TERM

Question 1

FRR

Answer 1

false rejection rate, good user that is rejected by biometric system

Question 2

FAR

Answer 2

false acceptance rate, wrong user that is accepted by biometric system

Question 3

CER

Answer 3

crossover error rate: the less, the more for a biometric system

Question 4

HYDRA

Answer 4

cracking tools (dictionnary attack)

Question 5

Horsepill

Answer 5

linux kernel rootkit inside initrd

Question 6

Grayfish

Answer 6

windows rootkit inject code in the boot record

Question 7

<= 7 car. for LM password, what is the end ?

Answer 7

AAD3B435B51404EE

Question 8

Azazel

Answer 8

rootkit

Question 9

Avatar

Answer 9

rootkit

Question 10

Necurs

Answer 10

rootkit

Question 11

ZeroAccess

Answer 11

rootkit

Question 12

Pharming

Answer 12

use dns poisoning / host conf to redirect victim to attacker phishing site

Question 13

spear phishing

Answer 13

a targeted phishing

Question 14

watering hole attack

Answer 14

hack a website that victim corporate used to connect into in order to do phishing

Question 15

whaling

Answer 15

phishing against CEO or person of interest

Question 16

VANET

Answer 16

Vehicle Ad Hoc Network, communication vechicle-to-vehicle (V2V)

Question 17

Mirai

Answer 17

IoT malware, botnet and DDos attack

Question 18

foren6

Answer 18

tools for sniffing IoT device

Question 19

SuperOneClick

Answer 19

tools to root android devices

Question 20

ALE = ____ * ____

Answer 20

ARO * SLE

Question 21

THOR

Answer 21

full APT scanner

Question 22

Diffie Hellman group:

Answer 22

• group 1: 768bit
• group 2: 1024bit
• group 5: 1536bit
• group 14: 2048bit

Question 23

key escrow

Answer 23

enable a third party to access sensitive data if the needed arrive

Question 24

RUDY

Answer 24

keeping sessions as long as possible

Question 25

LAND attack

Answer 25

DoS attack that use a malformed packet

Question 26

teardrop

Answer 26

DoS attack that use several large overlapping IP Fragment

Question 27

smurf attack

Answer 27

spoof victim and got back multiple ICMP reply, DoS

Question 28

ping of death

Answer 28

ICMP too big, so after frag, the system crash

Question 29

blackboard

Answer 29

recognize spam with AI

Question 30

cavity virus

Answer 30

use the unused part of a file

Question 31

sparse virus

Answer 31

launch on trigger (like day, number of use, etc)

Question 32

dhcp starvation

Answer 32

full of ip leases, so the dhcp can’t be working

Question 33

BIA

Answer 33

Business Impact Analysis ⇒ identify business system and process, that are critical for a company to continue to operate

Question 34

MTD

Answer 34

Maximum Tolerable Downtime

Question 35

Common Criteria, what is “ST” ?

Answer 35

Security Target : is the DOCUMENTATION for a system or product that is to be tested

Question 36

Common Criteria, what is “ToE” ?

Answer 36

Target of Evaluation ==> the system to test

Question 37

Hyena tools

Answer 37

used to enumeration system (like netbios)

Question 38

utmp file ?

Answer 38

currently logs user

Question 39

btmp file ?

Answer 39

failed login attempt

Question 40

wtmp file ?

Answer 40

login/logout activity

Question 41

cache poisoning

Answer 41

DNS poisoning

Question 42

risk equation = ________

Answer 42

vulnerability (likelihood of appearing) * threat (frequency) * cost

Question 43

dimitry

Answer 43

opensource network scanning utility

Question 44

p0f

Answer 44

passive os fingerprint - Passive Os Fingerprint = p0f

Question 45

wich fw does operate at layer 5 ?

Answer 45

circuit-level gateway firewall

Question 46

program slicing ?

Answer 46

deobfuscation method

Question 47

nemesys

Answer 47

command line tools that generate arp, ethernet, tcp and udp packet