Module 2 - 04-2 Flashcards
Linux distributions
What are different versions of Linux called?
Distributions
What are Distributions sometimes called?
- Distros
- Flavors of Linux
What is the most important component of the Linux OS?
The kernel
What is the Kerner so important?
The Linux kernel is open source.
Anyone can take the kernel and modify it to build a new distribution.
Explain Distributions
Different distributions are used for different reasons.
Different Linux distributions contain different preinstalled programs, user interfaces, and much more.
A lot of this is based on what the Linux user needs, but some distros are also chosen based on preference.
The advantage of using Linux as an OS is that you can customize it.
Distributions include the Linux kernel, utilities, a package management system, and an installer.
Linux is open source, and anyone can contribute to adding to the source code.
That is how new distributions are created.
All distros are derived from another distro, but there are a few that are considered parent distributions.
What are the different Parent Distributions?
- Red Hat®
- Slackware®
- Debian
Red Hat® is the parent of what Distribution(s)?
CentOS
Slackware® is the parent of what Distribution(s)?
SUSE®
Debian is the parent of what Distribution(s)?
- Ubuntu
- KALI LINUX™
- Parrot
What type of components might be different from one Linux distribution to another? Select three answers.
- Their pre-installed programs
- Their user interfaces
- Their parent distributions
- Their kernels
- Their pre-installed programs
- Their user interfaces
- Their parent distributions
The pre-installed programs, user interfaces, and parent distributions might differ from one Linux distribution to another.
Explain KALI LINUX ™
A Linux distribution that’s widely used in security.
KALI LINUX™ is a trademark of Offensive Security (OffSec) and is Debian derived.
This open-source distro was made specifically with penetration testing and digital forensics in mind.
There are many tools pre-installed into KALI LINUX™.
It’s important to note that KALI LINUX™ should be used on a virtual machine.
This prevents damage to your system in the event its tools are used improperly.
An additional benefit is that using a virtual machine gives you the ability to revert to a previous state.
KALI LINUX™ has numerous tools that are useful during penetration testing.
KALI LINUX™ is also a useful distribution for security professionals who are involved in digital forensic work.
It has a large number of tools that can be used for this.
This distribution has many tools used to conduct pen testing and digital forensics.
Define Penetration test
A simulated attack that helps identify vulnerabilities in systems, networks, websites, applications, and processes.
What penetration testing tools does KALI LINUX™ have?
- Metasploit
- Burp Suite
- John the Ripper
Explain Metasploit
A tool used to look for and exploit vulnerabilities on machines
Explain Burp Suite
A tool that helps to test for weaknesses in web applications
Explain John the Ripper
A tool used to guess passwords
Define Digital forensics
The process of collecting and analyzing data to determine what has happened after an attack.
What digital forensic tools does KALI LINUX™ have?
- tcpdump
- Wireshark
- Autopsy®
Explain tcpdump
It is a command-line packet analyzer.
It’s used to capture network traffic.
Explain Wireshark
It has a graphical user interface that can be used to analyze live and captured network traffic.
Explain Autopsy®
A forensic tool used to analyze hard drives and smartphones
Which of the following statements accurately describe the KALI LINUX ™ distribution? Select all that apply.
- It should be used on a virtual machine.
- It is derived from Debian.
- It contains many pre-installed tools that can be used for cybersecurity tasks.
- It is a closed-source distribution.
- It should be used on a virtual machine.
- It is derived from Debian.
- It contains many pre-installed tools that can be used for cybersecurity tasks.
KALI LINUX ™ is a Debian-derived distribution, it contains many pre-installed tools for cybersecurity tasks, and it should be used on a virtual machine. It is an open-source distribution.
What are other Linux Distributions?
- KALI LINUX ™
- Ubuntu
- Parrot
- Red Hat® Enterprise Linux®
- AlmaLinux
Describe KALI LINUX ™
KALI LINUX ™ is an open-source distribution of Linux that is widely used in the security industry.
It is Debian-based and pre-installed with many useful tools for penetration testing and digital forensics which are key activities in the security industry.
However, KALI LINUX ™ is not the only Linux distribution that is used in cybersecurity.
Describe Ubuntu
Ubuntu is an open-source, user-friendly distribution that is widely used in security and other industries.
It has both a command-line interface (CLI) and a graphical user interface (GUI).
It is Debian-derived and includes common applications by default.
Users can also download many more applications from a package manager, including security-focused tools.
