Networks and Network Security

Question 1

What is a DDoS attack?

Answer 1

Distributed Denial of Service (DDoS) attack, which uses multiple devices to flood the target network with unwanted traffic.

Question 2

Describe a SYN flood attack.

Answer 2

An attack that poses as a TCP connection, flooding a server with packets simulating the first step of the TCP handshake.

Question 3

What happens during a Ping of Death attack?

Answer 3

A hacker sends a system an ICMP packet that is bigger than 64KB, causing the system to crash.

Question 4

What is a key characteristic of an on-path attack?

Answer 4

The attacker intercepts and potentially alters communication between two trusted devices.

Question 5

Define packet sniffing.

Answer 5

The practice of capturing and inspecting data packets traveling across a network.

Question 6

How does IP spoofing work?

Answer 6

An attacker changes the source IP of a data packet to impersonate an authorized system.

Question 7

What is a smurf attack?

Answer 7

A network attack where an attacker sniffs an authorized user’s IP address and floods it with ICMP packets.

Question 8

Explain a replay attack

Answer 8

An attack where a malicious actor intercepts a data packet in transit and delays it or repeats it at another time.

Question 9

What does a security information and event management (SIEM) tool do?

Answer 9

Collects and analyzes log data to monitor critical activities within an organization.

Question 10

What are the key uses of a network protocol analyzer like tcpdump?

Answer 10

To capture and analyze data traffic within a network for monitoring and identifying suspicious activity.

Question 11

What is an ICMP flood?

Answer 11

A type of DoS attack where an attacker repeatedly sends ICMP request packets to a network server.

Question 12

How can a firewall help prevent network attacks?

Answer 12

By monitoring and filtering incoming and outgoing traffic based on a set of security rules.

Question 13

What is the purpose of a controlled zone in network security?

Answer 13

To protect a company’s internal network from an uncontrolled security zone.

Question 14

Define a backdoor attack.

Answer 14

An attack where weaknesses are intentionally left by programmers to bypass normal access control mechanisms.

Question 15

What impact can a DDoS attack have on an organization?

Answer 15

It can cause financial loss, damage to reputation, and disrupt public safety

Question 16

How does an intrusion detection system (IDS) function?

Answer 16

It monitors system activity and alerts administrators to possible intrusions based on the signature of malicious traffic.

Question 17

What is the role of an intrusion prevention system (IPS)?

Answer 17

To monitor system activity for intrusive actions and take action to stop them.

Question 18

What is a botnet?

Answer 18

A collection of computers infected by malware and controlled by a single threat actor.

Question 19

Describe the process of cryptographic erasure.

Answer 19

Destroying the cryptographic keys used for decrypting data, making the data undecipherable.

Question 20

What is the purpose of hashing and salting in security?

Answer 20

To convert information into a unique value (hashing) and add random characters (salting) to increase security.

Question 21

How can multi-factor authentication (MFA) enhance security?

Answer 21

By requiring users to verify their identity in two or more ways to access a system or network.

Question 22

What is the significance of a virtual machine (VM) in cybersecurity?

Answer 22

It provides an isolated environment to run code, preventing malicious code from affecting the rest of the system.

Question 23

Explain the concept of sandboxing in cybersecurity.

Answer 23

A testing environment that allows software or programs to run separately from the network to detect vulnerabilities or malware.

Question 24

What is the purpose of a baseline configuration in security?

Answer 24

To serve as a fixed reference point for comparing changes made to a system or environment.

Question 25

How can CAPTCHA and reCAPTCHA prevent brute force attacks?

Answer 25

By requiring users to complete tests that prove they are human, preventing automated attacks.