Chapter 8

Question 1

Threat

Answer 1

Any circumstance or event that has the potential to compromise confidentiality, integrity, or availability

Compare with risk and vulnerability

Question 2

Malicious Human threats

Answer 2

Filler

Question 3

Accidental Human Threats

Answer 3

Filler

Question 4

Environmental Threats

Answer 4

Filler

Question 5

Threat Assessment

Answer 5

An evaluation of potential threats

Some common types of threat assessments are environmental, man made, internal, and external

Question 6

Environmental

Answer 6

Filler

Question 7

Manmade

Answer 7

Filler

Question 8

Internal

Answer 8

Filler

Question 9

External

Answer 9

Filler

Question 10

Vulnerability

Answer 10

A weakness

It can be a weakness in the hardware, the software, the configuration, or even the users operating the system

Compare with Risk and Threat

Question 11

Risk Management

Answer 11

The practice of identifying, monitoring, and limiting risks to a manageable level

It includes risk response techniques, qualitative risk assessments, and quantitative risk assessments

Question 12

Risk Response Techniques

Answer 12

Methods used to manage risks

Common risk response techniques are accept, transfer, avoid, and mitigate

Question 13

Risk Assessment

Answer 13

A process used to identify and prioritize risks

It includes quantitative risk assessments and qualitative risk assessments

Question 14

Asset Value

Answer 14

An element of a risk assessment

It identifies the value of an asset and can include any product, system, resource, or process

The value can be a specific monetary value or a subjective value

Question 15

Quantitative Risk Assessment

Answer 15

A risk assessment that uses specific monetary amounts to identify cost and asset value

It then uses the SLE and ARO to calculate the ALE

Question 16

SLE

Answer 16

Single loss expectancy

The monetary value of any single loss

It is used to measure risk with ALE and ARO in a quantitative risk assessment

The calculation is SLE x ARO = ALE

Question 17

ARO

Answer 17

Annual (or annulaized) rate of occurance

The number of times a loss is expected to occur in a year

It is used to measure risk with ALE and SLE in a quantitative risk assessment

Question 18

ALE

Answer 18

Annual (or annualized) loss expectancy

The expected loss for a year

It is used to measure risk with ARO and SLE in a quantitative risk assessment

The calculation is SLE x ARO = ALE

Question 19

Qualitative Risk Assessment

Answer 19

A risk assessment that uses judgement to categorize risks

It is based on impact and likelihood of occurrence

Question 20

Likelihood of Occurence

Answer 20

The probability that something will occur

It is used with impact in a qualitative risk assessment

Compare with Impact

Question 21

Impact

Answer 21

The magnitude of harm related to a risk

It is the negative result of an event, such as the loss of confidentiality, integrity, or availability of a system or data

Compare with likelihood of occurrence

Question 22

Web Server

Answer 22

Filler

Question 23

Library Computer

Answer 23

Filler

Question 24

Risk Register

Answer 24

A document listing information about risks

It typically includes risk scores along with recommended security controls to reduce the risk scores

Question 25

Supply Chain Assessment

Answer 25

An evaluation of the supply chain needed to produce and sell a product It includes raw materials and all the processes required to create and distribute a finished product

Question 26

Password Cracker

Answer 26

A tool used to discover passwords

Question 27

Network Scanner

Answer 27

A tool used to discover devices on a network, including their IP addresses, their operating system, along with services and protocols running on the devices

Question 28

Ping Scan

Answer 28

Filler

Question 29

ARP Ping Scan

Answer 29

Filler

Question 30

SYN Stealth Scan

Answer 30

Filler

Question 31

Port Scan

Answer 31

Filler

Question 32

Service Scan

Answer 32

Filler

Question 33

OS Detection

Answer 33

Filler

Question 34

Network Mapping

Answer 34

A process used to discover devices on a network, including how they are connected

Question 35

Wireless Scanners

Answer 35

A network scanner that scans wireless frequency bands Scanners can help discover rogue APs and crack passwords used by wireless APs

