D315

Question 1

OSI Layer: Application(Layer 7)

Answer 1

Application software, network applications. Anything you can see with your eyeballs like web browsers and email.

Question 2

Application protocols

Answer 2

HTTP, FTP, SMIP, IMAP, SMTP

Question 3

OSI Layer: Presentation(Layer 6)

Answer 3

Protocol conversion, data translation. Data encryption/decryption.

Question 4

Presentation Protocols

Answer 4

SSL, ASCII, JPEG, MIDI, MPEG, GIF, MP3, MP4

Question 5

OSI Layer: Session(Layer 5)

Answer 5

Establishes, manages and terminates sessions.

Question 6

Session Protocols

Answer 6

NFS, SQL, PPTP, NetBIOS, PAP, SCP(tunneling)

Question 7

OSI Layer: Network(Layer 4)

Answer 7

Router, Layer 3 switches. Provides routing decisions. NAT, PAT

Question 8

OSI Layer: Transport(Layer 3)

Answer 8

Routing and addressing data packets.

Question 9

Transport Protocols

Answer 9

TCP(Segments so no missing packets), UDP(datagrams for streaming), SCTP Unit: Segments

Question 10

Network Protocols

Answer 10

IP, IPX, IPSec, RIP, IPv4, IPv6, ICMP Unit: Packets

Question 11

OSI Layer: Data Link(Layer 2)

Answer 11

Switches, NIC, Token Ring, Frame Relay, Bridge. Provides for flow of data. Bits pass over physical layer between devices on a LAN (collision domain)

Question 12

Data Link Protocols

Answer 12

MAC addresses, ARP, PPP, HDLC, LLC Communication at MAC-address level - forwards packets on layer 2 devices like a bridge. Unit: Frames

Question 13

OSI Layer: Physical (Layer 1)

Answer 13

802.11, repeater, modem, bluetooth, ethernet, hubs, network cabling, Wi-Fi. Signals and Media. Transmits data over a physical medium.

Question 14

Physical Protocol

Answer 14

DSL, ISDN, physical NICs, twisted pair cable, fiber. Medium means cabling. Unit: Bits

Question 15

Traceroute(Linux)/Tracert(Windows)

Answer 15

Determine the number of hops required for a packet to reach its destination. Always shows IP address of destination

Question 16

Nslookup

Answer 16

Query the Domain Name System (DNS) and retrieve information about domain names and IP addresses.

Question 17

Ping

Answer 17

Tests the connectivity between two devices by sending ICMP echo request packets and measuring the round-trip time, indicating network health and potential issues

Question 18

Netstat -aL

Answer 18

Display network status, including active connections, listening ports, routing table information, and network interface statistics.

Question 19

Whois

Answer 19

Information about a webserver including contact information.

Question 20

ARP (Address Resolution Protocol

Answer 20

Displays the IP to physical (MAC) address mappings for hosts that have been discovered in the ARP cache.

Question 21

Nmap (Network Mapper)

Answer 21

Allows scanning a system in various ways.

Question 22

Fiber Optic

Answer 22

Uses light instead of electricity. Can go longer distances, faster. More durable and secure. Like transatlantic submarine cables.

Question 23

Bus Topology

Answer 23

Coaxial cable, Thinnet. A bus network topology is a single line of devices connected together by one shared network cable.

Question 24

Ring Topology

Answer 24

Each node connects to exactly two other nodes, forming a single continuous pathways for signals through each node. Nodes connected to each other with a backbone cable that loops around and ends at the same point it started.

Question 25

Star Topology

Answer 25

Hub or switch in center. Each device is only connected to the central switch. All device-to-device communication is sent through the switch at the center of the network and then forwarded by the switch to the proper destination.

Question 26

Mesh Topology

Answer 26

Connects every node to every other node in the network. Mesh topologies are often drawn as a web of direct connections between computers or nodes in a network. Mesh networks are typically used where communication within a network must be highly available and redundancy is needed. The nodes within a mesh network can communicate with each other, and these connections can be changed dynamically if one node were to fail.

Question 27

PAN

Answer 27

Personal Area Network- any bluetooth/network device connected to your PC.

Question 28

LAN

Answer 28

Local Area Network- Small network like home if not wireless.

Question 29

WLAN

Answer 29

Wireless LAN- Small network that is wireless like my home.

Question 30

WAN

Answer 30

Wide Area Network - The world wide web

Question 31

VLAN

Answer 31

Virtual LAN use a switch to create virtual segment within a LAN i.e. HR department might be on its own VLAN

Question 32

Type 1 Hypervisor

Answer 32

A physical hypervisor acts like a server and creates virtual computers

Question 33

Type 2 Hypervisor

Answer 33

A hypervisor on the OS that allows for the creation of virtual machines.

