test2

Question 1

early macro-type virus, attach themselves into a document

Answer 1

Melisa

Question 2

virus for for stealing information

Answer 2

duqu

Question 3

Philippine students, spread by email

Answer 3

Love you

Question 4

characterized by a greater amount of planning, a longer period of time to conduct the activity, more financial backing to accomplish it, and the possible corruption of, or collusion with, insiders

Answer 4

Structured threat

Question 5

generally, is short-term in nature, does not involve a large group of individuals, does not have large financial backing, and does not include collusion with insiders

Answer 5

Unstructured threat

Question 6

characterized by a much longer period of preparation (years is not uncommon), tremendous financial backing, and a large and organized group of attackers.

Answer 6

highly structured threat

Question 7

In general terms, the methods, techniques, and tools used to ensure that a computersystem is secure.

Answer 7

Computer security

Question 8

A hacker who has the skill level necessary to discover and exploit new vulnerabilities

Answer 8

Elite hacker

Question 9

A hacker who uses his or her skills for political purposes

Answer 9

Hacktivist

Question 10

A hacker with little true technical skill and hence who uses only scripts that someone elsedeveloped.

Answer 10

Script kiddie

Question 11

The act of deliberately accessing computer systems and networks without authorization is generally know

Answer 11

Hacking

Question 12

CIA

Answer 12

Confidentiality + Integrity + Availability

Question 13

Protection

Answer 13

Prevention + ( Detection + Response)

Question 14

For many years, the focus of security was on

Answer 14

prevention

Question 15

the set of activities employed to establish a communication channel between two parties, identifying each in a manner that allows future activity without renewed authentication.

Answer 15

Session Management

Question 16

invocation of conditions that fall outside the normal sequence of operation

Answer 16

Exception Management

Question 17

to the proper operation of IT systems. IT systems are first and foremost systems, groups of elements that work together to achieve a desired resultant process. The proper configuration and provisioning of all of the components in a system is essential to the proper operation of the system. The design and operation of the elements to ensure the proper functional environment of a system

Answer 17

Configuration Management

Question 18

takes a granular view of security by focusing on protecting each computer and device individually instead of addressing protection of the network as a whole

Answer 18

Host Security

Question 19

an emphasis is placed on controlling access to internal computers from external entities

Answer 19

Network Security

Question 20

Use minimum privileges necessary to perform a task.

Answer 20

Least privilege

Question 21

Access should be based on more than one item.

Answer 21

Separation of privilege

Question 22

Deny by default (implicit deny) and only grant access with explicit permission

Answer 22

Fail-safe defaults

Question 23

Mechanisms should be small and simple

Answer 23

Economy of mechanism

Question 24

Protection mechanisms should cover every access to every object

Answer 24

Complete mediation

Question 25

Protection mechanisms should not depend upon secrecy of the mechanism itself

Answer 25

Open design

Question 26

Protection mechanisms should be shared to the least degree possible among users

Answer 26

Least common mechanism

Question 27

Protection mechanisms should not impact users, or if they do, the impact should be minimal

Answer 27

Psychological acceptability

Question 28

This is sometimes called default deny, and the common operational term for this approach

Answer 28

implicit deny.

Question 29

An approach to security using the mechanism of hiding information to protect it.

Answer 29

Security through obscurity

Question 30

Applying this principle to the people side of the security function results in the concept

Answer 30

separation of duties.

Question 31

addresses data confidentiality in computer operating systems

Answer 31

Bell-LaPadula security model

Question 32

defined by controlling read and write access based on conflict of interest rules

Answer 32

Brewer-Nash security model

Question 33

instead of security classifications, integrity levels are used

Answer 33

The Biba Security Model

Question 34

an integrity-based security model that bases its security on control of the processes that are allowed to modify critical data, referred to as constrained data items.

Answer 34

The Clark-Wilson Security Model

Question 35

focuses on protecting each computer and device individually, whereas network security focuses on addressing protection of the network as a whole.

