Test 1 Flash

Question 1

What is a Virus?

Answer 1

A program that self replicates

Question 2

What is an Anti-Virus?

Answer 2

A list known viruses that protects your computer from these virus and should be updated always

Question 3

What are the two ways to avoid virus?

Answer 3

Policies

Anti-Virus

Question 4

What is a Trojan?

Answer 4

A Trojan horse is a program that looks benign but has malicious purpose

Question 5

Buffer Overflow

Answer 5

is an anomaly where a program, while writing data to a buffer, overruns the buffer’s boundary and overwrites adjacent memory locations

Question 6

What is Spyware?

Answer 6

Spyware is simply software that literally spies on what you do on your computer

Question 7

What is Spyware used for?

Answer 7

Keyloggers
Spying through webcam
Legal Privacy concerns with employees

Question 8

What is spam?

Answer 8

Spam is email that is sent out to multiple parties, that is unsolicited

Question 9

What are the 6 common techniques used by hackers?

Answer 9

Data Collection
Passive
Active
Port Scanning
Packet Sniffer
SQL Injection

Question 10

What is Passive Scanning that a hacker does?

Answer 10

passive scanning is just looking at available information to the public so they don’t see that you are looking at them

Question 11

What is Active Scanning?

Answer 11

Active scans are far more reliable then passive but may be detected by the target system

Question 12

What is port scanning?

Answer 12

Port Scanning is the process of attempting to contact each network port on the target system and see which ones are open.

Question 13

What are the two most used quotes in class?

Answer 13

1) “If it sounds to good to be true, it probably is!”

2) “Don’t trust anyone!”

Question 14

What is a SQL Script Injection?

Answer 14

This attack is based on passing structured query language commands to a web application and getting the website to execute them.

Question 15

What is a handshake?

Answer 15

This combines the elements of SYN, SYN+ACK and ACK…(three-way handshake)

1) Client sends a packet with the SYN flag
2) Server allocates resources for the client and then responds with the SYN and ACK flags set.
3) Client responds with the ACK flag set.

Question 16

SYN ?

Answer 16

Synchronize - This packet is asking the target server to please synchronize communications.

Question 17

Cyber Stalking?

Answer 17

Any use of electronic communications to stalk a person.

Question 18

What are the two most used quotes in class?

Answer 18

1) “If it sounds to good to be true, it probably is!”

2) “Don’t trust anyone!”

Question 19

What is a SQL Script Injection?

Answer 19

This attack is based on passing structured query language commands to a web application and getting the website to execute them.

Question 20

What is a packet sniffer?

Answer 20

A program that captures data as it travels across a network.

Question 21

What is data collection?

Answer 21

If you collect data from multiple sources you can combine and use for identity theft.

Question 22

DOS - Strengths and weaknesses?

Answer 22

1) Strength = easy to perform, do not require a great deal of sophistication on the part of perpetrator, and can have devastating effects on the target system.
2) Weaknesses = you need a really fast computer or many computers to overwhelm another computer, website, or network. (performing DDOS - distributed denial of service)

Question 23

What is a handshake?

Answer 23

“It’s like two computers hooking up and making baby computers”

Question 24

SYN ?

Answer 24

Synchronize - This packet is asking the target server to please synchronize communications.

Question 25

What is spear phishing?

Answer 25

Spear Phishing is using the same technology in a targeted manner. For example, if an attacker wanted to get into the servers at a defense contractor, he might craft email and phishing websites specifically to target software and network engineers at that company.

Question 26

MAC address

Answer 26

Media Access Control - are used as a network address for most IEEE 802 network technologies, including Ethernet and Wi-Fi.

Question 27

User Interface

Answer 27

User and a computer system interact, in particular the use of input devices and software.

Question 28

What is low tech espionage

Answer 28

Corporate espionage without the computers and internet disgruntled employees are the biggest threat

Question 29

Session Hijacking

Answer 29

AKA: Cookie Hijacking the exploitation of a valid Computer session, known as a session key to authorized access to information or servers in a computer system.

Question 30

Odds of Attack

Answer 30

How likely are you to be attacked? what do you have?

