1.0 Security Concepts (Ch 1-4)

Question 1

The deep web is characterized by…

Answer 1

Not being indexed by search engines

Question 2

The dark web is characterized by…

Answer 2

using specific software configs to access it

Question 3

What is searchsploit?

Answer 3

A command-line tool that enables you to download the Exploit Database from Offensive Security

Question 4

The likelihood or probability of the occurrence or realization of a threat is…

Answer 4

risk

Question 5

The three basic elements of risk are:

Answer 5

assets, threats, and vulnerabilities

Question 6

RMF stands for

Answer 6

Risk Management Framework

Question 7

Knowledge about existing or emerging threats is…

Answer 7

threat intelligence

Question 8

The five-step threat intelligence process:

Answer 8

Planning & Direction
Collection
Processing
Analysis and Production
Dissemination

Question 9

What are STIX, TAXII, CybOX, OpenIOC, and OpenC2?

Answer 9

Means of disseminating threat information

Question 10

What is a TIP?

Answer 10

Threat Intelligence Platform, a way to aggregate intelligence info from multiple sources

Question 11

SQL, HTML, and command are three types of…

Answer 11

injection vulnerabilities

Question 12

What might a SQL injection attack do?

Answer 12

View, insert, modify, or delete database records

Question 13

In-band, out-of-band, or blind/inferential are types of…

Answer 13

SQL injection attacks

Question 14

In a command injection attack, commands will be executed with what privilege level?

Answer 14

The privilege level of the compromised application

Question 15

What happens in an online brute-force attack?

Answer 15

Attacker tries to log in as user by guessing their password

Question 16

What happens in an offline brute-force attack?

Answer 16

Attacker tries to gain access to encrypted or hashed passwords

Question 17

Predicting tokens, session sniffing, MITM, and MITB are four techniques by which an attacker can execute a…

Answer 17

session hijacking

Question 18

XSS stands for

Answer 18

Cross-Site Scripting

Question 19

Back-end parameters visible in URLs are what kind of vulnerabilities?

Answer 19

Insecure Direct Object Reference Vulnerabilities

Question 20

Three categories of XSS:

Answer 20

Reflected (nonpersistent)
Stored (persistent)
DOM-based

Question 21

Getting a user to click on a malicious link is what type of XSS attack?

Answer 21

Reflective (non-persistent)

Question 22

If a user requests information that’s stored on a vulnerable or malicious server, what type of XSS attack is this?

Answer 22

Stored (persistent)

Question 23

What do you call a language-independent, cross-platform API that treats HTML/XHTML/XML documents as a tree structure?

Answer 23

DOM (Document Object Model)

Question 24

What is a CSRF (or XSRF) attack?

Answer 24

Cross-Site Request Forgery - when unauthorized commands are sent to an application from a trusted user.

aka one-click attacks or session riding

Question 25

An application stores user input, embeds the input in a DOM response, a client-side script processes the input, a DOM-based vulnerability is triggered, and the script writes controllable data in the cookie. What sort of attack is this?

Answer 25

A Cookie Manipulation Attack

Question 26

What is it called when a system or application tries to perform two sequential operations at the same time?

Answer 26

A race condition

Question 27

SOAP, REST, and GraphQL are three technologies for creating...

Answer 27

an API

Question 28

Swagger, WSDL, and WADL are types of...

Answer 28

API documentation

Question 29

ASCII armoring can protect against...

Answer 29

Return-to-LibC attacks

Question 30

What organization maintains a "top 10 common vulnerabilities" list?

Answer 30

OWASP (Open Web Application Security Project)

Question 31

What are Qualys, Nexpose, and Nessus?

Answer 31

Vulnerability scanners

Question 32

What are BlackDuck, FlexNet Code Insight, SourceClear, and WhiteSource?

Answer 32

Software composition analysis tools

Question 33

What does a Webtype ACL do?

Answer 33

Manages traffic coming through an SSL VPN

Question 34

What does Cisco Application-Centric Infrastructure (ACI) do?

Answer 34

It's a firewall solution for virtual machines

Question 35

What does the Cisco Application Policy Infrastructure Controller (APIC) do?

Answer 35

Deploys policies to ACI instances

Question 36

Cisco's own team of security researchers is called...

