Cybersecurity

XSS (Cross Site Scripting)

What type of web attack relies on the Same Origin Policy to make sure the uploaded malicious content is run with the same permissions as the content from the trusted website?

Buffer Overflow

What type of web attack will provide too much input into a form so that the data received by the program is dumped over into the memory or CPU without any security restrictions?

Shortening

What is canonicalization used for?

Website, Browser, ISP

What are the 3 components to focus on when securing online communications?

C14N

\____________________________ is used by websites to deal with the many different ways the URL or user input can be encoded.

SSL/TLS

What two security protocols can be bypassed by using a Backdoor or Trojan to install a keylogger?

Max version and Cipher Option

In the SSL/TLS handshake, the browser and website must agree on what two things

FREAK, POODLE, DROWN, Logjam

Name 4 encryption downgrade attacks

Fuzzing

automating the process of injecting unexpected input into an application with the goal of uncovering exploitable vulnerabilities

buffer overflow attack

What attack will be possible if the programmer sets a variable to 12 characters but does not validate that the user input stays within this maximum?

Stateful

A \____________________ website can deliver dynamic content and keep track of user preferences.

Non-persistent Cookie

When a user is visiting a website without creating a profile, what type of cookie is used to facilitate interaction with the browser and will be stored only until the browser is closed?

Directory Traversal

What type of attack is being used with the following input? /users/cwe/profiles/../../../bin/john.conf

SQL Injection

Identify what type of attack is being used with the following input: ' or '1'\='1' and firstname

Sandboxing

a security mechanism for separating running programs so that they cannot interfere with any other processes

Cookies

\_______________________ can be used to track a user's browsing habits on the Internet.

ActiveX

Which Web browser plugin uses Authenticode for security?

SSL

If a firewall has enabled TCP transport layer protocol and port 443, what protocol is now supported on the firewall?

Policy

high-level statement of principles about Internet usage by employees

Procedure

Step by step instructions for completing the things within the policy

Section 419 Email

What is another name for a Nigerian Prince letter which is the most common type of phishing?

Reverse Social Engineering

\_______________________________ is when an attacker tries to convince the target to initiate contact and then gets the target to give up confidential information.

Dumpster Diving

\________________________ is a method of finding information by going through the trash of the target to find information that could be useful to the attacker.

Shoulder Surfing

A person parks his car by an ATM, sets up a small camera discreetly pointed at ATM keypad, and then pretends to be going through bank papers in his car. This would be an example of:\____________________

VPN (Virtual Private Network)

Which defensive tool creates a tunnel to move data packets?

DMZ (demilitarized zone)

Which defensive tool is a neutral network that connects two or more other networks?

VLAN(Virtual Local Area Network)

Which defensive tool will help mitigate against an ARP Poisoning attack?

HoneyPot

Which defensive tool will attract attacks away from other network devices?

Firewall

Which defensive tool will block packets and is similar to a gate guard?

Promiscuous

A protocol analyzer works by setting the NIC to accept and process all packets crossing the network. This NIC setting is called \___________________________ mode.

Stateful Packet Firewall

What kind of firewall will maintain a record of the current state of each connection, blocking packets that are not consistent with the known state?

false positive

A \__________________________ is when an IDS generates an alarm on "normal" traffic that is actually not malicious or suspicious.

Application-proxy

A \________________________ firewall will provide inspection at layer 7 of the OSI model.

SNORT

What is the name of a popular network IDS system?

HIDS (host-based intrusion detection system)

What type of IDS is installed to monitor system files?

Nessus, Nmap, Netcat

Name two brands of vulnerability assessment tools.

Backup

What is the best method to protect the system against Ransomware?

Install Updates

The single most important thing you can do to secure a system is:

Ask you if you want to install something or ask for admin credentials

What is UAC and what does it do?

Benchmarks

Before deciding on hardening procedures for your organization, it is a good idea to use \_____________________ as a reference for best practices.

Internet Settings, Updates, Spyware Protection, Virus Protection, Backup, Firewall, UAC

List the items monitored by the Action Center

Service Pack

What is a bundle of one or more system fixes in a single product called?

Certificate Authority

When creating a certificate in PKI, a trusted 3rd party is used to vouch for the identity of the person or enterprise. What is this 3rd party called?

Public Key

What must a user submit to a trusted CA when applying for a certificate?

To prevent the sender or the receiver from denying that the communication between them has occurred.