Answer 35

Host security

Question 36

that multiple layers of differing, overlapping controls should be employed

Answer 36

defense in depth, or layered security

Question 37

concept that complements the idea of various layers of security. It means to make the layers dissimilar so that if one layer is penetrated, the next layer can’t also be penetrated using the same method

Answer 37

Diversity of defense

Question 38

the process of combining seemingly unimportant information with other pieces of information to divulge potentially sensitive information

Answer 38

phishing attack

Question 39

The security principle used in the Bell-LaPadula security model that states that no subject can read from an object with a higher security classification

Answer 39

Simple Security Rule

Question 40

agreed-upon formats for exchanging or transmitting data between systems, enable computers to communicate

Answer 40

protocol

Question 41

physical arrangement of a network is typically called

Answer 41

network’s topology

Question 42

When data is transmitted over a network, it is usually broken up into smaller pieces called

Answer 42

packets

Question 43

connection oriented, requires the three-way handshake to initiate a connection, and provides guaranteed and reliable data delivery

Answer 43

TCP

Question 44

connectionless, lightweight, and provides limited error checking and no delivery guarantee

Answer 44

UDP

Question 45

group of two or more devices linked together to share data

Answer 45

network

Question 46

Moving packets from source to destination across multiple networks

Answer 46

routing

Question 47

three-way handshake sequence

Answer 47

SYN, SYN/ACK, ACK

Question 48

extension of a selected portion of a company’s intranet to external partners

Answer 48

Extranet

Question 49

describes a network that has the same functionality as the Internet for users but lies completely inside the trusted area of a network and is under the security control of the system and network administrators

Answer 49

Intranet

Question 50

military term for ground separating two opposing forces, by agreement and for the purpose of acting as a buffer between the two sides

Answer 50

DMZ

Question 51

networking equipment that connects devices that are using the same protocol at the physical layer of the OSI model

Answer 51

Hubs

Question 52

networking equipment that connect devices using the same protocol at the data link layer of the OSI model

Answer 52

Bridges

Question 53

forms the basis for connections in most Ethernet-based LANs

Answer 53

Switches

Question 54

network traffic management device used to connect different network segments together

Answer 54

router

Question 55

construct used to provide a secure communication channel between users across public networks such as the Internet

Answer 55

virtual private network (VPN)

Question 56

The most common implementation of VPN is via IPsec, a protocol for IP security

Answer 56

true

Question 57

Window communication protocol

Answer 57

NetBeui

Question 58

10BASE2

Answer 58

thinnet, 10Mb/s, length 200m

Question 59

10BASE5

Answer 59

500m

Question 60

NAC

Answer 60

cisco

Question 61

NAP

Answer 61

Microsoft

Question 62

Coaxial cable carries how many physical channels

Answer 62

one

Question 63

SSH

Answer 63

22

Question 64

FTP

Answer 64

20-21

Question 65

HTTP

Answer 65

80

Question 66

SNMP

Answer 66

161

Question 67

HTTPS

Answer 67

443

Question 68

pieces of malware that require a file to infect a system

Answer 68

Viruses

Question 69

pieces of malware that can exist without infecting a file

Answer 69

Worms

Question 70

pieces of malware disguised as something else, something the user wants or finds useful

Answer 70

Trojan horses

Question 71

specific events occur in code, allowing an attack to be timed against an event

Answer 71

Logic bombs

Question 72

delayed malware designed to occur after a set period of time or on a specific date

Answer 72

Time bombs

Question 73

malware designed to alter the lower-level functions of a system in a manner to escape detection

Answer 73

Rootkits

Question 74

framework that enables attackers to exploit systems (bypass controls) and inject payloads (attack code) into a system.

Answer 74

Metasploit

Question 75

the use of fraudulent e-mails or instant messages that appear to be genuine but are designed to trick users

Answer 75

Phishing

Question 76

The goal of a phishing attack

Answer 76

to obtain from the user information that can be used in an attack, such as login credentials or other critical information.
Images

Question 77

generally occurs when attackers are able to place themselves in the middle of two other hosts that are communicating. Ideally, this is done by ensuring that all communication going to or from the target host is routed through the attacker’s host (which can be accomplished if the attacker can compromise the router for the target host)

Answer 77

Man-in-the-Middle Attacks

Question 78

refer to the process of taking control of an already existing session between a client and a server

Answer 78

TCP/IP Hijacking

Question 79

attack designed to prevent a system or service from functioning normally

Answer 79

Denial-of-Service Attacks

Question 80

example of a DoS attack that takes advantage of the way TCP/IP networks were designed to function, and it can be used to illustrate the basic principles of any DoS attack. SYN flooding uses the TCP three-way handshake that establishes a connection between two systems

Answer 80

SYN flooding

Question 81

it illustrates the other type of attack—one targeted at a specific application or operating system, as opposed to SYN flooding, which targets a protocol

Answer 81

ping of death

Question 82

Ping Of Dead

Answer 82

attacker sends an Internet Control Message Protocol (ICMP) ping packet equal to, or exceeding, 64KB. Certain older systems are not able to handle this size of packet, and the system will hang or crash