Answer 36

Talos

Question 37

Cisco AMP comes in three flavors:

Answer 37

Endpoints Networks Content Security Appliances

Question 38

These devices: Web Security Appliance (WSA) Security Management Appliance (SMA) Cloud Web Security (CWS) ...all do what?

Answer 38

Protect against malware

Question 39

What is the difference between explicit and transparent proxies?

Answer 39

Whether or not the client/end-user is aware they're going through a proxy

Question 40

What is the WCCP protocol?

Answer 40

Web Cache Communication Protocol; a means by which a Cisco router registers with a WSA appliance.

Question 41

SPF, SIDF, and DKIM are all methods of...

Answer 41

email authentication

Question 42

What is the Cisco product that centralizes the management and reporting of multiple ESAs and WSAs?

Answer 42

SMA (Security Management Appliance)

Question 43

SGTs are...

Answer 43

Security Group Tags

Question 44

SGACLs are...

Answer 44

Security Group Access Control Lists

Question 45

What is the Cisco NAC Web Agent?

Answer 45

A temporary agent installed on end-user machines at login

Question 46

What is the Cisco NAC Agent?

Answer 46

A permanent agent installed on a Windows or Mac system

Question 47

What is "Glovebox"?

Answer 47

A feature of Cisco AMP Threat Grid which allows you to interact with malware in real time

Question 48

What Cisco acquisition offers both free and premium services?

Answer 48

OpenDNS

Question 49

Cisco Umbrella and Investigate are two premium services offered by what global network service?

Answer 49

OpenDNS

Question 50

What is NetFlow?

Answer 50

NetFlow is a Cisco-proprietary network protocol used for collecting and monitoring IP network traffic flows

Question 51

What SaaS product monitors AWS VPC Flow Logs, GCP Flow Logs, and Azure NSG flow logs?

Answer 51

Stealthwatch

Question 52

DLP stands for

Answer 52

Data Loss Prevention

Question 53

A Cisco service which protects data in cloud environments is

Answer 53

CloudLock

Question 54

What is the IETF's version of the Cisco-proprietary NetFlow?

Answer 54

IPFIX (IP Flow Information Export)

Question 55

What are the elements of a 5-tuple?

Answer 55

Source/dest IP, source/dest ports, and IP protocol

Question 56

What is ISO 27001?

Answer 56

The international standard for implementing an information security management system (ISMS)

Question 57

DFIR stands for...

Answer 57

Digital Forensics and Incident Response

Question 58

A Type 1 error in a biometric authentication system is what?

Answer 58

False Rejection Rate (FRR) - the system rejected a valid user who should have been authenticated

Question 59

A Type 2 error in a biometric authentication system is what?

Answer 59

False Acceptance Rate (FAR) - the system authenticates a user who should have been rejected

Question 60

What is the crossover error rate (CER)?

Answer 60

The point where the FRR and FAR are equal.

Question 61

The first step in the AAA process is...

Answer 61

Identification

Question 62

Government/military asset classification levels:

Answer 62

Top Secret Secret Confidential Unclassified

Question 63

Commercial sector classification levels:

Answer 63

Confidential/Proprietary Private Sensitive Public

Question 64

What does a data custodian do?

Answer 64

Performs day-to-day tasks on behalf of a data owner, ensuring data is available and secure

Question 65

Three access control types:

Answer 65

Administrative Physical Technical

Question 66

In a MAC model, access authorization is provided by ____

Answer 66

the operating system itself

Question 67

An access control list is ____ -centric while a capability table is ____ -centric.

Answer 67

object; subject (user)

Question 68

Diameter is an alternative to...

Answer 68

RADIUS/TACACS

Question 69

Trusted domains, SGTs, and MACSec are all key components of...

Answer 69

Cisco TrustSec

Question 70

MAC security model labels include what two components?

Answer 70

Classification and Category

Question 71

Secure identities need to be three things:

Answer 71

Unique Nondescriptive Securely issued

Question 72

Three techniques of data sanitization before disposal:

Answer 72

Clearing Purging Destroying

Question 73

What is Shodan?

Answer 73

A database of prescanned devices connected to the internet

Question 74

RCE stands for

Answer 74

Remote Code Execution

Question 75

A popular method of data exfiltration attacks is...

Answer 75

DNS tunneling