Process Monitoring (3.3) Flashcards

1
Q

NMAP

A

Network Mapper, find and learn more about network devices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Ports Scan

A

Find devices and identify open ports

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Operating System Scan

A

Discover the OS without logging into a device

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Service Scan

A

What service is available on the device?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Additional Scripts

A

NMAP scripting engine (NSE)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Vulnerability Scanning

A

Usually minimally invasive, poke around and see whats open, identify systems and security devices and you can test from the outside or the inside. They gather as much info as possible.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Vulnerability scan results

A
  • Lack of security controls (no firewall, no anti-virus)
  • Misconfigurations (open shares, guest access)
  • Real vulnerabilities (especially newer ones, occasionally old ones)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Patch Management

A
  • Incredibly Important for system stability and security fixes
  • Service Packs all at once
  • Monthly Updates - Incremental
  • Emergency out of band updates - Zero day and important security discoveries
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Baseline Review

A

Allows you to understand what normal operation of network might be over time. Any reports that show a change to baseline might require investigation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Protocol Analyzer

A
  • Solves complex application issues (gets into Details)
  • Gathers packets on the network
  • Allows you to see traffic paters (Identify unknown traffic, verify packet filtering and security controls
  • Large Scale Storage
How well did you know this?
1
Not at all
2
3
4
5
Perfectly