What is the general purpose that nonrepudiation performs?

Rhindel

What algorithm does AES use?

Integrity

\____________________________ is the assurance that a message has not been altered in transit.

Symmetric Cryptography

Key distribution is the primary disadvantage of what kind of cryptography?

One Time Pad Encryption

What is the only unbreakable form of encryption?

message integrity and non-repudiation

What two assurances are provided by a digital signature?

Asymmetric Encryption

Speed is the primary disadvantage of what type of encryption?

public key

If Bob wants to send an encrypted email to Alice, what will Bob need in order to encrypt the message so that Alice will be able to decrypt it?

Transitive Access

When an attacker gets control of one computer and uses that access to pivot into an attack on another computer, this is called \__________________.

Polymorphic

What kind of malicious code is designed to change just enough so that it doesn't match any antivirus signature and will not be detected?

Botnet

A network of machines controlled by a malicious user is a \_____________.

To perform sniffing in a switched network

What is a spanning port used for?

ARP cache poisoning

A malicious user has launched an attack to implement a Man-in-the-Middle attack in a switched LAN. What technique is the malicious user MOST likely using?

your domain name server is resolving the domain name to the wrong IP address and thus misdirecting Internet traffic

What effect will a DNS Poisoning attack have?

DDoS

A \_______________________ is a coordinated attack launched from multiple zombie machines in attempt to create a traffic spike and bring down a service.

Solution for Syn Flood

Reduce the waiting time for the final ACK

Solution for Hijacking

Encrypt entire transmission

Solution for MITM

Disable zone transfers

Solution for Smurf Attack

Turn off ICMP protocol

Solution for IP Spoofing

Ingress Filtering

Solution for Unintentional Dos from high traffic

Redundant Servers

Ennumeration

\________________ \= identify specific computers in the network and try to find details such as services, hostnames, usernames and file shares.

ext:

When performing a Google search, which advanced operator can be used instead of filetype?

Host Discovery

The output in the image is the result of which nmap scan?

Vulnerabilities

The MITRE corporation maintains the CVE database which is a resource for looking up \_______________________.

IP addresses + FQDN of all network devices

A DNS zone transfer will provide what info to an attacker?

Xmas Scan

An nmap scan that sets all possible flags is:

MD5, SHA-1, etc

Name two hashing algorithms

user only has to provide her credentials once

What advantage does Single Sign-on have as a method of authentication?

One time password

What type of authentication provides the best protection against an intercepted password?

Birthday Attack

What type of network attack attempts to capture two different messages that use the same hash function to generate the same message digest?

dictionary attack

What type of attack utilizes a database to guess a password for computer or network access?

Biometrics

Which authentication technique measures physical characteristics that can be automatically verified?

Minimum 8 characters, including alphanumerics, mixed case and punctuation.

What is the best criteria to create a strong password?

have, are, know

What are the three "something you" that can be used for authentication?

UDP

Packets that do NOT need reliability will use this "carrier" protocol \____________

default gateway

A host device must be configured with a \_________________ so that it can send packets outside of the Local Area Network.

ARP

What protocol is used when you have an IP address and you need to know its corresponding MAC address?

SYN, SYN/ACK, ACK

What is the correct sequence for the TCP Three Way Handshake?

ICMP

What protocol provides error reporting in TCP/IP and is used by the PING command ?

DNS

What protocol is responsible for resolving a FQDN (Fully Qualified Domain Name) to the IP address?

Port 80

Which port must you close on a firewall to prevent users from browsing the Internet?

255.0.0.0

What is the default subnet mask for a Class A address?

APIPA (Automatic Private IP Addressing)

A computer has an IP address of 169.254.1.37 how was this address assigned?

Hub

When a message comes into a port on a \_____________, it goes out every other port and the message is delivered to every attached device.

8 bits

How many bits are there in a byte?

DHCP

What protocol can be used to automatically assign IP address configuration to host computers?

Class A IP Addresses

0-127

Class B IP Addresses

128-191

Class C IP Addresses

192-223

Only the affected link will stop working.

If one of the links to a computer on a star topology is severed, what will be the result?

OSCP (Online Certificate Status Protocol)

Verify status of a certificate in real time

CRL (Certificate Revocation List)

Verify status of a certificate

Key Escrow

Backup of keypair

SSL (Secure Sockets Layer)

Secure online protocol

M of N Control

Break the key pair up into pieces