security learning

Question 1

What is a form of spam through IM, PM, DM.

Answer 1

Spimming

Question 2

443-TCP

Answer 2

Hyper Text Transfer Protocol Secure, Transmit web page data to a client over an ssl tls encrypted connection.

Question 3

Collision Resistance

Answer 3

Property of a hash function that is computationally infeasible to find two colliding inputs.

Question 4

161-UDP

Answer 4

Simple Network Management Protocol, remotely monitor network devices.

Question 5

119-TCP

Answer 5

Network News Transfer Protocol Transport articles

Question 6

On path attack, Man in the middle

Answer 6

Intercepts data

Question 7

PKI

Answer 7

Public Key Infastructure, Set of hardware, software, policies, processes, and procedures required to create, manage, distribute, use, store, revoke digital certs and keys.

Question 8

VPC

Answer 8

Victual Private Cloud, Private cloud in a public cloud

Question 9

143-TCP

Answer 9

IMAP, Internet Message Access Protocol, Receive email from mail server with more functions than pop3

Question 10

Deguassing

Answer 10

Expose hard drive to magnetic field which wipes the drive

Question 11

Purging

Answer 11

Removes data and it cannot be reconstructed

Question 12

Clearing

Answer 12

removal of data with assurance that it cannot be reconstructed

Question 13

69-UDP

Answer 13

Trivial FTP, Simplified version of ftp to put a file on a remote host or get a file from host.

Question 14

Nessus

Answer 14

Vulnerability check

Question 15

NDA

Answer 15

Non Disclosure Agreement, Ensure sensitive data will not be disclosed to 3rd parties.

Question 16

ISA

Answer 16

Interconnection Security Agreement, Defines how to secure communication

Question 17

MOU

Answer 17

memorandum of understanding, general terms of agreement

Question 18

MOA

Answer 18

Memorandum of agreement, defines granual contract details

Question 19

Qualitative risk assessment

Answer 19

Organizes risks by severity or threat rating which may differ from one organization to another

Question 20

APT

Answer 20

Advanced persistent threat, undetected for a long time steals data

Question 21

Bluejacking

Answer 21

Sending unsolicited content to someone over Bluetooth

Question 22

Blue Snarfing

Answer 22

Access to device data vie bluetooth

Question 23

Jump Box

Answer 23

System on a network used to access and manage devices in a separate security zone

Question 24

SQL Injection

Answer 24

Code injection that might destroy database. Placement of malicious code in SQL statements.

Question 25

SOAR

Answer 25

Security orchestration automation response, Class of security tools that facilitate incident response threat hunting, security, configuration by orchestrating automated runbooks and deliver data enrichment.

Question 26

URL Phishing

Answer 26

Fake url similar to real thing used to trap people

Question 27

445-TCP

Answer 27

SMB, Server message bank, provide shared access top files and other resources on net work

Question 28

RFID

Answer 28

Radio frequency identification, Access badge tracking

Question 29

ECB

Answer 29

Electronic Code Book, mode of operation with a black cipher that’s mostly used with symmetric key encryption.

Question 30

Public Cloud

Answer 30

Open to use for public

Question 31

IDS

Answer 31

Intrusion Detection system, can only alert and log suspicious activity.

Question 32

IPS

Answer 32

Intrusion prevention system, can also stop malicious activity from being executed.

Question 33

Split DNS

Answer 33

Implementation in which separate dns servers are provided for internal and external networks as security and privacy management.

Question 34

22 TCP/UDP

Answer 34

SSH,SCP,SFTP, Secure shell used to remotely administer network devices and systems. SCP for secure copy. SFTP for Secure ftp.

Question 35

389-TCP/UDP

Answer 35

LDAP, Lightweight directory access protocol. Maintain directories of users and other objects.

Question 36

Rogue Access Point

Answer 36

Unauthorized access point, wireless evil twin malicious copy of AP.

Question 37

110-TCP

Answer 37

POP3, Post office protocol v3. Used to receive email from mail server.

Question 38

SDLC Waterfall model

Answer 38

Project planning, requirements, analysis, design,coding,testing,depolyment.

Question 39

21 TCP

Answer 39

FTP, File transfer protocol, Used to transfer files from host to host.

Question 40

Sandbox

Answer 40

Practice where you run code, observe, analyze, and code in a safe, isolate enviornment.

Question 41

1433-TCP

Answer 41

MS-SAL-S, M<microsoft SQL server used to receive sql queries from clients.

Question 42

Code injection

Answer 42

Exploit technique that runs malicious code with identification number of a legitimate process.

Question 43

PFS

Answer 43

Perfect forward secrecy, encryption style known for producing temp private key exchanges between clients and servers.

Question 44

Logic bomb

Answer 44

Piece of code intentionally inserted into the software system that will set off a malicious function when specified conditions are met.

Question 45

Homomorphic encryption

Answer 45

encryption method that allows computations to be performed on encrypted data without first decrypting with a secret key.

Question 46

static key

Answer 46

Intended for use for a long period of time and is typically intended for use in many instances of a cryptographic key establishment scheme.

