redes

Question 1

IPv4

Answer 1

internet protocol version 4

Question 2

0.0.0.0 => gateway

Answer 2

puerta de enlace predeterminada” o “gateway de último recurso”

cualquier tráfico de red para el cual no se conoce una ruta específica en la tabla de enrutamiento debe ser enviado a través de esta puerta de enlace predeterminada

Question 3

ARP

Answer 3

Address Resolution Protocol
mapear: direcciones ip => direcciones mac

cuando un dispositivo en una red necesita comunicarse con otro dispositivo, como enviar un paquete de datos, necesita conocer la dirección MAC del dispositivo de destino para poder enviar el paquete a través de la red local

Question 4

what show table ARP

Answer 4

known devices => ip // mac

Question 5

what are “saltos”

Answer 5

intermediate devices (intermidet divaces) => can be routers

Question 6

ARP windows

Answer 6

arp -a

Question 7

ARP => only show => same red

Answer 7

show

for example

192.168.10..1
192.168.10..4

192.168.10.1
192.168.30.4

Question 8

MAC

Answer 8

Media Acces Control

Question 9

how do you call ?? => www.mygpage.com

Answer 9

domain name

Question 10

nslookingup

Answer 10

n=> name
s=> serve
looking up => search

return de dns by default

falt??????? Allows => obtain the: domain name associated => with an IP address.

Question 11

Destination host unreachable (an-ri-che-bol)
# el host de destino es inalcanzable

Answer 11

the ping is sent => but the server not response

=>
Pinging 10.0.0.3 with 32 bytes of data:

Reply from 10.0.0.3: Destination host unreachable
Reply from 10.0.0.3: Destination host unreachable
Reply from 10.0.0.3: Destination host unreachable.
Reply from 10.0.0.3: Destination host unreachable

Question 12

netstat => informacion sobre conexiones activas

for: linux, windows

Answer 12

show:
#protocols
tcp, udp
#ports

Question 13

TCP

Answer 13

Transmission Control Protocol

Question 14

UDP

Answer 14

User Datagram Protocol

Question 15

ftp:
ftp 192.168.10.41

Answer 15

File Transfer Protocol

Question 16

since => server ftp

port only change => in the login

Answer 16

login // password : are the same

netstat
TCP 192.168.75.2:21 192.168.10.3:1033 ESTABLISHED

netstat
TCP 192.168.75.2:1028 192.168.10.3:1027 CLOUSING

netstat
TCP 192.168.75.2:1036 192.168.10.3:1037 CLOSE

Question 17

send files to the server

Answer 17

=>login ftp
put Sample2.txt

Question 18

ports

Answer 18

Known ports (0-1023)

HTTP, HTTPS, SSH
Typically require admin privileges.

Dynamically assigned for client connections
Available for general application use.

Question 19

SSH

Answer 19

Secure Shell

es un protocolo para conexiones remotas seguras entre sistemas

Question 20

RAM

Answer 20

random access memoy => it’s volatile (vo-li-tol)

Question 21

ROM

Answer 21

red only memory

Question 22

PROM

Answer 22

programmable red only memory

Question 23

EPROM

Answer 23

erasable programmable red only memory (program-mebol)

Question 24

NVRAM

Answer 24

no volatile Random Access Memory
# is only in cisco
# is like a EPROM

Question 25

KB

Answer 25

kiloBytes

Question 26

where recovery information is stored ??
how call the server ??

Answer 26

inside FTP
TFTP : trivial file trasfer protocol

Question 27

What is the tftp server for?

Answer 27

-configuracion de dispositivos de red (switches, routers)
-Arranque de sistemas sin disco

Question 28

what 2 files copy in TFTP

Answer 28

flash: copy flash tftp
startup-config: copy startup-config tftp

Question 29

flash memory

Answer 29

programmable
no volatile
portabilidad y bajo consumo de energía.

Question 30

startup: puesta en marcha

startup-config: configuracion de inicio

Answer 30

-el archivo de configuración de inicio (startup-config)
-contiene la configuración que se cargará en el dispositivo de red la próxima vez que se reinicie o se

Question 31

operative sistem: CISCO

Answer 31

IOS
Internetwork Operating System

Question 32

shutdown

Answer 32

?? turn off # really ??s

Question 33

how to ENTER AN INTERFACE in cisico

Answer 33

enable
configure terminal
interface range f0/1 - 23, g0/1 - 2
shutdown
exit

Question 34

server AAA

Answer 34

AAA (AAA (Authentication, Authorization, and Accounting)

Question 35

Fast Ethernet
Giga Ethernet

Answer 35

100 mbs
1 gbs

Question 36

what are TELNET and SSH ??

Answer 36

protocolos diferentes utilizados para establecer conexiones remotas a otros sistemas o dispositivos de red

Question 37

telnet

Answer 37

Telnet transmite los datos, incluidas las credenciales de inicio de sesión, en texto plano sin cifrado, lo que lo hace inseguro y susceptible a interceptación.

