Technology & Tools .

Question 1

What are the 7 layers of the OSI Model?

Answer 1

7. Application
8. Presentation
9. Session
10. Transport
11. Network
12. Data Link
13. Physical

Verbiage To Remember (Going Down)
- All People Seem To Need Data Processing.

Verbiage To Remember (Going Up)
- Please Do Not Transport Santa’s Presentation Appliances.

Question 2

This layer of the OSI Model…

Encodes data into bits for transmission over wire, fiber, or radio.

Answer 2

Physical Layer

Question 3

This layer of the OSI Model…

Formats packets for transmission; Ethernet, ARP, MAC addresses

Answer 3

Data Link Layer

Question 4

This layer of the OSI Model…

Routes packets over the network; IP, ICMP, BGP, IPSec, NAT.

Answer 4

Network Layer

Question 5

This layer of the OSI Model…

Managed Connection integrity; TCP, UDP, SSL, TLS.

Answer 5

Transport Layer

Question 6

This layer of the OSI Model…

Establishes, maintains, and terminates sessions.

Answer 6

Session Layer

Question 7

This layer of the OSI Model…

Transforms user-friendly data into machine-friendly data; encryption.

Answer 7

Presentation Layer

Question 8

This layer of the OSI Model…

Serves as the point of integration for user applications with the network.

Answer 8

Application Layer

Question 9

______ is a connection-oriented protocol, while ______ is a connectionless protocol that does not guarantee delivery.

Answer 9

• TCP

- UDP

Question 10

_______ converts between IP addresses and domain names.

Answer 10

DNS

Question 11

_______ converts between MAC addresses and IP addresses.

Answer 11

ARP

Question 12

______ converts between public and private IP addresses.

Answer 12

NAT

Question 13

Wireless networks should be secured using WPA or WPA2 encryption, not WEP (T/F)?

Answer 13

True!

Question 14

________ _______ distribute connection requests among many identical servers.

Answer 14

Load balancers

Question 15

_______ ________ generally work at layer 2 and connect directly to endpoints or other switches.

Answer 15

Network Switches

Question 16

Switches can create _________ to further segment internal networks at layer 2.

Answer 16

Virtual LANs (VLANs)

Question 17

PORT(S)…

20, 21

Answer 17

FTP

File Transfer Protocol

Question 18

PORT(S)…

22

Answer 18

SSH

SECURE SHELL

Question 19

PORT(S)…

23

Answer 19

Telnet

Question 20

PORT(S)…

25

Answer 20

SMTP

Simple Mail Transfer Protocol

Question 21

PORT(S)…

53

Answer 21

DNS

Domain Name Server

Question 22

PORT(S)…

80

Answer 22

HTTP

Hypertext Transfer Protocol

Question 23

PORT(S)…

110

Answer 23

POP3

Post Office Protocol 3

Question 24

PORT(S)…

123

Answer 24

NTP

Network Time Protocol

Question 25

PORT(S)…

135, 137-139, 445

Answer 25

Windows File Sharing

Question 26

PORT(S)…

143

Answer 26

IMAP

Internet Message Access Protocol

Question 27

PORT(S)…

161/162

Answer 27

SNMP

Simple Network Management Protocol

Question 28

PORT(S)…

443

Answer 28

HTTPS

Hypertext Transfer Protocol Secure

Question 29

PORT(S)…

1433/1434

Answer 29

SQL Server

Structured Query Language Server

Question 30

PORT(S)…

1521

Answer 30

Oracle

Question 31

PORT(S)…

1720

Answer 31

H.323

Question 32

PORT(S)…

1723

Answer 32

PPTP

Point-to-Point Tunneling Protocol

Question 33

PORT(S)…

3389

Answer 33

RDP

Remote Desktop Protocol

Question 34

PORT(S)…

9100

Answer 34

HP JetDirrect Printing

Question 35

______ generally work at layer 3 and connect networks to each other.

Answer 35

Routers

Question 36

_______ are the primary network security control used to separate networks of differing security levels.

Answer 36

Firewalls

Question 37

TLS should be used to secure network communications because SSL is not secure (T/F) ?

Answer 37

True!

Question 38

Most Virtual Private Networks (VPNs) use either ______ or _______ .

Answer 38

TLS or IPsec

Question 39

IPsec uses Authentication ________ to provide authentication, integrity, and nonrepudiation and _________ Security _________ to provide confidentiality.

