keywords for ports and malware

Question 1

HTTP

Port and meaning

Answer 1

Port 80
Hypertext transfer protocol
converts IP addresses into URLs and sends them off for the user to connect to.

Question 2

HTTPS

Answer 2

Port 443
Hypertext Transfer Protocol Secure
(encrypted)

Question 3

FTP

Answer 3

file transfer protocol
20/21
uses 2 ports and connections (one for communications monitoring, and one for the actual file transfer)

Question 4

POP3

Answer 4

Post Office Protocol version 3
fetching mail by network…not downloading
110

Question 5

smtp

Answer 5

simple mail transfer protocol
sending mail
25

Question 6

imap

Answer 6

internet mail access protocol
accessing mail by downloading
143

Question 7

port

Answer 7

determines the entry way into a network, and which protocol to use.

Question 8

firewall

Answer 8

can be digital or physical
prevents access from outside users into the network, also contacts a proxy server when connecting to a server as to hide your info from listeners.

Question 9

OSI

Answer 9

the seven layer conceptual model for TCP/IP.

Question 10

TCP/IP

Answer 10

Transmission control protocol/Internet protocol.

rules for conversing with other networks.

Question 11

Proxy servers

Answer 11

A fake network used to confuse people that aren’t part of the conversation between actual networks.

Question 12

servers

Answer 12

A central point of a network that can store files and hold the ports for a network too.

Question 13

ip address

Answer 13

The general location or name of a server, however is converted to a URL for easy understanding by humans.

Question 14

internal threats

Answer 14

Threats that come from within the business itself.

Question 15

external threats

Answer 15

threats that come from outside of a business like malware.

Question 16

anti malware

Answer 16

uses many methods to protect the device from malware. not preventative like firewall.

Question 17

trojan

Answer 17

disguises as a legitimate program, but actually contains malware

Question 18

rootkit

Answer 18

malware that attempts to gain admin rights on a network when they shouldnt.

Question 19

bot

Answer 19

A bunch of fake users that can be designed to create DDOS attacks on a server, can be used for good aswell.

Question 20

DDOS

Answer 20

Denial Of Service attacks prevent a network or server from working by overloading it with instructions by using bots.

Question 21

virus

Answer 21

destroys, replicates or changes files on the system, reproduces on the files them selves, executed by unknowing user.

Question 22

worm

Answer 22

Like a virus, however it replicates on the network, and affects the network.

Question 23

adware

Answer 23

overloads your computer with annoying pop-ups that entice the user to download something, which is often a virus itself.

Question 24

ransomware

Answer 24

Encrypts all data on a five and makes the user pay a ransom (often in bitcoin because its untraceable) to get the encryption key to get their data back.

Question 25

sandbox

Answer 25

An isolated area on a network or computer that is used to test what a program does if it’s suspicious, if it is malware, it is removed from the system.

Question 26

signature analysis

Answer 26

analyses the hash of a code, this is shorter but malware can get away if their hash (shortened code) is close to a legitimate program’s.

Question 27

behaviour analysis

Answer 27

uses a sandbox to test what a program does…if malicious then it deletes the program.

Question 28

heuristic analysis

Answer 28

A slow process, but it scans the entire code of a program to see if any of it is malicious.

Question 29

zero day attack

Answer 29

companies often rol out patches on a day of the week, hackers will often wait until this day so that they announce what the vulnerabilities are, then attack them, this is why updates should be applied almost immediately.

Question 30

attack vectors

attack surface

Answer 30

attack vectors are the entry ways that a hacker or malware can get in, they are the “cause” of an attack.

the attack surface is all of the attack vectors combined.