Question 38

ssh

Question 39

how to test TELNET && SSH

Answer 39

example

wireshark

#search: labvm login:
telnet:
data:
c
i
s
c
o

Question 40

Arquímedes de
Siracusa, el venerado matemático cuyos escritos mecánicos no han sobrevivido, que trabajó en la gran Biblioteca de Alejandría
y que ganó fama por diseñar las defensas de Siracusa contra el general romano Marcelo en el siglo III a.C. Se decía que los
soldados romanos temblaban de miedo cuando una de las máquinas de guerra de Arquímedes apareció sobre las murallas de
la ciudad de Siracusa

Question 42

WLAN (Wireless Local Area Network)

Question 42

Grayware

Answer 42

behave in an annoying way
tracking your location or delivering unwanted advertising
not see the contracts

comportarse de una manera molesta
rastreando su ubicación o entregando publicidad no deseada.
no ver los contratos

Question 43

WEP (Wired Equivalent Privacy)

Answer 43

wired: cableado // privacidad equivalente al cableado

dont manage ⇒ the passwords

Question 44

WPA (Wi-Fi Protected Access):

Answer 44

WPA && WPA2

Question 45

GEMELO MALVADO

Answer 45

a cafe , you created a red wifi from cellphone

Question 46

VPN

Employees in an organization must use a remote access VPN for WLAN access.

Answer 46

WLAN: Wireless Local Area Network

Question 47

diference betwenn
SSH && VPN

Answer 47

SSH: used to start secure remote sessions on servers
transferencia de archivos

it’s only a tunnel (ta-nol)

======================
VPN: VPN creates a complete virtual private network over a public network,

Question 48

Bluesnarfing

Answer 48

Send unauthorized messages or images to other Bluetooth devices

Question 49

Bluejacking

Answer 49

copy information, emails, contact list through bluetooth

Question 50

XML

Answer 50

Extensible Markup Language
(Lenguaje de marcado extensible)

Question 51

Desbordamiento de búfer

Answer 51

Buffers are areas of memory allocated to an application.
occurs when data goes beyond the limits of a buffer.
By changing data beyond the boundaries of a buffer, the application can access memory allocated to other processes: privilege escalation.

Los búferes son áreas de memoria asignadas a una aplicación.
ocurre cuando los datos van más allá de los límites de un búfer.
Al cambiar los datos más allá de los límites de un búfer, la aplicación puede acceder a la memoria asignada a otros procesos: escalamiento de los privilegios.

Question 52

Metasploit

The Metasploit is a computer security project that provides information on security vulnerabilities and
Helps in penetration testing. Among the tools they have developed is the Metasploit Framework, which can
used to develop and execute attack code against a remote target.
These files are uploaded and they run from memory, so they never affect the hard drive. This also means that these files are moved under the antivirus detection radar

Answer 52

El proyecto Metasploit es un proyecto de seguridad informática que proporciona información sobre vulnerabilidades de seguridad y
Ayuda en las pruebas de penetración. Entre las herramientas que han desarrollado se encuentra Metasploit Framework, que puede
Se utiliza para desarrollar y ejecutar código de ataque contra un objetivo remoto.
Estos archivos están cargados.
y se ejecutan desde la memoria, por lo que nunca afectan al disco duro. Esto también significa que estos archivos se mueven bajo el
radar de detección de antivirus

Question 53

CONDICION DE CARRERA

A race condition attack occurs when a computer system designed to handle tasks in a specific sequence is forced to perform two or more operations simultaneously.

Answer 53

un ataque de condición de carrera ocurre cuando un sistema informático diseñado para manejar tareas en una secuencia específica se ve obligado a realizar dos o más operaciones simultáneamente.

Question 54

Agotamiento de recursos
Resource exhaustion: saturate the hardware resources available on the server

Answer 54

Agotamiento de recursos: saturan los recursos de hardware disponibles en el servidor

Question 55

Span

Answer 55

correo no deseado

Question 56

phishing

-fraudelente email messages
-fake websites

Answer 56

suplantacion de identidad

Question 57

kind of PHISHING

Answer 57

the hunt for whales => atack CEO

(weil) ballena

(espir) lanza

#pharming => fake store

Question 58

Smishing

Answer 58

sms

Question 59

Most ISPs filter spam email before it reaches the user’s inbox.

Question 60

ATACK OF AI (ARTIFICIAL INTELILLENSE)

If the data is contaminated, it can have a negative impact on the intended result. For example, using tainted data to trick an autonomous vehicle into misinterpreting traffic signs.

Answer 60

Si los datos están contaminados, pueden tener un impacto negativo en el resultado previsto. Por ejemplo, el uso de datos contaminados para engañar a un vehículo autónomo y malinterpretar las señales de tráfico.