Question 83

variation of phishing that uses voice communication technology to obtain the information the attacker is seeking(Calling)

Answer 83

Vishing

Question 84

HTTPS

Answer 84

TCP 443

Question 85

FPTS

Answer 85

TCP 990 (control)
TCP 989 (data in active mode)

Question 86

HTTP

Answer 86

TCP 80

Question 87

FTP

Answer 87

TCP 20+21

Question 88

general-purpose protocol developed by Netscape for managing the encryption of information being transmitted over the Internet

Answer 88

SSL (Secure Sockets Layer)

Question 89

ActiveX can be used for which of the following purposes

Answer 89

Add functionality to a browser

B. Update the operating system

Question 90

A small text file used in some HTTP exchanges

Answer 90

cookies

Question 91

robust programming language that acts like a script in Microsoft Internet Explorer browsers to provide a rich programming environment. Some scripts or code elements can be called from the server side, creating the web environment of ASP.NET and PHP

Answer 91

ActiveX

Question 92

pieces of code that can execute within the browser environment

Answer 92

Scripts

Question 93

an attempt to bring the security of shrink-wrapped software to software downloaded from the Internet

Answer 93

Code signing

Question 94

adding a digital signature and a digital certificate to a program file to demonstrate file integrity and authenticity

Answer 94

Code signing

Question 95

scripting language developed by Netscape and designed to be operated within a browser instance

Answer 95

JavaScript

Question 96

enable features such as validation of forms before they are submitted to the server

Answer 96

The primary purpose of JavaScript

Question 97

SPOP3

Answer 97

TCP 995

Question 98

SSMTP

Answer 98

465

Question 99

This plug-in helps the browser maintain an HTTPS connection and warns when it is not present.

Answer 99

HTTPS Everywhere

Question 100

application-level protocol that operates over a wide range of lower-level protocols.
embedded in most operating systems and provides a method of transferring files from a sender to a receiver

Answer 100

FTP

Question 101

system that uses digital signatures and allows Windows users to determine who produced a specific piece of code and whether or not the code has been altered

Answer 101

authenticode

Question 102

characterized by a multi step process in which steps follow each other in a linear, one-way fashion, like water over a waterfall

Answer 102

waterfall

Question 103

characterized by iterative development, where requirements and solutions evolve through an ongoing collaboration between self-organizing cross-functional teams

Answer 103

agile model

Question 104

iterative model designed to enable the construction of increasingly complex versions of a project

Answer 104

evolution model

Question 105

steps in phases that execute in a spiral fashion, repeating at different levels with each revolution of the model

Answer 105

spiral model

Question 106

Threat Modeling Steps

Answer 106

total = 9

Question 107

Define scope. communicate what is in scope and out of scope

Answer 107

step 1

Question 108

enumerate assets. list of all component part of the software being examined

Answer 108

step 2

Question 109

decompose assets. break apart the software into small subsystem

Answer 109

step 3

Question 110

Enumerate threat. list all threats to the software

Answer 110

step 4

Question 111

classify threat

Answer 111

step 5

Question 112

associate threats to assets

Answer 112

step 6

Question 113

score and rank threat. most dangerous to least dangerous

Answer 113

step 7

Question 114

create threat tree. create graphical representation of the required element for an attack vector

Answer 114

step 8

Question 115

score the mitigation effort associated with each attack

Answer 115

step 9

Question 116

Which of the following is not related to a buffer overflow

Answer 116

Canonicalization error

Question 117

Which of the following is not involved with a code injection error

Answer 117

A pointer in the C language

Question 118

Input validation is important to prevent what

Answer 118

Buffer overflow

Question 119

the science of encrypting, or hiding, information—something people have sought to do since they began using language

Answer 119

cryptography

Question 120

the process of analyzing available information in an attempt to return the encrypted message to its original form, required advances in computer technology for complex encryption methods

Answer 120

Cryptanalysis

Question 121

comparing the input plaintext to the output ciphertext to try and determine the key used to encrypt the information

Answer 121

Differential cryptanalysis

Question 122

it uses both plaintext and ciphertext, but it puts the plaintext through a simplified cipher to try and deduce what the key is likely to be in the full version of the cipher.

Answer 122

Linear cryptanalysis

Question 123

defined as a set of every possible key value.

