INFO310FINAL Flashcards

Question

Scytale Encryption

Answer 1

message wrapped around a rod of a certain size then can be read.

Answer 2

A method of encryption by which the positions held by units of plaintext [...] are shifted according to a regular system, so that the ciphertext constitutes a permutation of the plaintext.

Answer 3

The study of the frequency of letters or groups of letters in a ciphertext. The method is used as an aid to breaking classical ciphers.

Answer 4

s the art or better yet, science, of skillfully maneuvering human beings to take action in some aspect of their lives.

Answer 5

The practice of sending emails appearing to be from reputable sources with the goal of influencing or gaining personal information.

Answer 6

The practice of eliciting information or attempting to influence action via the telephone, may include such tools as phone spoofing.

Answer 7

The practice of pretexting as another person with the goal of obtaining information or access to a person, company, or computer system

Answer 8

· Ensures Authentication · Ensures Non-Repudiation · Ensures Confidentiality · Ensures Integrity

Answer 9

Uses a single key for both encryption and decryption

Answer 10

Uses one key for encryption and another for decryption

Answer 11

Uses a mathematical transformation to create a digital fingerprint or message digest

Answer 12

Physical, Link, Network, Transport, and Application

Answer 13

Wire, open air, optic fibers

Answer 14

Ethernet, Wifi, 4G

Answer 15

Internet protocol, inter control ICMP (nter Control Messaging Protocol)

Answer 16

Transmission Control Protocol (TCP) User Datagram Protocol (UDP)

Answer 17

Email > Simple Mail Transfer Protocol (SMTP) - Websites>HyperText Transfer Protocol (HTTP) -File Sharing>File Transfer Protocol (FTP)>Server Message Block (smb)

Answer 18

public domain on the internet. Created by Internet Service Providers (ISP) to connect to other ISPs around the world. Creates the internet.

Answer 19

private to a Local Area Network (LAN). Private IPs are assigned in a LAN by the Dynamic Host Configuration Protocol (DHCP).

Answer 20

it is a unique identifier. An IP address has two components: the network address and the host address. A subnet mask then sep- arates the IP address into network and host addresses.

Answer 21

the process of verifying that an individual, entity or website is who it claims to be. Authentication in the context of web applications is commonly performed by submitting a username or ID and one or more items of private information that only a given user should know

Answer 22

An attestation of identity, qualification, competence, or authority issued to an individual by a third party

Answer 23

sequence of network HTTP request and response transactions associated to the same user. [...] sessions provide the ability to establish variables - such as access rights and localization settings - which will apply to each and every interaction a user has with the web application for the duration of the session.

Answer 24

is almost exclusively in Javascript (JS) runs with an interpreter. Makes web pages come alive. Credential information is stored and sent from the client

Answer 25

Server side services listen for a request and then respond to that request part of the N-tier application design

Answer 26

Presentation, logic, data

Answer 27

Translates data in to something the user can understand

Answer 28

Coordinates the application, processes commands makes logical decisions and evaluations and performs calculations. Provides communication between the presentation and data tier

Answer 29

Information is stored and retrieved from a database, datastore or filesystem. Provides information back to the logic tier

Answer 30

does nothing except provide a pathway for the electrical signals to travel along

Answer 31

are the connectivity points of an Ethernet network that forward data only to the port that connects to the destination device. It does this by learning the MAC address of the devices attached to it, and then by matching the destination MAC address in the data it receives.

Answer 32

ill normally create, add, or divide on the Network Layer as they are normally IP-based devices.Receives a packet of data, it reads the header of the packet to define the destination address

Answer 33

use the wireless infrastructure network mode to provide a connection point between WLANs and a wired Ethernet LAN.

Answer 34

Encrypted Connection over the internet from a device to a network

Answer 35

A networking device, either hardware or software based, that controls access to your organization's network.

Answer 36

Use network operating systems such as Linux/Unix, Windows Servers and Mac OS Servers

Answer 37

Dedicated network device Many routers and WAPs have firewall functionality built in

Answer 38

a 32-bit number that masks an IP address, and divides the IP address into network address and host address. network bits to all "1"s and setting host bits to all "0"s

Answer 39

is a set of Internet protocol (IP) standards that is used to create unique identifiers for networks and individual devices.

Answer 40

A dictionary of CVE attempting to standardize across the industry

Answer 41

Maintain accurate inventory of assets Define and set stan- dards>Maintain awareness and detect new vulnerabilities>Reme- diate or mitigate identified vulnerabilities >Continuously monitor IT environment

Answer 42

Apply Patches -Update configurations -Deactivate unnecessary services and channels

Answer 43

Compensating Network Controls - Procedural or Physical Controls

Answer 44

tend to lack motivation and rely on script created by more ad- vanced hackers. They utilize easy to use software to do things such as port scanning. Blue hats are "vindictive script kiddies".

