Test Questions

Question 1

Uses a challenge message during authentication?

Answer 1

-CHAP - Challenge Handshake Authentication Protocol

Question 2

Which hashing algorithms are NOT secure?

Answer 2

Which hashing algorithms are NOT secure?

• MD5 - collisions
• RIPEMD - collisions

Question 3

Which hashing algorithms are NOT secure?

* list not complete

Answer 3

Which hashing algorithms are NOT secure?

• MD5 - collisions
• SHA-0, SHA-1

-RIPEMD-160 is secure, but other version maybe not good. SHA-2 is better

Question 4

EV Certificate

Answer 4

EV Certificate
Extended Validation
-Additional checks have been made to validate site owner

Question 5

tracerout

Answer 5

tracerout

• Maps each hop by incrementing TTL (Time To Live) for each request
• When TTL reaches 0, receiving router drops packet and sends ICMP TTL Exceeded message back to original station.

Question 6

AAA Framework

-Four phases, and what they need

Answer 6

AAA Framework

1. Identification - username - who you claim to be
2. Authentication - password - prove you are who you say you are
3. Authorization - based on identification and authentication, what do you have access to?
4. Accounting - Resources use - login time, data send/received, logout time

Question 7

Data Steward/Custodian

-What are this role’s responsibilities

Answer 7

Data Steward/Custodian
Handles routine tasks to protect data
-ensure data backed up
-ensure backups properly labeled and stored
-Data owners delegate task to custodian

Question 8

Data Owner

-What are this role’s responsibilities

Answer 8

Data Owner

• A higher-level executive
• Identifying classification of data
• Ensure data labeled to match classification
• Ensure security controls implemented to protect data

Question 9

ICS

Answer 9

ICS
Industrial Control System
-Dedicated network to manage and control manufacturing equipment, power generation equipment, etc

Question 10

802.1X supports what types of authentication?

Answer 10

802. 1X supports what types of authentication?
     - Authentication server receives request for access via EAP
     - RADIUS
     - LDAP
     - TACAS+
     - Kerberos

Question 11

Which authentication mechanism does 802.1x usually rely upon?

Answer 11

Which authentication mechanism does 802.1x usually rely upon?

• EAP - Extensible Authentication Protocol
• Request for access from supplicant on computer and authentication server (RADIUS, etc)

Question 12

PKCS

Answer 12

PKCS
Public Key Cryptography Standard
-Asymmetric
-A digital signature algorithm

Question 13

Data Wiping

• Another name?
• What does it do?
• Is media reusable?

Answer 13

Data Wiping

• aka clearing
• software tool to overwrite data on hard drive to destroy all electronic data.
• May be performed with a 1x, 7x, or 35x overwriting, with a higher number of times being more secure.
• Allows the hard drive to remain functional and reused.

Question 14

Degaussing

• What does it do?
• Is media reusable?

Answer 14

Degaussing

• demagnetizing a hard drive to erase its stored data.
• cannot reuse a hard drive once it has been degaussed.

Question 15

Data Purging

• What does it do?
• Is media reusable?

Answer 15

Data Purging

• aka sanitizing
• Removing sensitive data from a hard drive using the device’s own electronics or an outside source (like a degausser).
• Not reusable.
• Three methods: physical destruction, cryptographic erasure and data erasure

Question 16

Behavior-Based Analysis

Answer 16

Behavior-Based Analysis

• Capture/analyze normal behavior and then alert when an anomaly occurs.
• Configuring a behavior-based analysis tool requires more effort to set up properly, but it requires less work and manual monitoring once it is running.
• Ex: could be used to detect unexpected output from an application being managed or monitored

Question 17

ECC

Answer 17

ECC
Elliptic Curve Cryptography
-Asymmetric

Question 18

FTK Imager

-Open source or proprietary?

Answer 18

FTK Imager

• Forensic imager
• proprietary

Question 19

dd

Answer 19

dd

• Forensic imager
• open source

Question 20

Autopsy

-Open source or proprietary?

Answer 20

Autopsy

• Forensic tool suite
• cross–platform
• open source

Question 21

SAML

-Roles

Answer 21

SAML Roles

• XML
• Exchange authentication and authorization info between parties
• SAML is a solution for providing single sign-on (SSO) and federated identity management for web-based apps
• SP (Service Provider), RP (Relying Partner) - a web application that wants to authenticate and eventually authorize access to data.
• IdP (Identity Provider) - Provides authentication and authorization for service providers/relying parties (SPs/RPs). It may rely on itself, or another Identity Provider (IdP) (ex: the OP provides a front-end for LDAP, WS-Federation, OIDC or SAML).

Question 22

SHA-1 Output Length

Answer 22

SHA-1 Output Length

-160 bit

Question 23

SHA-2 Output Length

Answer 23

SHA-2 Output Length

256 bit

Question 24

NTLM Output Length

Answer 24

NTLM Output Length

-128 bit

Question 25

MD5 Output Length

Answer 25

MD5 Output Length

-128 bit

Question 26

Phishing

Answer 26

Phishing
-Sending out a large volume of email to a broad set of recipients in the hopes of collecting the desired action or information.

Question 27

Pharming

Answer 27

Pharming

• Fake website
• Domain spoofing in an attempt to gather the desired information from a victim.

Question 28

MSSP

Answer 28

MSSP
Managed security service provider (MSSP)
-provides security as a service (SECaaS)

Question 29

Anomaly-Based Detection

Answer 29

Anomaly-Based Detection

• aka heuristic detection
• aka behavioral
• Can detect unknown (zero-day) anomalies
• Can be used by IDS, IPS
• Detect attacks by comparing operations against baseline

Question 30

Hoax

Answer 30

Hoax

-Message that tells of impending doom from virus or other threat

Question 31

DHCP Sniffing

Answer 31

DHCP Sniffing
Dynamic Host Configuration Protocol
-A device connected to the network requests an IP address from the DHCP server using the DHCP protocol
-When DHCP servers are allocating IP addresses to the clients on the LAN, DHCP snooping can be configured on LAN switches to prevent malicious or malformed DHCP traffic, or rogue DHCP servers

Question 32

XSS vs Remote Code Exploit

Answer 32

XSS vs Remote Code Exploit

• XSS targets server
• Remote Code Exploits target client (user input)

Question 33

ASLR

Answer 33

ASLR
Address space layout randomization
-computer security technique involved in preventing exploitation of memory corruption vulnerabilities. In order to prevent an attacker from reliably jumping to, for example, a particular exploited function in memory, ASLR randomly arranges the address space positions of key data areas of a process, including the base of the executable and the positions of the stack, heap and libraries.

Question 34

BPDU

Answer 34

BPDU
A bridge protocol data unit (BPDU) is a data message transmitted across a local area network to detect loops in network topologies

Question 35

CSU

Answer 35

CSU
Channel Service Unit or CSU is a digital communication device that is used to connect a digital line to a digital device.

Question 36

DNAT

Answer 36

DNAT
Destination network address translation is a technique for transparently changing the destination IP address of an end route packet and performing the inverse function for any replies. Any router situated between two endpoints can perform this transformation of the packet.

Question 37

POODLE

Answer 37

POODLE

• Padding Oracle on Downgrade Legacy Encryption
• Downgrade attack - take advantage of falling back to SSL from TLS
• SSL Man in the Middle exploit - attacker inserts self into comms session and forces browser to use SSL 3.0
• SSL no longer maintained
• Disable SSL to prevent

Question 38

Rootkits

• How do they hide?
• How can they be discovered?

Answer 38

Rootkits

• Hide their running processes with hooking
• Tools that inspect RAM can discover hidden hooked processes