Answer 123

keyspace

Question 124

The Vigenère cipher works as a polyalphabetic substitution cipher

Answer 124

true

Question 125

What makes the one-time pad “perfect” is the size of the key

Answer 125

true

Question 126

step by step recursive computational procedure for solving problem in a finite number of step

Answer 126

algorithm

Question 127

an attacker finds two different messages that hash to the same value

Answer 127

collision attack

Question 128

HASH

Answer 128

SHA
RIPEMD
MD5

Question 129

1 key

Answer 129

symmetric

Question 130

2 keys

Answer 130

asymmetric

Question 131

Vigenere Cipher , Shift/Ceasar cipher

Answer 131

substitution cipher

Question 132

DES, 3DES, AES, CAST, RC, Blowfish, Twofish, IDEA

Answer 132

symmetric

Question 133

3DES, AES

Answer 133

block cipher

Question 134

A5, RC4

Answer 134

steam cipher

Question 135

Steganography

Answer 135

covered

Question 136

good hash function is resistant to what?

Answer 136

collision attack

Question 137

ARP display all

Answer 137

arp -a

Question 138

ARP delete the host

Answer 138

arp -d

Question 139

kali ARP column

Answer 139

arp -en

Question 140

kali ARP no column

Answer 140

arp -an

Question 141

kali gateway router address

Answer 141

netstat -nr

Question 142

show IPv6 in cmd

Answer 142

netsh interface ipv6 show address

Question 143

set IPv6 in cmd

Answer 143

netsh interface ipv6 set address

Question 144

ICMP is also used to convey ___________________________ messages to enable autoconfiguration of IP-enabled device

Answer 144

Neighbor Discovery (ND) and Neighbor Solicitation (NS)

Question 145

display connection and listening port

Answer 145

netstat -nr

Question 146

display TCP

Answer 146

netstat -ny

Question 147

display by protocol

Answer 147

netstat -p proto

Question 148

netstat TPC

Answer 148

-t

Question 149

netstat UDP

Answer 149

-u

Question 150

netstat listening

Answer 150

-l

Question 151

linux mail

Answer 151

helo localhost
mail from:
rcpt to:
data

end with . (perioid)

Question 152

linux read mail

Answer 152

retr 1

Question 153

linux delete mail

Answer 153

dele 1

Question 154

Nmap to perform a ping scan

Answer 154

nmap –sn 192.168.100.*

Question 155

tells Nmap to perform a TCP port scan

Answer 155

nmap –sT 192.168.100.202

Question 156

Nmap to perform a TCP SYN stealth port scan.

Answer 156

nmap –sS 192.168.100.202

Question 157

CVU and CVE

Answer 157

a dictionary of common names (i.e., CVE Identifiers) for publicly known cybersecurity vulnerabilities

Question 158

When penetration testers discover potential vulnerabilities in the network, they may use tools to test whether the vulnerability is actually susceptible to attack. One popular tool is the _______________________, which is used to create code that can exploit vulnerabilities

Answer 158

MFS

Question 159

an open source platform that is purposefully configured to be vulnerable for practicing penetration testing

Answer 159

Mutillidae

Question 160

SQL injection attack

Answer 160

sqlmap

Question 161

inject database

Answer 161

sqlmap -r /tmp/mutil_http –dbs

Question 162

extract database

Answer 162

sqlmap -r /tmp/mutil_http -D owasp10 -tables

Question 163

see credit database

Answer 163

sqlmap -r /tmp/mutil_http -D owasp10 -T credit_cards –dump

Question 164

Most Trojan software has three main components.

Answer 164

Server editor
Server
Client

Question 165

consists of two files—a server and a client. The server file is the program that gets deployed to the target computer. It listens for connections from a client and then executes the commands the client sends. Once it is installed, complete compromise of the data can take place. Keystrokes and screen captures can compromise the confidentiality of the data. An attacker could also create, modify, or delete files

Answer 165

NetBus

Question 166

DarkComet

Answer 166

Remote Administration Tool (RAT)

use to create trojan

Question 167

lab 6 MITM tool

Answer 167

Ettercap

Question 168

An attacking computer can send out replies that manipulate the target computer’s ARP cache

Answer 168

ARP poisoning

Question 169

freely available program that can be used to exploit the weakness of the ARP protocol

Answer 169

Ettercap

Question 170

hardening OS

Answer 170

1. Install the latest service pack.
2. Apply the latest patches.
3. Disable unnecessary services.
4. Remove unnecessary user accounts and rename the admin/root account.
5. Ensure the use of complex passwords.
6. Restrict permissions on files and access to the registry.
7. Enable logging of critical events.
8. Remove unnecessary programs.

Question 171

Lab 8.1 what kind of encryption

Answer 171

GPG

Question 172

free tool that implements public key encryption. It can be used to protect data both in transmission and in storage. It is available for both the Windows and Linux operating systems

Answer 172

GPG