Question 61

uid pro quo

Answer 61

son una solicitud de información personal a cambio de algo

Question 62

Dumpster Diving

Dumpster: contenedor de basura
Diving: Buceo

Answer 62

Diving in the trash

Question 63

piggybacking o tailgating

Answer 63

ocurren cuando un delincuente sigue a una persona autorizada para ingresar a un lugar seguro o un área restringida

Question 64

DNS attacks

Answer 64

include spoofing and hijacking(secuestro)

Question 65

To defend attacks from mobile and wireless devices

Answer 65

Change the default settings

#DMZ (Demilitarized Zone)
#Have a policy for temporary user access to a Wi-Fi network
#Employees must use a remote access VPN for WLAN access

Question 66

spoofing

capa 2
attack: relation trust relation betwenn 2 systems
work in layer 2 (leyer)

attack:
ARP
MAC

Question 67

internet (outside danger) => firewall => HOST COMPROMETIDO (pc, telefono) <= company network(inner danger)

Question 68

inner danger > outside danger

Question 69

DATA: is the most valuable asset of an organization

valuable (valia-bol) valioso
asset (a-set) activo

Question 70

enter your router

Answer 70

enter: cmd
write: ipconfig
copy: gateway
go browser: ip gateway

Question 71

data => has to be in an encryption algorithm

Saving data in the cloud has many benefits

delete physical backup

Question 71

SSID

Answer 71

Service Set Identifier

Question 71

run up CISCO

Answer 71

alt + d

Question 72

Passwords

Answer 72

Are the first line of defense

Question 73

A network sniffer

Answer 73

is a software or hardware tool used to monitor and analyze network traffic.

Question 74

cafe customer: vpn: 192.168.10.199
vpn laptop oficial: vpn: 10.2.0.125

Answer 74

ip cafe Hacker
192.168.10.199

===============
#dns configure of the computer: cafe hacker
friends.example.com 10.6.0.250
pix.example.com 10.6.0.250

Question 75

hiper

Answer 75

virtual machines

Question 76

pan
lan
can
man
wan

Answer 76

personal area network
local area network
campus area network
metropolitain area network
wide area network

Question 77

WAN need

Answer 77

VPN
Firewall

Question 78

firewall vs antivirus

Answer 78

A firewall monitors and controls incoming and outgoing network traffic to protect an internal network from unauthorized access, operating at the network level. based in rules

An antivirus detects, prevents and removes malware from individual computers, operating at the system level. protect individual computers

Question 79

aceptar riesgo: cost manage the risk > cost risk

evasión de riesgo: delete: activity // device

reduccion of riks=>

transfer risk => seguros

Question 80

hacker gris => no para beneficio personal ni para causar daños: curiosidad, desafío intelectual

hackin began => silbato

Question 80

amenaza => peligro potencial a un recurso

vulnerabilidad => debilidad

superficie de ataque => plus all vulnaribilities os && browser

ataque => exploit: aprovechar la vulnerabilidad

riesgo => probabilidad => amenaza => aproveche una vulnerabilidad

Question 81

can (campus area network)

Answer 81

coneccion => internet
has => servers
distribucion en capa

Question 82

script kiddies

Vulnerability brokers” son hackers de sombrero gris que
intentan descubrir los ataques e informarlos a los
proveedores,
a veces a cambio de premios o recompensas.

hactivista => gray hat

ciberdelicuentes => black hat
make money => organizaciones criminales

patrocinados por el estado

Question 83

anatomia de un ataque =>

Answer 83

web bolos, termostato => red plane => whitout vlans

Question 84

Indicadores de Peligro (IOC) => identificadores de malwarhe: files , ip dns

CISA => share information => eeuu <=> companies

Question 85

mdm => mobile device management

Question 86

=================================================================
TCP (Transmision Control Protocol)
- the book is ⇒ complet | tidy
- conexion between : source = destiny
- used to send documents
========================================================================
ICMP(Internet Control Message Protocol)=> message: notification || error
don´t use to send => files
PING
========================================
Header del packet IP
Version: 4 => ipv04 => 0100
Version: 6 => ipv06 => 1100
==========================================
ttl (time to live) => lo establece el emisor => va reduciedode en cada salto=> si es igual 0 => se descarta el paquete
don generate => bucles

====================================================
ICMP (1), TCP (6) y UDP (17) son algunos valores comunes
================================================
checksum => determinar si hubo errores => cuando llega a su destino se vuelve a calcular
if no son iguales => se descarte
======================================================
ipv4 => es una direccion de unicast
unicast => Una dirección unicast identifica de forma exclusiva a un único dispositivo o interfaz de red.
=======================================================================
debe ser multiplo de 32 bits => se rellenan con 0
===================================================================
flags => split => only the packet => is big

They are control bits that are used to indicate certain(ciertas) characteristics: 3 types 
Bit DF (Don't Fragment)
Bit MF (More Fragments)
default: 0   =============================== IP6
next header : the same => PROTOCOLO 
 	dont have => TTL : instead => HOP LIMIT
multicast => send a single data packet to multiple recipients simultaneously on a network =========================================