Question 36

SSIDs

Answer 36

Service set identifier is the name of a wireless network SSIDs can be set to broadcast so users can easily see it Disabling SSID broadcast hides it from casual users

Question 37

MAC Addresses

Answer 37

Filler

Question 38

Signal Strength

Answer 38

Filler

Question 39

Channels

Answer 39

Filler

Question 40

Channel Widths

Answer 40

Filler

Question 41

Security

Answer 41

Filler

Question 42

Vulnerability Scanner

Answer 42

A tool used to detect vulnerabilities A scan typically identifies vulnerabilities, misconfigurations, and a lack of security controls It passively tests security controls

Question 43

Open Ports

Answer 43

Filler

Question 44

Weak Passwords

Answer 44

Filler

Question 45

Default Accounts and Passwords

Answer 45

Filler

Question 46

Sensitive Data

Answer 46

Filler

Question 47

Security and Configuration Errors

Answer 47

Filler

Question 48

Configuration Compliance Scanner

Answer 48

A type of vulnerability scanner that verifies systems are configures correctly It will often use a file that identifies the proper configuration for systems

Question 49

Penetration Testing

Answer 49

A method of testing targeted systems to determine if vulnerabilities can be exploited Penetration tests are intrusive Compare with Vulnerability Scanner

Question 50

Passive Reconnaissance

Answer 50

A penetration testing method used to collect information It typically uses open-source intelligence Compare with Active Reconnaissance

Question 51

Active Reconnaissance

Answer 51

A penetration testing method used to collect information It sends data to system and analyzes responses to gain information on the target Compare with passive reconnaissance

Question 52

Pivot

Answer 52

One of the steps in penetration testing After escalating privileges, the tester uses additional tools to gain additional information on the exploited computer or on the network

Question 53

Black Box Testing

Answer 53

A type of penetration test Testers have zero knowledge of the environment prior to starting the test Compare with gray box test and white box test

Question 54

White Box Testing

Answer 54

A type of penetration test Testers have full knowledge of the environment prior to starting the test Compare with black box test and gray box test

Question 55

Gray Box Testing

Answer 55

A type of penetration test Testers have some knowledge of the environment prior to starting the test Compare with black box test and white box test

Question 56

Exploitation Frameworks

Answer 56

Tools used to store information about security vulnerabilities They are often used by penetration testers (and attackers) to detect and exploit software

Question 57

Protocol Analyzer

Answer 57

A tool used to capture network traffic Both professionals and attackers use protocol analyzers to examine packets A protocol analyzer can be used to view data sent in clear text

Question 58

Nmap

Answer 58

A command-line tool used to scan networks It is a type of network scanner

Question 59

Netcat

Answer 59

A command-line tool used to connect to remote systems

Question 60

Transferring Files

Answer 60

Filler

Question 61

Port scanner

Answer 61

Filler

Question 62

Application

Answer 62

Filler

Question 63

System

Answer 63

Filler

Question 64

Antivirus Logs

Answer 64

Filler

Question 65

Application Logs

Answer 65

Filler

Question 66

Performance Logs

Answer 66

Filler

Question 67

SIEM

Answer 67

Security information and event management A security system that attempts to look at security events throughout the organization

Question 68

Aggregation

Answer 68

Filler

Question 69

Correlation Engine

Answer 69

Filler

Question 70

Automated Alerting

Answer 70

Filler

Question 71

Automated Triggers

Answer 71

Filler

Question 72

Time Synchronization

Answer 72

Filler

Question 73

Event Deduplication

Answer 73

Filler

Question 74

Logs/WORM

Answer 74

** Worm is a Self-replicating malware that travels through a network Worms do not need user interaction to execute

Question 75

Permission Auditing Review

Answer 75

An audit that analyzes user privileges It identifies the privileges (rights and permissions) granted to users, and compares them against what the users need