Networks and Network Security Flashcards
module three
What is a DDoS attack?
Distributed Denial of Service (DDoS) attack, which uses multiple devices to flood the target network with unwanted traffic.
Describe a SYN flood attack.
An attack that poses as a TCP connection, flooding a server with packets simulating the first step of the TCP handshake.
What happens during a Ping of Death attack?
A hacker sends a system an ICMP packet that is bigger than 64KB, causing the system to crash.
What is a key characteristic of an on-path attack?
The attacker intercepts and potentially alters communication between two trusted devices.
Define packet sniffing.
The practice of capturing and inspecting data packets traveling across a network.
How does IP spoofing work?
An attacker changes the source IP of a data packet to impersonate an authorized system.
What is a smurf attack?
A network attack where an attacker sniffs an authorized user’s IP address and floods it with ICMP packets.
Explain a replay attack
An attack where a malicious actor intercepts a data packet in transit and delays it or repeats it at another time.
What does a security information and event management (SIEM) tool do?
Collects and analyzes log data to monitor critical activities within an organization.
What are the key uses of a network protocol analyzer like tcpdump?
To capture and analyze data traffic within a network for monitoring and identifying suspicious activity.
What is an ICMP flood?
A type of DoS attack where an attacker repeatedly sends ICMP request packets to a network server.
How can a firewall help prevent network attacks?
By monitoring and filtering incoming and outgoing traffic based on a set of security rules.
What is the purpose of a controlled zone in network security?
To protect a company’s internal network from an uncontrolled security zone.
Define a backdoor attack.
An attack where weaknesses are intentionally left by programmers to bypass normal access control mechanisms.
What impact can a DDoS attack have on an organization?
It can cause financial loss, damage to reputation, and disrupt public safety