Question 31

Security Devices

Answer 31

Fire Wall - Barrier between network and outside world
Proxy Server - Often Used with a firewall to hide the internal networks IP and present a single IP (its own) to the world
Intrusion Detection - IDS simply monitors traffic for suspicious activity

Question 32

Security Activities

Answer 32

Authentication - username and password

Auditing - Process of reviewing logs, records, procedures to determine if their items meet standards

Question 33

Physical Connections

Answer 33

Hub - Hardware that links computer and all information is shared
Switch - A smarter hub and can hide information from other users on the same network or switch
Router - Internet signal booster and also used as a smarter switch allowing for more users and its own safety features.
Repeater - is an electronic device that receives a signal and re-transmits it.

Question 34

Ports

Answer 34

n endpoint of communication in an operating system.

Question 35

IP address and URL

Answer 35

A unique string of numbers separated by periods that identifies each computer using the Internet Protocol to communicate over a network. URL is the site

Question 36

DNS Server

Answer 36

Domain Service Name - runs special-purpose networking software, features a public IP address, and contains a database of network names and addresses for other Internet hosts.

Question 37

IPconfig

Answer 37

Displays only the IP address, subnet mask, and default gateway values for each adapter

Question 38

Ping

Answer 38

Used to test the reachability of a host on an Internet Protocol (IP) network

Question 39

Tracert

Answer 39

Diagnostic tool for displaying the route (path) and measuring transit delays of packets across an Internet Protocol (IP) network

Question 40

NsLookup

Answer 40

Tool used for querying the Domain Name System (DNS) to obtain domain name or IP address mapping or for any other specific DNS record.

Question 41

Netstat

Answer 41

A command-line network utility tool that displays network connections for the Transmission Control Protocol (both incoming and outgoing)

Question 42

Whois

Answer 42

A query and response protocol that is widely used for querying databases that store the registered users or assignees of an Internet resource

Question 43

OSI Modle

Answer 43

Its goal is the interoperability of diverse communication systems with standard protocols.

Question 44

MAC address

Answer 44

Media Access Control - are used as a network address for most IEEE 802 network technologies, including Ethernet and Wi-Fi.

Question 45

Why do we need Encryption?

Answer 45

Encryption is important because it allows you to securely protect data that you don’t want anyone else to have access to.

Question 46

SYN + ACK?

Answer 46

Synchronize and acknowledged

Question 47

ACK?

Answer 47

Acknowledge - flag sent after the SYN +ACK is sent to finalize three-way communications.

Question 48

Smurf Attack?

Answer 48

Attack which causes a network to perform a DoS on one of it’s own servers.

Question 49

What is a Flood Attack?

Answer 49

A SYN flood is a form of denial-of-service attack in which an attacker sends a succession of SYN requests to a target’s system in an attempt to consume enough server resources to make the system unresponsive to legitimate traffic.

Question 50

What is the Ping of Death?

Answer 50

Attack dependent on sending packets too large for the server to handle.

Question 51

What is a teardrop attack?

Answer 51

A teardrop attack is a denial-of-service (DoS) attack that involves sending fragmented packets to a target machine. Since the machine receiving such packets cannot reassemble them due to a bug in TCP/IP fragmentation reassembly, the packets overlap one another, crashing the target network device.

Question 52

What is Land attack?

Answer 52

Land attack drives the system crazy by attempting to send a message “to and from” itself

Question 53

Echo/Chargen Attack?

Answer 53

Creating a spoofed network session that appears to come from the local systems echo service and which is pointed at the chargen service to form a “loop”. This causes the system to pass large amount of data in an endless loop.

Question 54

What is a Public key encryption?

Answer 54

A public key encryption is essentially the opposite of single-key encryption. With any public key encryption algorithm, one key is used to encrypt a message (called the public key).

Question 55

User Interface

Answer 55

User and a computer system interact, in particular the use of input devices and software.

Question 56

What is low tech espionage

Answer 56

Corporate espionage without the computers and internet disgruntled employees are the biggest threat

Question 57

High tech espionage

Answer 57

More of a black hat style of hacking