Because of its wide use, Ubuntu has an especially large number of community resources to support users.
Ubuntu is also widely used for cloud computing.
As organizations migrate to cloud servers, cybersecurity work may more regularly involve Ubuntu derivatives.
Describe Parrot
Parrot is an open-source distribution that is commonly used for security.
Parrot comes with pre-installed tools related to penetration testing and digital forensics and is based on Debian
Describe Red Hat® Enterprise Linux®
Red Hat Enterprise Linux is a subscription-based distribution of Linux built for enterprise use.
Red Hat is not free, which is a major difference from the previously mentioned distributions.
Because it’s built and supported for enterprise use, Red Hat also offers a dedicated support team for customers to call about issues.
Describe AlmaLinux
AlmaLinux is a community-driven Linux distribution that was created as a stable replacement for CentOS.
CentOS was an open-source distribution that is closely related to Red Hat, and its final stable release, CentOS 8, was in December 2021.
CentOS used source code published by Red Hat to provide a similar platform.
AlmaLinux is designed to be a drop-in replacement for CentOS 8.
This ensures that applications and configurations that worked on CentOS will continue to function on AlmaLinux.
Define Package
A piece of software that can be combined with other packages to form an application.
Some packages may be large enough to form applications on their own.
Packages contain the files necessary for an application to be installed.
These files include dependencies, which are supplemental files used to run an application.
Note:
It’s important to use the most recent version of a package when possible.
The most recent version has the most up-to-date bug fixes and security patches. These help keep your system more secure.
Define Dependencies
Supplemental files used to run an application
Define Package manager
A tool that helps users install, manage, and remove packages or applications.
Package managers can help resolve any issues with dependencies and perform other management tasks.
Linux uses multiple package managers.
What are the different types of package managers?
- Red Hat Package Manager (RPM)
- dpkg
What does RPM stand for?
Red Hat Package Manager (RPM)
Explain Red Hat Package Manager (RPM)
Red Hat Package Manager (RPM) can be used for Linux distributions derived from Red Hat.
Red Hat Package Manager (RPM) has files which use the .rpm file extension, such as Package-Version-Release_Architecture.rpm.
Explain dpkg
dpkg can be used for Linux distributions derived from Debian.
Debian-derived Linux distributions, such as dpkg, have files which use the .deb file extension, such as Package_Version-Release_Architecture.deb.
What file extension does Red Hat Package Manager (RPM) use?
.rpm file extension
What file extension does dpkg use?
.deb file extension
Explain Package management tools
They allow you to easily work with packages through the shell.
Package management tools are sometimes utilized instead of package managers because they allow users to more easily perform basic tasks, such as installing a new package.
What are two notable package management tools?
- Advanced Package Tool (APT)
- Yellowdog Updater Modified (YUM)
What does APT stand for?
Advanced Package Tool (APT)
Define APT
A tool used with Debian-derived distributions.
It is run from the command-line interface to manage, search, and install packages.
What does YUM stand for?
Yellowdog Updater Modified (YUM)
Define YUM
A tool used with Red Hat-derived distributions.
It is run from the command-line interface to manage, search, and install packages.
YUM works with .rpm files.
Because the _____ is open source, anyone can modify it to build new Linux distributions.
- application
- kernel
- shell
- hardware
shell
Because the kernel is open source, anyone can modify it to build new Linux distributions. The kernel is the component of the Linux OS that manages processes and memory.
What is KALI LINUX ™?
(KALI LINUX ™ is a trademark of OffSec.)
- A tool with a graphical user interface that can be used to analyze live and captured network traffic
- A tool used to guess passwords
- A subscription-based Linux distribution built for enterprise use
- A Debian-derived, open-source distribution of Linux designed for security tasks
A Debian-derived, open-source distribution of Linux designed for security tasks
KALI LINUX ™ is a Debian-derived, open-source distribution of Linux designed for security tasks, such as penetration testing and digital forensics.
What is an open-source, user-friendly distribution derived from Debian that is widely used in security and other industries?
- Ubuntu
- tcpdump
- Red Hat
- Autopsy
Ubuntu
Ubuntu is an open-source, user-friendly distribution derived from Debian that is widely used in security and other industries. Because of its wide use, Ubuntu has a large number of community resources to support users.
Which of the following are distributions of Linux? Select all that apply.
- CentOS
- Pen Test
- Parrot
- Red Hat
- CentOS
- Parrot
- Red Hat
Red Hat, CentOS, and Parrot are all distributions of Linux.
