SG 2 - Study Notecards

Question 1

What is Google hacking?

Answer 1

Using advanced operators to narrow search responses

Question 2

What is RIR ?

Answer 2

Regional Internet Registry

An org that manages addressing in 1 of the 5 regions around the world

Question 3

What is a vulnerability?

Answer 3

A weakness in a piece of software or a configuration that could lead to exposure or exploitation

Question 4

What is reconnaissance?

Answer 4

Identifying info about the target before attacking

Question 5

What is a Google dork?

Answer 5

A method of web searching using keywords to narrow search results

Question 6

What is nslookup?

Answer 6

A utility used to query DNS servers

Question 7

What is IoT ?

Answer 7

Internet of things

All embedded, networked devices, such as thermostats and DVRs

Question 8

What is UDP ?

Answer 8

User Datagram Protocol

A layer 4 protocol that is connectionless

Question 9

What is the CIA security triad?

Answer 9

3 Essential security properties:
Confidentiality
Integrity
Availability

Question 10

What is whois?

Answer 10

A program used to request info about domains and addresses

Question 11

What is UTM ?

Answer 11

Unified threat management

Next generation firewall device that may include IDS, anti-malware and other security functions

Question 12

What is EDGAR ?

Answer 12

Electronic Data Gathering and Retrieval System

Used to store info about public companies

Question 13

What is TCP

Answer 13

Transmission Control Protocol

A layer 4 protocol that is connection oriented

Question 14

What is layer 7 ?

Answer 14

Application layer of the OSI Model

Where protocols like SMTP and FTP reside

Question 15

What is zone transfer

Answer 15

A DNS request to pull all records from a domain