Vulnerability Management & System Hardening

Question 1

What are the steps of managing vulnerabilities?

Answer 1

Scanning, analysis, prioritization, and mitigation/remediation

Question 2

What is the purpose of scanning in vulnerability management?

Answer 2

Identify vulnerabilities and what is scanned includes ports and services running on those ports

Question 3

What tool is commonly used for scanning?

Answer 3

NMAP

Question 4

What is the Cyber Kill Chain?

Answer 4

A model that outlines the stages of a cyber attack

Question 5

Why is the Cyber Kill Chain useful?

Answer 5

It helps in understanding and preventing cyber attacks

Question 6

What are the goals of hardening?

Answer 6

Shrink attack surface

Question 7

How can hardening be achieved?

Answer 7

Close ports, turn off file sharing, uninstall software not in use

Question 8

What is patch management?

Answer 8

Automation for updates, setting when to update and waiting to verify that it works

Question 9

What is the function of firewalls?

Answer 9

Manage incoming and outgoing traffic

Question 10

At what level does a stateful firewall operate?

Answer 10

Level 4

Question 11

What role do anti-virus/anti-malware programs serve?

Answer 11

Close off your machine and sometimes are impossible to remove

Question 12

What is sandboxing?

Answer 12

Downloading content into virtual machines

Question 13

What are examples of encryption technologies?

Answer 13

• BitLocker
• FileVault

Question 14

What is a key practice regarding passwords in hardening?

Answer 14

Remove default passwords and built-in accounts (routers)

Question 15

What are two aspects of mobile hardening?

Answer 15

• App permissions
• Limit app installation