Network Security

Question 1

What is the abbreviation for information security?

Answer 1

InfoSec

Question 2

What is the abbreviation for security operations?

Answer 2

SecOps

Question 3

What is a person, device, information or locations that SecOps aims to protect from attack

Answer 3

Asset

Question 4

What is an action taken by a threat that exploits a vulnerability?

Answer 4

Attack

Question 5

What is the potential of a threat to exploit a vulnerability?

Answer 5

Risk

Question 6

What is the abbreviation for IT security operations responsible for protecting assets by reducing the risk of attacks?

Answer 6

SecOps

Question 7

What is something or someone that can exploit a vulnerability to attack an assett?

Answer 7

Threat

Question 8

What is a weakness in software, hardware, facilities or humans that can be exploited by a threat?

Answer 8

Vulnerability

Question 9

What is an indispensable tool for detecting vulnerabilities within servers, computers and network devices?

Answer 9

Vulnerability Scanner

Question 10

You need to protect your assets from both what?

Answer 10

Physical and electronic security matters

Question 11

Blank that aren’t changed in network devices are easy to find online for an attacker

Answer 11

Default passwords

Question 12

What unleashes a multitude of viruses or malware or ransomware into a network from one seemingly innocuous computer?

Answer 12

Trojan Horse

Question 13

What is a virus laying in wait for some preordained time or a trigger to release its attack?

Answer 13

Advanced Persistent Threat (APT)

Question 14

What is the real danger of an APT attack?

Answer 14

Backups are infected

Question 15

What is the term for an exploit or vulnerability that is not yet known to the public, so there is no patch available to mitigate it.

Answer 15

Zero Day Exploits

Question 16

Who allows administrators to forward unknown or suspicious code patterns for analysis?

Answer 16

Intrusion Prevention System (IPS) vendors

Question 17

Who is tasked with attempting to compromise a network’s security?

Answer 17

Penetration tester

Question 18

Who is responsible for scanning servers and network devices for known vulnerabilities?

Answer 18

Vulnerability tester

Question 19

What is nessus.com

Answer 19

Vulnerability scanning tool

Question 20

Which team attempts to compromise the security?

Answer 20

Red team

Question 21

Which team attempts to defend a network’s security?

Answer 21

Blue team

Question 22

Which team is the continuous improvement team that debrief and cross-train each other after an attack?

Answer 22

Purple team

Question 23

Who are IT professionals who specialize in penetrating or compromising network security but only to help improve its own security posture?

Answer 23

White hat hackers

Question 24

Who possess the knowledge and will to breach systems for profit?

Answer 24

Black hat hackers

Question 25

Who have no permission to attack a network, but they have no malicious intent?

Answer 25

Grey hat hackers

Question 26

What is the key to preventing insider threats?

Answer 26

Minimum set of permissions

Question 27

What is the term for intellectual property theft by nation states with large budgets?

Answer 27

Industrial espionage

Question 28

Who are copycat criminals of the hacker world who hack out of curiosity with a lack of knowledge?

Answer 28

Script Kiddies

Question 29

What is the term for someone or something that can exploit a vulnerability to attack an asset?

Answer 29

Threat

Question 30

Which attack comes from the historical technique that allows the attacker to eavesdrop a conversation between two humans or two computers?

Answer 30

Wiretapping

Question 31

What is a device called that listens and records traffic on the network?

Answer 31

Packet sniffer

Question 32

What are fiber optic cables immune to attack-wise?

Answer 32

EMF listening devices

Question 33

What is the term for an application that can systematically check each port by sending thousands of TCP/IP packets to the victim's computer?

Answer 33

Port scanner

Question 34

What is a popular target of attacks because they typically contain high-value information?

Answer 34

Database servers

Question 35

When the attacker knows what ports are accepting traffic, they can run what against the victim's computer to see if any of the services can be easily exploited?

Answer 35

Vulnerability scanner

Question 36

What type of attack allows an attacker to take control of a database server by inserting special commands into input boxes instead of entering basic text?

Answer 36

SQL injection

Question 37

What type of attack is made possible by applications that do not properly validate user input for extraneous content. The attacker purposefully enters text that is too large to fit within a region of memory

Answer 37

Buffer overflow

Question 38

Reviewing your source code and enabling the NX-bit (no execute functionality on the computer are two ways to prevent what type of attack?

Answer 38

Take control attack

Question 39

What attack is made more difficult by advances in networking, like the Ethernet switch?

Answer 39

Spoofing

Question 40

What is the term for an attacker impersonating the sender and receiver of network traffic?

Answer 40

Spoofing the identinty

Question 41

Which attack wants to intercept the communication between a client computer and a server?

Answer 41

Man in the middle attack

Question 42

What attack is used to cause an Ethernet switch to flood all traffic to every port of the switch?

Answer 42

ARP poisoning

Question 43

What is the term for an attack that overwhelms a victim's computer wit enormous amounts of useless traffic?

Answer 43

Denial of Service (DOS) attack

Question 44

What attack would send the victim malformed ICMP packet that would cause it to crash?