Question 34

Cloud service/Cloud Computing

Answer 34

An outsourced an hosted computing environment that delivers IT services via a network. ie. Gmail, OneDrive, etc.

Question 35

Infrastructure as a Service (IaaS)

Answer 35

A cloud service model that offers the physical hardware like servers, and storage.

Question 36

Platform as a Service(PaaS)

Answer 36

Gives the hardware and virtual machines. Useful for testing code and development.

Question 37

Software as a Service(SaaS)

Answer 37

Gives everything including, hardware, software, OS, etc.

Question 38

Public Cloud

Answer 38

Services are paid for and offered over the internet. Hardware is shared by multiple organizations.

Question 39

Private Cloud

Answer 39

The cloud is owned and operated by the entity. They own the server and storage space and allow members of their company to access it.

Question 40

Community Cloud

Answer 40

This cloud infrastructure offers two or more organizations exclusive access to the infrastructure and computing resources. These organizations may share common policies that allow them to operate in a distributed mode. Like police from different counties can log into the state software.

Question 41

Hybrid Cloud

Answer 41

The company owns server space but may also purchase some from a 3rd party.

Question 42

Penetration testers

Answer 42

InfoSec job tasked with attempting to compromise a networks security.

Question 43

Vulnerability Testers

Answer 43

Scan servers and network devices for known vulnerabilities. Typically good guys. Outside consultants may scan the network and point out vulnerabilities and how to fix.

Question 44

CIA Triad

Answer 44

Confidentiality, Integrity, Availability

Question 45

Confidentiality

Answer 45

The access to information should be granted only on a need-to-know basis.

Question 46

Integrity

Answer 46

The information should not be tampered with from source to destination. Any time data is changed. Man in the middle attacks, employee changes their salary in the database.

Question 47

Availability

Answer 47

The service of an organization should be available. Denial of service distributed denial of service attacks. Unable to access the system. User locked out after 3 tries.

Question 48

AAA

Answer 48

Authentication, Authorization and Accounting

Question 49

Authentication

Answer 49

Who and what are you?(First Step) Username/Password issues.

Question 50

Authorization

Answer 50

What are you allowed to do?(Second Step) Access rules. Admin limitations.

Question 51

Accounting

Answer 51

Keeps track of what you do(Final Step) Log files - anything with log files

Question 52

Ad-hoc

Answer 52

All wireless communication is performed in a peer-to-peer fashion and does not require or involve a WAP(Wireless Access Point).

Question 53

Infrastructure

Answer 53

A wireless router or WAP is used to connect wireless devices to the network.

Question 54

Symmetric encryption

Answer 54

Have same key.

Question 55

Asymmetric encryption

Answer 55

One public and one private key.

Question 56

SSL

Answer 56

Secure socket layer uses an asymmetric key pair.

Question 57

TLS

Answer 57

Transport layer security. Successor to SSL.

Question 58

IDS

Answer 58

Intrusion Detection System can detect attacks but cannot stop them.

Question 59

IPS

Answer 59

Intrusion Prevention System. Can stop attacks.

Question 60

Packet Shaper

Answer 60

A device that sits between a campus network and an outside network and is configured with a set of rules that are used to prioritize data traffic for shaping the bandwidth.

Question 61

3DES encryption

Answer 61

A symmetric-key block cipher, which applies DES cipher algorithm three times to each data block.

Question 62

VLAN hopping

Answer 62

Layer 2(Data Link) A method of attacking networked resources on a VLAN. An attacking host on a VLAN gains access to traffic on other VLANS that would normally not be accessible.

Question 63

VLAN Hopping solution

Answer 63

Configure the switch Access Control File.

Question 64

T1 Cable

Answer 64

a communications line that transmits voice and data digitally over copper wires, fiber optics, or wireless connections. T1 lines are often used in commercial buildings.

Question 65

T3 Cable

Answer 65

an Internet connection providing high-speed T3 bandwidth of 45Mbps delivered over fiber optic or coax cables.

Question 66

Coaxial cable

Answer 66

a type of electrical cable that transmits signals like video, data, and voice.

Question 67

UTP Cable

Answer 67

Unshielded Twisted Pair, a type of copper cable used for networking and telephony.

Question 68

Fiber Optic Cable

Answer 68

a type of network cable that transmits data using light pulses through thin strands of glass fibers encased within an insulated covering,

Question 69

Switch

Answer 69

A device that allows other devices on the same network to communicate with each other physically. (MAC address)

Question 70

Repeater

Answer 70

a device that strengthens and rebroadcasts signals to extend the range of a network. Repeaters are also known as signal boosters or range extenders.

