CEH Deck 5

Question 1

Active Directory (AD)

Answer 1

The directory service created by Microsoft for use on its networks.

It provides a variety of network services using Lightweight Directory Access Protocol (LDAP), Kerberos-based authentication, and single sign-on for user access to network-based resources.

Question 2

active fingerprinting

Answer 2

Injecting traffic into the network to identify the operating system of a device.

Question 3

ad hoc mode

Answer 3

A mode of operation in a wireless LAN in which clients send data directly to one another without utilizing a wireless access point (WAP), much like a point-to-point wired connection.

Question 4

adware

Answer 4

Software that has advertisements embedded within it. It generally displays ads in the form of pop-ups.
on.

Question 5

black-box testing

Answer 5

In penetration testing, a method of testing the security of a system or subnet without any previous knowledge of the device or network.

It is designed to simulate an attack by an outside intruder (usually from the Internet).

Question 6

block cipher

Answer 6

A symmetric key cryptographic algorithm that transforms a block of information at a time using a cryptographic key.

For a block cipher algorithm, the length of the input block is the same as the length of the output block.

Question 7

Blowfish

Answer 7

A symmetric, block-cipher data-encryption standard that uses a variable-length key that can range from 32 bits to 448 bits.

Question 8

BlueBorne attack

Answer 8

An amalgamation of techniques and attacks against known, already existing Bluetooth vulnerabilities.

Question 9

cloning

Answer 9

A cell phone attack in which the serial number from one cell phone is copied to another in an effort to copy the cell phone.

Question 10

CNAME record

Answer 10

A Canonical Name record within DNS, used to provide an alias for a domain name.

Question 11

cold site

Answer 11

A backup facility with the electrical and physical components of a computer facility, but with no computer equipment in place.

The site is ready to receive the necessary replacement computer equipment in the event the user has to move from his main computing location to an alternate site.

Question 12

daemon

Answer 12

A background process found in Unix, Linux, Solaris, and other Unix-based operating systems.

Question 13

demilitarized zone (DMZ)

Answer 13

A partially protected zone on a network, not exposed to the full fury of the Internet but not fully behind the firewall. This technique is typically used on parts of the network that must remain open to the public (such as a web server) but must also access trusted resources (such as a database). The point is to allow the inside firewall component, guarding the trusted resources, to make certain assumptions about the impossibility of outsiders forging DMZ addresses.

Question 14

denial of service (DoS)

Answer 14

An attack with the goal of preventing authorized users from accessing services and preventing the normal operation of computers and networks.

Question 15

encryption

Answer 15

Conversion of plain text to cipher text through the use of a cryptographic algorithm.

Question 16

end user licensing agreement (EULA)

Answer 16

A software license agreement; a contract between the “licensor” and purchaser establishing the right to use the software.

Question 17

Enterprise Information Security Architecture (EISA)

Answer 17

A collection of requirements and processes that help determine how an organization’s information
systems are built and how they work.

Question 18

File Transfer Protocol (FTP)

Answer 18

An Application layer protocol, using TCP, for transporting files across an Internet connection. FTP transmits in clear text.

Question 19

filter

Answer 19

A set of rules defined to screen network packets based on source address, destination address, or protocol. These rules determine whether the packet will be forwarded or discarded.

Question 20

Finger

Answer 20

An early network application that provides information on users currently logged on to a machine.

Question 21

Hierarchical File System (HFS)

Answer 21

A file system used by macOS.

Question 22

honeynet

Answer 22

A network deployed as a trap to detect, deflect, or deter unauthorized use of information systems.

Question 23

honeypot

Answer 23

A host designed to collect data on suspicious activity.

Question 24

hot site

Answer 24

A fully operational off-site data-processing facility equipped with hardware and system software to be used in the event of a disaster.

Question 25

information technology (IT) infrastructure

Answer 25

The combination of all IT assets, resources, components, and systems.

Question 26

information technology (IT) security architecture and framework

Answer 26

A document describing information security guidelines, policies, procedures, and standards.

Question 27

Information Technology Security Evaluation Criteria (ITSEC)

Answer 27

A structured set of criteria
for evaluating computer security within products and systems produced by European countries; it has been largely replaced by the Common Criteria.