the hidden code completing the attack.

Question 120

What is cross-site request forgery?

Answer 120

Confused deputy. Misuses the browsers authority.

If attacker knows of or can guess a website that’s already authenticated a user, such as amazon, can embed a link in web page or HRML based email generally an image hosted by a site the attacker controls, when browser attempts to retrieve link, executes additional commands

Question 121

3 types of magnetic media

Answer 121

Hard drives
Tapes
Floppy disks

Question 122

What physical conditions can harm magnetic media?

Answer 122

Strong magnetic fields.

Jolting magnetic media while it’s in motion can render the media unusable.

Question 123

Name two types of optical media

Answer 123

CDs DVDs

Question 124

What physical conditions threaten optical media?

Answer 124

Scratches, temperature sensitive.

Very sensitive and easy to destroy in general.

Question 125

What is a signature based IDS?

Answer 125

Works like most antivirus systems. Maintain a database of signatures that might signal an attack and compare incoming traffic to these signatures.

Question 126

What is an anomaly based IDS?

Answer 126

Works by determining the normal kinds of traffic and activity taking place on the network. They then measure present traffic against this baseline in order to detect patterns that aren’t present in the traffic normally.

Can detect new attacks or attacks that have been deliberately designed to avoid IDS detection.

Question 127

What is Kali?

Answer 127

A penetration testing tool for LINUX specifically.

Question 128

What is Kismet?

Answer 128

One of the best-known tools for detecting rogue access points and devices.

Commonly used by penetration testers to detect wireless access points and can find them even when they’re well hidden.

Question 129

Name two tools that can help break through different kinds of encryption in use on wireless networks.

Two more common ones for cracking WEP, WPA, and WPA2 include

Answer 129

CoWPAtty and Aircrack-NG.

Question 130

What is Tcpdump?

Answer 130

A classic sniffer.
Command line tool.

Runs only on UNIX-like OS.

Question 131

What is WinDump?

Answer 131

A windows equivalent of Tcpdump.

A packet sniffer.

Question 132

What is OptiView Portable Network Analyzer from Fluke Networks?

Answer 132

A hardware packet sniffer.

Question 133

What is Scapy?

Answer 133

Can map the topology of firewalls and help locate vulnerabilities in them.

Can construct specially crafted Internet control message protocol ICMP packets that evade some of the normal measures put in place to prevent you from seeing the devices that are behind a firewall and may allow you to enumerate some of them.

Can manipulate network traffic and test how firewalls and IDS respond.

Question 134

What port does hypertext transfer protocol secure HTTPS use?

Answer 134

443

Question 135

What is Rapid7’s Metasploit

Answer 135

An exploit framework / tool.

Question 136

What is Immunity CANVAS?

Answer 136

An exploit framework / tool

Question 137

What is Core Impact?

Answer 137

An exploit framework / tool.