Question 71

Hub

Answer 71

Like a switch but broadcasts to all devices on the network.

Question 72

Router

Answer 72

a device that connects networks and devices to the internet, and allows them to communicate with each other wirelessly using IP addresses. Routers can also create local area networks (LANs).

Question 73

Modem

Answer 73

a device that connects your home network to your internet service provider (ISP). It translates data between your home network and the internet, allowing you to access websites, send emails, and more.

Question 74

Smurf DDoS

Answer 74

Rather than one computer sending ICMP packets, multiple computers are replying to the ICMP packet. It spoofs the source address for all ICMP packets

Question 75

Deauth Attack

Answer 75

Deauthentication (abbreviated deauth) is a denial-of-service (DoS) attack where the attacker can force any client (or even every client) off of the network.

Question 76

Phishing/ Spear Phishing

Answer 76

User clicks on a link to a nefarious site which tricks them into entering their name/email address or other secure info. Ie; sending an email about your PayPal account which isn’t from PayPal. Spear Phishing targets a person with extremely specific information – hacking a CEO’s phone with a specific calendar invite for their kid’s soccer practice.

Question 77

Ping of Death

Answer 77

Attacker pings the target & sends a ICMP packet over the max of 65,535 bytes and causes the victim’s system to crash or stop functioning. Causes buffer overflow and crashes.

Question 78

Zero Day

Answer 78

Exploits a vulnerability in the OS software—requires a patch to be remedied. Zero day refers to the fact that the exploit was released before security vendors can issue protection against them. The public has no way to fix until a patch is released.

Question 79

Virus

Answer 79

Attaches itself to a file or host. (Many types!). Anti-virus software to mitigate.

Question 80

Worms

Answer 80

Do not attach to a host file, they are self-contained programs. Don’t download attachments. Anti-virus software.

Question 81

Trojans

Answer 81

Hides in a useful program. Use firewall software to mitigate.

Question 82

Rootkits

Answer 82

Malware hidden in a host’s file system, quite hard to detect. Avoid opening suspicious emails & don’t download cracked software. Anti-malware w/rootkit detection. Keep OS updated.

Question 83

Ransomware

Answer 83

Blocks victim’s data—threatens to publish it or delete it unless a ransom is paid. Scan all emails for known malware strains, and keep firewalls and endpoint protections up to date with the latest known malware signatures.

Question 84

Firewall

Answer 84

Scans packets on the network using a set of rules and blocks unauthorized packets. Can be hardware or software.

Question 85

Packet filtering Firewall

Answer 85

FIlters using a predefined set of rules.

Question 86

Stateful inspection Firewall

Answer 86

Tracks active network connections.

Question 87

Stateless Firewall

Answer 87

Does not keep track of active connections.

Question 88

Proxy Server

Answer 88

Firewall at the application layer.

Question 89

MAN

Answer 89

Metro Area Network a computer network that connects devices within a large geographic area. MANs are larger than local area networks (LANs) but smaller than wide area networks (WANs

Question 90

Credential Stuffing

Answer 90

A type of cyberattack in which the attacker collects stolen account credentials

Question 91

Session Hijacking

Answer 91

a cyberattack in which bad actors gain unauthorized access to a user's active website or application session.

Question 92

Man-in-the-middle attack

Answer 92

a hacker secretly positions themselves between two communicating parties, intercepting and potentially altering their data exchange without either party knowing, usually to steal sensitive information like login credentials, credit card numbers, or personal details.

Question 93

Pharming

Answer 93

online fraud that involves the use of malicious code to direct victims to spoofed websites in an attempt to steal their credentials and data.

Question 94

Role-Based Access Control

Answer 94

a security model where user access to systems, applications, and data is determined by their assigned role within an organization

Question 95

Wi-Fi Hardening

Answer 95

changing your password, encrypting your network, and using a firewall. You can also disable unused features and turn off SSID broadcasting.

Question 96

Context Based Access Control

Answer 96

a security model that dynamically adjusts access permissions to resources based on real-time contextual factors like user location, device status, time of access, and network conditions,

Question 97

WPA2

Answer 97

a security protocol that protects wireless networks by encrypting data

Question 98

DoS

Answer 98

a cybercrime that attempts to make a network or machine unavailable to its intended users. Prevention: Monitor traffic patterns.

Question 99

Least Privilege

Answer 99

a security practice that limits user access to only what's necessary for their job.

Question 100

IfConfig(linux)

Answer 100

Display and configure network interface parameters, including IP addresses, subnet masks, and MAC addresses

Question 101

IpConfig(windows)

Answer 101

Displays and manages TCP/IP network configuration information, including IP addresses, subnet masks, and default gateways, for each network interface