Answer 39

• Headers

- Encapsulating Security Payload

Question 40

______ tunnel VPNs only send traffic destined for the corporate network through VPN while _____ tunnel VPNs send all traffic through the VPN.

Answer 40

• Split

- Full

Question 41

Network admission Control (NAC) systems screen devices before allowing them to connect to the network (T/F)?

Answer 41

True!

• This screening may include both user authentication and device health checking.

Question 42

This tool…

Monitors a host or network for signs of intrusion and report to administrators.

Answer 42

Intrusion Detection System

Question 43

This tool…

Monitor a host or network for signs of intrusion and attempt to block malicious traffic automatically.

Answer 43

Intrusion Prevention Systems

Question 44

This tool…

Aggregates and correlates security information received from other systems.

Answer 44

Security Information & Event Management System

Question 45

This tool…

Restricts network traffic to authorized connections.

Answer 45

Firewall

Question 46

This tool…

Limits applications to those on an approved list.

Answer 46

Application Whitelisting

Question 47

This tool…

Blocks applications on an unapproved list.

Answer 47

Application Blacklisting

Question 48

This tool…

Provides a safe space to run potentially malicious code.

Answer 48

Sandbox

Question 49

This tool…

Is a system that serves as a decoy to attract attackers.

Answer 49

Honeypot

Question 50

This tool…

Is unused networks designed to capture probing traffic.

Answer 50

Honeynet

Question 51

This tool…

Provides a central aggregation point for VPN connections.

Answer 51

VPN Concentrator

Question 52

This tool…

Makes requests to other servers on behalf of an end user, providing anonymization and performance enhancement.

Answer 52

Proxy Server

Question 53

This tool…

Blocks the exfiltration of sensitive information from an organization.

Answer 53

Data Loss Prevention

Question 54

This tool…

Screens inbound messages for malicious content.

Answer 54

Mail Gateway

Question 55

Security professionals use a variety of command-line tools to assist in their work (T/F)?

Answer 55

True!

Question 56

This command-line tool…

Verifies connectivity to a remote networked system and is Windows based.

Answer 56

Ping

Question 57

This command-line tool…

Lists open network connections and listening ports on a system.

Answer 57

Netstat

Question 58

This command-line tool…

Determined the network path between two systems.

Answer 58

Tracert

Question 59

This command-line tool…

Performs DNS queries.

Answer 59

nslookup

Question 60

This command-line tool…

Performs MAC address queries.

Answer 60

arp

Question 61

This command-line tool…

Queries network configuration information on a Linux/Mac system.

Answer 61

ifconfig

Question 62

This command-line tool…

Scans for open network ports on a remote system.

Answer 62

nmap

Question 63

This command-line tool…

Reads and writes traffic to/from network communications.

Answer 63

netcat

Question 64

These two types of models allows users to mix personal and business use?

Answer 64

• Bring Your Own Device (BYOD)

- Corporate Owned, Personally Enabled (COPE)

Question 65

Companies should use _______ _______ ________ (MDM) tools you enforce a variety of mobile security controls, such as:

• Restricting applications
• Remote wiping off lost/stolen devices
• Geolocation and geofencing services
• Screen locking and password/ PIN requirements
• Full device encryption

Answer 65

Mobile Device Management

Question 66

Telnet, HTTP, LDAP, and FTP are secure protocols (T/F)?

Answer 66

False!

• They are insecure.

Question 67

SSH, HTTPS, LDAPS, and FTPS or SFTP are insecure protocols (T/F)?

Answer 67

False!

• They are secure.

Question 68

Data Loss Prevention can be used to secure mail gateways (T/F)?

Answer 68

True!

With DLP, outgoing e-mails can be scanned to ensure they don’t contain any confidential or proprietary information.

Question 69

What do spam filters prevent?

Answer 69

They prevent unsolicited e-mail messages from reaching users’ mailboxes.

Question 70

What does configuring server-to-server encryption do on the mail gateway?

Answer 70

Allows for any mail message sent from the internal network to external services located on the Internet to be encrypted.
** This ensures the message contents aren’t transmitted as plain text.

Question 71

Which are the CLI commands that are used exclusively with Linux? (Choose Three)

• netstat
• tcpdump
• arp
• dig
• ifconfig

Answer 71

• tcpdump
• dig
• ifconfig

Question 72

Which technology allows users to use the same identification data to gain access to network resources across multiple different enterprises?

A. Trusted OS
B. Federation
C. RADIUS
D. Certificate Authority

Answer 72

B. Federation

aka Federated Identity Management (FIM)