Answer 44

Ping of death

Question 45

What attack overwhelms a victim's computer with an immense volume of ICMP packets all containing a forged, randomized service address?

Answer 45

Ping flood

Question 46

Which attack is a distributed DoS attack in which the attacker sends an ICMP echo request to a large IP subnet specifying the victim's address as the source address?

Answer 46

Smurf attack

Question 47

What attack causes the victim's computer to consume excessive CPU time as is constantly sets up and tears down thousands of encrypted sessions over and over again?

Answer 47

SSL attack

Question 48

What is the act of manipulating human users to gain access or information?

Answer 48

Hacking a human

Question 49

What is the act of pretending to be an employee or vendor in order to gain access to the network?

Answer 49

Impersonating

Question 50

What is the social engineering attack that gets information voluntarily from the victim through email or phone?

Answer 50

Phishing

Question 51

What is the term for a server or device that is configured to appear to have legitimate data?

Answer 51

Honey pot

Question 52

Honeypot is also known as what?

Answer 52

tar pit

Question 53

The goal of what is to provide a false positive for the attacker and make them believe the fake data is real.

Answer 53

Honey pot

Question 54

What can contain tracking information that can be obtained by the intrusion detection system in order to collect data on the attacker?

Answer 54

Tar pit server

Question 55

The best way to secure the network is use what in a what manner?

Answer 55

Multiple tools; overlapping

Question 56

What does IPS stand for?

Answer 56

Intrusion Prevention System

Question 57

Minimize exposure to attack by keeping your what up to date

Answer 57

patches

Question 58

What guides help you remove unnecessary services & features that may be susceptible to attack?

Answer 58

Security-hardening

Question 59

You should test and develop what before a virus attack occurs?

Answer 59

Containment plans

Question 60

Run blank on your system regularly and keep the virus definition up-to-date as possible to help you detect new and emerging threats

Answer 60

antivirus and anti-malware scans

Question 61

What does CIA stand for?

Answer 61

Confidentiality, Integrity, Availability

Question 62

What in the CIA triad limits access?

Answer 62

Confidentiality

Question 63

What in the CIA triad enables you to trust the information?

Answer 63

Integrity

Question 64

What in the CIA triad ensures you have access to the information?

Answer 64

Availability

Question 65

Blank is critical in security management. Some orgs create specific classifications for their data that define different sensitivity levels, each with specific policies

Answer 65

Consistency

Question 66

The goal of what in the CIA triad is to prevent an unauthorized user from accessing, copying, or transmitting the information

Answer 66

Confidentiality

Question 67

Confidentiality is often equated to what?

Answer 67

Privacy

Question 68

What ensures that only the intended recipient of the information can access it, following a need-to-know policy and destroying all copies that are no longer needed.

Answer 68

Privacy

Question 69

Blank information is easy to steal and change

Answer 69

Unencrypted

Question 70

Blank files are rarely purged from a disk immediately and often can be recovered with ease

Answer 70

Deleted

Question 71

Blank of a device gives an attacker unlimited time to break an encryption

Answer 71

Physical theft

Question 72

Blank is a method to gain a victim's trust to provide information

Answer 72

Social Engineering

Question 73

Blank is like storing files in the wrong location

Answer 73

Accidents & Malfunctions

Question 74

Encrypt the blank (where it is stored) and blank (where it is moving across the network)

Answer 74

Information-at-rest Information-in-transit

Question 75

What describes data where it is stored?

Answer 75

At-rest

Question 76

What describes data moving across the network?

Answer 76

In-transit

Question 77

Blank makes it possible to identify where information came from and if the data has changed since it was originally sent

Answer 77

Integrity

Question 78

Blank works well with confidentiality

Answer 78

Integrity

Question 79

Blank attacks can compromise integrity

Answer 79

Man-in-the-middle attacks

Question 80

Intentional or unintentional blank can or modifications can compromise integrity

Answer 80

Deletion

Question 81

Blank in equipment can cause data corruption

Answer 81

Malfunction

Question 82

Blank such as an EMP attack can destroy or severely corrupt data

Answer 82

Natural phenomena

Question 83

You should require all data transmissions to use blank or blank to confirm identity

Answer 83

Encryption; data signatures

Question 84

Blank, such as SHA-3, can be used to verify that the data has not changed

Answer 84

One-way hash calculations

Question 85

Blank create a value that can be used to verify the data has not changed

Answer 85

SHA-3

Question 86

Use blank with your data storage to quickly revert accidental changes or deletions

Answer 86

Version control

Question 87

You can blank to server solutions by carefully managing your app updates and patches

Answer 87

High availability

Question 88

Blank attacks prevent legitimate users from accessing resources

Answer 88

DoS and distributed DoS

Question 89

Accidental changes to blank can remove access for authorized users

Answer 89

Access control lists

Question 90

You should create and maintain a blank that includes a full site failover as well as the method to restore data for individual servers

Answer 90

Full disaster recovery plan

Question 91

You should implement server what, using clustering tech where appropriate

Answer 91

High availability

Question 92

Setting up blank and storing a backup copy at another physical location protect against site-level disasters

Answer 92

regular backups