Answer 45

newbie hackers. Unlike script kiddies, green hat hackers have the drive to become a more advanced hacker

Answer 46

malicious hacker who hacks for personal gain, typically financial

Answer 47

Use their skills in order to help individuals, businesses and gov- ernment.

Answer 48

: shifts between ethical and non-ethical hacking practices

Answer 49

Digital vigilantes working to right a perceived wrong in the world

Answer 50

government employees who attempt to acquire classified informa- tion about other governments

Answer 51

: a disgruntled employee or corporate spy

Answer 52

1) Provide training 2)Define security requirements 3)Define met- rics and compliance reporting 4) Perform threat modeling 5) Establish design requirementsà6) Define and use cryptography standards 7)Manage the security risk of using 3rd party compo- nentsà8) Use approved tools 9) Perform SAST 10) Perform DAST 11)Perform penetration testing 12) Establish a standard incident response process

Answer 53

Having read permissions grants the right to read the contents of the file and read the permissions of a directory.

Answer 54

Implies the ability to change the contents of a file. Or create new files in a directory

Answer 55

the right to execute the files if they are programs. Regarding directories, it allows you to enter any directories and access files

Answer 56

exploiting a bug or design flaw to gain elevated access to re- sources that are normally protected from a user or application

Answer 57

o a lower level privilege user accesses functions or content revised for higher privilege users or applications

Answer 58

o a normal user accesses functions or content reserved for other normal users

Answer 59

Type of permissions that only allow a person to have the permis- sions necessary to complete their role. For example, an employ will only be given permissions needed to complete their job. Pre- vents lower level employees from accessing additional information that is not relevant to them

Answer 60

a process by which potential threats, such as structural vulnera- bilities or the absence of appropriate safeguards, can be identi- fied, enumerated, and mitigations can be prioritized. This is about finding problems should be done early in the development.

Answer 61

lists all of the assets and considers how attacker could threaten them

Answer 62

Talking about human threat agents can make the threat seem real

Answer 63

models that focus on software being built or system being de- ployed

Answer 64

any place where entities of different privilege interact. Threats tend to cluster around trust boundaries

Answer 65

follows the flows of data often ideal for threat modeling

Answer 66

Fairly complex if starting from scratch likely can be adapted

Answer 67

o represent flows between various participants; each lane edge is labeled to identify a participant; each message is represented by a line between participants.

Answer 68

represents the various states a system could be in and the tran- sitions between those states.

Answer 69

STRIDE: A well accepted approach to thinking of threats when threat modeling: Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, Elevation of privilege.

Answer 70

Pretending to be someone or something other than yourself. This VIOLATES AUTHENTICATION.

Answer 71

Modification of something on a disk in memory or network. This VIOLATES INTEGRITY

Answer 72

claiming that you did not do something VIOLATES NONREPUDI- ATION o Information disclosure - providing information to someone not authorized to see it VIOLATES CONFIDENTIALITY

Answer 73

Absorbing the resources needed to provide a service. VIOLATES AVAILABILITY.

Answer 74

providing information to someone not authorized to see it VIO- LATES CONFIDENTALLITY

Answer 75

Allowing someone to do something they are not authorized to do. Violates AUTHORIZATION

Answer 76

SQL, Network file system NFS, Standard messaging block (SMB), Rsyslog

Answer 77

o Structured Query Language - SQL - A language used in programming and designed to manage data held in databases. PORTS: 3306 (MySQL/MariaDB)>5432 Postgres>1433 MS SQL

Answer 78

Distributed file system protocol runs on port: 2249

Answer 79

o A network protocol for shared access to files printers and serial ports (445 or 139)

Answer 80

A utility for sending logs to remote log systems

Answer 81

Minimize attack surface, Principle of least privilege, Encryption, Tokenization, Federation

Answer 82

Minimize the attack surface area: Implement physical, Network, logistical controls on data.

Answer 83

access to data should be controlled by permissions that are veri- fied before allowing users to access the data.

Answer 84

prevents data visibility in the event of unauthorized access or theft

Answer 85

Substituting sensitive data with non-sensitive equivalent. The to- ken is then used to map back to the data

Answer 86

A type of meta-database file system that is geographically de- centralized and transparently maps multiple databases in to one single one.

Answer 87

o Categories: provide organizational structure o Specialty Areas: subgroups of categories containing cybersecu- rity work.o Work Roles: the most detailed grouping of cybersecurity related work which includes KSAs and tasks for the role.o Knowledge, skills and abilities: The skills required to perform a work role.o Task - specific task assigned to the work role

Answer 88

Open Web Application Security Project

Answer 89

Top ten critical security risks to applications A1: Injection A2: Bro- ken authentication A3: Sensitive data exposure A4: XML External Entities A5: Broken access control A6: Security misconfiguration A7: Cross Site Scripting (XSS) A8: Insecure deserialization A9: Vulnerable components A10: Insufficient logging and monitoring.