Question 47

Containerization

Answer 47

type of virtualization in which all the components of an application are bundled into a single container image and can be run in isolate user space on same OS.

Question 48

Digital signature provides?

Answer 48

authentication, non-repudiation, integrity.

Question 49

ICS/SCADA

Answer 49

ICS are command and control networks designed to support industrial processor. Scada, supervisory control and data acquisition.

Question 50

SDLC Phases

Answer 50

Planning and analysis, software, system design, implementation, testing, integration, deployment, maintenance.

Question 51

Trojans

Answer 51

Malicious software disguised as harmless software.

Question 52

cryptography

Answer 52

Study and practice and solving codes in order to hide true meaning of info.

Question 53

Jumpbox system

Answer 53

System used on a network to access and manages devices in a separate security zone. Controlled access between two security zones.

Question 54

Asymmetric key

Answer 54

encryption that uses two separate yet mathematically related keys to encrypt and decryption.

Question 55

Ephemeral key

Answer 55

short term key pair used with a public key algorithm that is generated when needed.

Question 56

XML injection

Answer 56

attack technique used to manipulate or compromise the logic of an xml service or app.

Question 57

Order of volatility

Answer 57

Sequence or order in which digital evidence is collected.

Question 58

514-UDP

Answer 58

SYSLOG, Conduct computer message logging, especially for routers and firewalls logs.

Question 59

NFC

Answer 59

Near Field Communication, payment methods nfc helps with Bluetooth

Question 60

Pharming

Answer 60

Online scam where a websites traffic is manipulated and confidential info is stolen. traffic redirection, fraudulent website, credential harvesting.

Question 61

Same Site Attribute

Answer 61

Helps mitigate cross site request forgery.

Question 62

Proxy list

Answer 62

Includes ip address of computers hosting open proxy servers

Question 63

UTM

Answer 63

Unified threat management, when ,multiple security features or services are combined into a single device within your network.

Question 64

Two Fish

Answer 64

Symmetric key, size 128 bit, ecc, rsa,DH, asymmetric.

Question 65

Clear

Answer 65

Logical technique to sanitize data in all user addressable storage locations for protection against simple non invasive data recovery techniques.

Question 66

Steganography

Answer 66

Process of hiding one message inside another.

Question 67

860-TCP

Answer 67

ISCSI, Linking data storage facilities over IP.

Question 68

Dropper

Answer 68

Malware designed to install or run other types of malware embedded in payload on infected host.

Question 69

137-139/TCP-UDP

Answer 69

NetBios, used to conduct name querying sending data, other functions over netbios connection.

Question 70

MIME

Answer 70

Extension of SMTP

Question 71

Session Hijacking

Answer 71

Taking over a web user session by surreptitiously obtaining the session id and masquerading as the authorized user.

Question 72

NGFW

Answer 72

Next generation firewall, provides more than standard

Question 73

War Driving

Answer 73

Attackers searching for wireless networks with vulnerabilities while moving around an area in a moving vehicle.

Question 74

Trace route

Answer 74

Provides map of how data on the internet travels from source to destination

Question 75

Buffer overflow

Answer 75

software coding error or vulnerability that can be exploited by hackers to gain unauthorized access to corporate systems.

Question 76

VM Sprawl

Answer 76

A situation in which large number of deployed virtual bmachines lack proper admin controls.

Question 77

Spyware

Answer 77

secret gathering of user data without consent

Question 78

Transitive trust

Answer 78

occurs when X trusts Y, Y trusts Z so X trusts Z

Question 79

88-TCP/UDP

Answer 79

Kerberos, used for network authentication using a system of tickets within a windows domain.

Question 80

Virus

Answer 80

Malicious code that runs on a machine without user knowledge requires user action to spread.

Question 81

Elicitation

Answer 81

casual conversation to obtain information without person feeling interrogated.

Question 82

Hash

Answer 82

One way cryptographic function which take son input and produces a unique message digest.

Question 83

135-TCP/UDP

Answer 83

RPC, remote procedure call is used to locate dcom port request a service from a program on another computer on a network.

Question 84

On path attack

Answer 84

Attacker that sits in the middle between two stations and is able to intercept change information.

Question 85

PGP

Answer 85

Pretty good privacy, encryption program that provides cryptographic privacy and authentication for data communication.

Question 86

GLBA

Answer 86

Gramm-leach-bliley act,effects anything money related

Question 87

Honey pot

Answer 87

network attached system set up as a decay to lure cyber attackers.

Question 88

CASB

Answer 88

Cloud access security broker, on premises or cloud based software that sits between a cloud service consumer and provider

Question 89

Ransomware

Answer 89

restrict access until paid

Question 90

23-TCP/UDP

Answer 90

Telnet, should not be use anymore, unencrypted method to remotely administrator network devices.

Question 91

Downloader

Answer 91

piece of code that connects to the internet to retrieve additional tools after initial infection by dropper

Question 92

Smishing

Answer 92

sending text messages to victims pretending too be legit

Question 93

Buffer overflow

Answer 93

occurs when amount of data in buffer exceeds storage capacity.

Question 94

DNSSEC

Answer 94

strengthens authentication in dns using digital signatures based on public key cryptography.