Phase 1 Flashcards
What port is typically used for SSH?
22
What is a TCP three way handshake?
SYN - SYN/ACK - ACK packets
What is a pcap file?
A saved Packet CAPture file that can be analyzed offline
As a Cybersecurity tool, what does Wireshark allow us to do?
Analyze data packets on the network
Will using a pcap file can help us spot an adversary in real time?
False
Can wireshark be used to view network traffic on any network in the world from a single computer?
False
What does NIC stand for?
Network Interface Card
What does MAC stand for?
Media Access Control
The loopback address is a very important address for computer communications. What is an example of a loopback address?
127.0.0.1
What does the ping command do?
Verifies connectivity between two systems using the ICMP protocol
What is an example of a valid PUBLIC IPv4 address?
1.0.0.0 to 127.0.0.0
128.0.0.0 to 191.255.0.0
192.0.0.0 to 223.255.255.0
What is an example of a valid PRIVATE IPv4 address?
10.0.0.0 to 10.255.255.255
172.16.0.0 to 172.31.255.255
192.168.0.0 to 192.168.255.255
what would you see using the cat command on an /etc/hosts file
simple text file that maps hostnames to IP addresses.
What is the decimal 192 in Hex?
C0
Which of the following is likely to be a Home directory?
/home/user1
What does the command ip a do?
Shows the IP Addresses associated with all the NICs
What is 0xFF in binary?
1111 1111
Name the directories to their common functions:
/bin –
/etc –
/usr –
/mnt –
/home –
BINARIES
configuration
user binaries
mounts
user data folder
The command ls -l gives what kind of listing?
Long (detailed)
The command ls -a gives what kind of listing?
All files, even hidden
You are installing an application that needs to write data to a log file. The filename is appout.log and you are told the program will error out if the file does not already exist. What command can you use to ensure you won’t have a problem?
touch /var/log/appout.log
What will ALWAYS be the symbol for the current directory in a Linux/Unix terminal?
(.)(.)
.
Which of these are located in the root directory of a fresh install of Linux ? (Choose 2)
/home
/usr
/conf
/etc
/titties
Within a Linux Terminal, which command would display hidden files in the current directory?
Ls -a
Match the following commands to their functions in VI/VIM. Assume you are in command mode, unless otherwise stated.
O (lowercase)–
O (capital) –
:w –
:q! –
/ –
dw –
dd –
i –
a –
Esc (while in insert mode) –
adds a line below the cursor and puts vi in insert mode
adds a line above the cursor and outs vi in insert mode
saves the file
quits the file without saving
searches for text
deletes the current word
deletes the current line
insert mode before the cursor
insert mode after the cursor
changes to command mode
What does the ~ do when you type “cd ~” in the command line?
Takes you to your home directory
Which command will add a user and setup the account’s home folder and other settings automatically?
adduser
What does the command su stand for?
Switch user
What does the touch command do?
Creates a file, if it doesn’t exist, or updates the timestamps if it does
Typing cd with no parameters is the equivalent of which command?
cd ~
Which command adds a line below the current line on in the VI editor?
o
What does the VI command :w do (not :wq)?
Saves the file
Which command puts the VI editor into edit mode?
i
What does the D command do in the VI editor?
Deletes from the cursor to the end of the line.
Can the :w! command be used to overwrite all files, even read-only system files?
False
What does the command nc or netcat with no parameters do?
Shows the usage (options) for the command
What is the \r character in an HTTP GET request?
Carriage return
If a user on our network is surfing to an HTTP page and we can capture the network traffic, we can potentially view the entire page as the user would see it?
True
What is netcat used for?
Network Communications using TCP or UDP
What is the \n character in an HTTP GET request?
Line feed
Which command will stop a process? (linux)
kill
What does the pvscan command do?
Displays the Physical Volumes present
LVM can be added to an existing Linux system that does not currently have LVM configured.
True
Which command can be used to stop a process by name?
pkill
What is the purpose of a Samba file share?
Allows file and print services between users on Windows and Linux servers
In which folder and file are the Linux Samba passwords stored by default?
/etc/samba/smbpasswd
Are samba shares read only?
False
In which folder is the Linux Samba configuration file located?
/etc/samba
VirtualBox Shares can be used to transfer files between the host computer and the virtual machines
True
What is a Linux shell?
An interface between a user and the operating system
Is “../Documents” an example of an Absolute Path or a Relative Path?
Relative path
What directory does “/” direct to?
The root directory
Which of the following Linux commands CANNOT be used to create a file?
cd
If I am currently in “/root/home/testuser/Documents” which directory would the command “cd ../../” take me?
/root/home
The command “ls -l” lists all files in your current directory also lists them in the long listing format.
False
What is a bash script?
A series of commands saved in a file that can be run at any time
What does a semicolon do in an alias command?