Answer 90

Injection of a string in to a query in order to modify a response: attacker sends hostile data in to an interpreter How does it work: There are flaws in the code that when a specific string is injected do something different than they were meant to do.

Answer 91

requires keeping data separate from commands and queries. Use a vetted library or framework that does not allow this weakness to occur or provides constructs that make this weakness easier to avoid."o Never Insert Untrusted Data Except in Allowed Locations o HTML Escape Before Inserting Untrusted Data into HTML Ele- ment Contento Use a trusted library"

Answer 92

A type of application attack where the attacker takes advantage of scripting and input validation vulnerabilities in an interactive website to attack legitimate users.

Answer 93

The application or API includes invalidated or un-escaped user input as HTML output.

Answer 94

The application or API stores unsanitized user input that can be viewed at a later date.

Answer 95

JavaScript frameworks, single-page applications, and APIs that dynamically include attacker-controllable data to a page are vul- nerable to DOM XSS

Answer 96

Escaping untrusted HTTP request data based on the context in the HTML output, Using frameworks that automatically escape XSS by design, such as the latest Ruby on Rails and React JS.

Answer 97

the analysis of computer software that is performed WITHOUT executing programs.

Answer 98

the analysis of computer programs DURING their execution. DAST does not require the source code and therefore detects vulnera- bilities by performing attacks itself.

Answer 99

operated solely for a single organization

Answer 100

services are rendered over a network that is open for public use

Answer 101

a composition of public cloud and private environment

Answer 102

refers to online services that provide high-level APIs used to deref- erence various low-level details of underlying network infrastruc- ture like physical computing resources,location, data partitioning, scaling, security, backup etc.

Answer 103

consumer does not manage or control the underlying cloud infra- structure. This includes the network, servers, operating systems or storage. The user does control the deployed applications and possible the configuration settings for the application hosting en- vironment.

Answer 104

the applications are accessible via a thin client interface such as a web browser or program interface. The consumer does not manage or control the underlying cloud infrastructure, including network, servers, operating systems, storage and even individual application capabilities.

Answer 105

Primarily contain computer security-related information

Answer 106

contains system events and audit records

Answer 107

contains application level events or audit information

Answer 108

typically hidden within another seemingly innocuous program. It can create copies of itself and insert them into other programs and files to perform a harmful action. Uncommon today and comprises less than 10% of all malware

Answer 109

distinctive trait is that it is self-replicating and can spread without user action. Viruses require the user to interact with the corrupt- ed/malicious file

Answer 110

Masquerades as a legitimate program but contains malicious code. A trojan requires the user to execute the corrupted/malicious file. Typically spread via social engineering

Answer 111

most ransomware programs are trojans, which means they must be spread through social engineering of some sort. Once the user executes the corrupted/malicious file, it looks for and encrypts the users' files. The hacker then holds the files as hostage in exchange for a ransom. Can be prevented by creating a good backup. According to studies, about 25% of victims choose to pay the ransom while 30% do not get their files unlocked

Answer 112

if you get infected with a Rootkit, you're basically ****ed. Rootkits allow the hacker to have "root" privilege and create/edit/delete files as they please. Rootkits can conceal themselves from anti-mal- ware systems and are very difficult to detect. This is because "root" privilege is greater than that of the victim/user. Rootkits are extraordinarily hard to create and only the most advanced attacks utilize them. Tech companies are very proactive about patching vulnerabilities that are susceptible to a Rootkit.

Answer 113

a method of bypassing normal authentication procedures, typically over a connection to a network such as the internet. Backdoor allow the hacker to spy, invisibly, on the victims activities. May be installed by Trojan horses, worms, implants or "other methods".

Answer 114

attempts to expose the victim to unwanted and potentially ma- licious advertising. Common adware programs may re-direct a user's browser searches to a copycat page that contains promo- tions for other products

Answer 115

a logical collection of internet-connected devices whose security has been compromised and control ceded to a third party. Each compromised device is known as "bot". Botnets are rented out by cyber criminals as commodities for a variety of purposes (such as a DDoS attack)

Answer 116

many viruses have a "signature", or a recognizable series of ones and zeros. Signature based anti-virus programs work by spotting these signatures and stopping the files before they can cause damage

Answer 117

monitors system processes to determine if a program is attempt- ing to engage in malicious behavior against the operating system

Answer 118

the most common first step, works by moving the malicious file into a protected area on the hard drive. This area is separate from any other file that could activate the malicious software

Answer 119

aims to stop the initialization and spread of the virus during the start up process

Answer 120

Operating system "restore points" provides administrators with a known working point to which they can restore the settings back to.

INFO310FINAL Flashcards

(144 cards)