Allows multiple commands to be strung together
An alias can be used to provide a shortcut to another alias.
true
Aliases can be used within bash shell scripts
True
Both Aliases and Bash Shell scripts can be used to run multiple commands.
True
While attempting to add a line of data to a file, the following command is issued echo “New Data” > datafile but the operation fails with an “Operation not permitted” error. The command lsattr is executed and the following is the results:
—–a——–e—– ./datafile
What command might work to add the data to the datafile?
echo “New Data”»_space; datafile
How are daemon and processes related?
A daemon is a Linux process that is running in the background and is not interactive
When setting permissions on a file, we can give an individual user ownership of a file using the chown. If we have multiple users, we can create a group and use chgrp to give the entire group ownership permissions on that file. Then we can use the chmod command to set the read, write and execute permissions for the owner, group and everyone else (world).
Which command would give only a files group execute permissions?
chmod g+x <file></file>
What is the difference between a “Soft” and “Hard” link?
Hard links point to the data (inode) while soft links point to the name (of the inode)
What is the difference between “systemctl start <application>" and "systemctl enable <application>"?</application></application>
“systemctl start” is used to start the service immediately, while “systemctl enable” will start when the system is rebooted
It is possible to filter ARP traffic in Wireshark.
True
What does the acronym ARP stand for?
Address Resolution Protocol
What items are included in an Ethernet II frame?
Type, source address (MAC), destination address (MAC)
From Layer 1 through layer 7, what are the ENCAPSULATION components called?
Layer 5-7 (Session, Presentation, Application) – data
Layer 4 (Transport) – segment
Layer 3 (Network) – packet
Layer 2 (Data Link) – frame
Layer 1 (Physical) – bits
Identify the layers of the OSI Model
LAYER 7 – APPLICATION
LAYER 6 – PRESENTATION
LAYER 5 – SESSION
LAYER 4 – TRANSPORT
LAYER 3 – NETWORK
LAYER 2 – DATA LINK
LAYER 1 – PHYSICAL
How big is a MAC address? Hint: In HEX a MAC address might look like: 08:00:27:AC:64:0A
6 Bytes (48 Bits)
What is the difference between HTTP and HTTPS?
HTTPS uses Security Certificates to encrypt the session, while HTTP is unencrypted
Which port is commonly used for hypertext transfer protocol traffic?
80
Which of these typically follows the three-way TCP handshake in an HTTP stream?
GET / HTTP/1.0
What is TCP Segmentation?
Breaking a longer message into segments
A colleague complains that the internet is down. Upon examination, you discover the network cable has become dislodged from the ethernet port. What OSI layer was the problem?
LAYER 1
How many bits are in a IPv4 address?
32
What is hypertext?
Structured text that uses logical links between nodes
What is Network Address Translation?
Manages internal (private) IP addresses and maps them to an external (Public) IP address and port
A 10MB device cannot communicate with a 1GB device
False
What do the following protocols do
DNS –
ARP –
ICMP –
DHCP –
RESOLVE NAME TO IP ADDRESS
RESOLVE IP TO MAC ADDRESS
ECHO REQUEST/REPLY
LAN BROADCAST REQUESTING IP ADDRESS
What are the Encapsulation components to the following headers?
FRAME–
PACKET –
SEGMENT –
ETHERNET HEADER
IP HEADER
TRANSPORT HEADER
Identify the components of the URL https://www.google.co.uk/
Protocol:
Domain:
Generic Top Level Domain:
Country Top Level Domain:
https
google
co
uk
The command “ls -l” lists all files in your current directory also lists them in the long listing format.
False
The command “top” prints the first 10 lines of a file onto the terminal.
False
Which of these is a Linux Security Tool?
SeLinux
If I am currently in “/root/home/testuser/Documents” which directory would the command “cd ../../” take me?
/root/home
Typing “vi” into your terminal and having it run “vim” is an example of what?
Aliases
Which of these is not part of the CIA Triad?
Authenticity
What directory does “/” direct to?
The root directory
Which package manager does a Debian machine use?
apt or apt-get
Which of the following Linux commands CANNOT be used to create a file?
cd
What are examples of Virtualization?
cloud, hypervisor
Which command would remove only a files group execute permissions?
chmod g-x <file></file>
Which command would exit VIM without saving?
:q!
An alias can be used to provide a shortcut to another alias.
True
Which command would delete from the cursor to the end of the line in VIM?
D
Which of the following is likely to be a Home directory?
/home/testuser
Which Linux directory contains configuration files?
/etc
The command ll is an example of what?
Alias
What is the purpose of a Samba file share?
Allows file and print services between users on Windows and Linux servers
Within a Linux Terminal, which command would display additional details about files in the current directory?
ls -l
VirtualBox Shares can be used to transfer files between the host computer and the virtual machines
True
Virtual Machines can be reconfigured, for example by adding extra CPUs, hard drives, or memory, easier than a physical machine.
True
