Test 2 Smaller

Question 1

What are the five basic steps in a vulnerability assessment?

Answer 1

Asset Identification, Threat Identification, Vulnerability Appraisal, Risk Assessment, Risk Mitigation

Question 2

What is the purpose of an attack tree in threat modeling?

Answer 2

Visually displays possible attacks, their goals, and the techniques used, structured as an inverted tree.

Question 3

What are the three possible states of a network port?

Answer 3

Open, Closed, Blocked.

Question 4

Name three tools used in protocol analysis.

Answer 4

Wireshark, Microsoft Message Analyzer, tcpdump.

Question 5

What is a honeypot?

Answer 5

A decoy system used to lure attackers and study their methods.

Question 6

What does the ping command do in network security?

Answer 6

Tests the reachability of a device by sending ICMP packets and measuring response time.

Question 7

What is tracert used for?

Answer 7

Displays the path packets take to a destination, identifying each router along the route.

Question 8

How does a port scanner help assess network security?

Answer 8

Identifies which ports are open, closed, or blocked to determine service vulnerabilities.

Question 9

What is the function of a vulnerability scanner?

Answer 9

Checks for known vulnerabilities in systems like unpatched software or open ports.

Question 10

What does a protocol analyzer like Wireshark do?

Answer 10

Captures and analyzes network traffic for performance or security issues.

Question 11

What’s the difference between a honeypot and a real server?

Answer 11

A honeypot is fake and lures attackers, while a real server hosts production services.

Question 12

What is banner grabbing?

Answer 12

Collecting information from services like version and type, often via connection banners.

Question 13

Name 3 password cracking tools.

Answer 13

John the Ripper, Cain and Abel, THC Hydra.

Question 14

What’s the key difference in schema between SQL and NoSQL?

Answer 14

SQL requires a predefined schema; NoSQL is schema-less and flexible.

Question 15

What are typical use cases for NoSQL?

Answer 15

Social apps, ads, BI, massive user growth, horizontally scaled systems.

Question 16

Explain vertical vs horizontal scaling.

Answer 16

Vertical: upgrade single machine; Horizontal: add more machines.

Question 17

Why is denormalization used in NoSQL?

Answer 17

Improves read speed by duplicating data.

Question 18

Can NoSQL support transactions?

Answer 18

Only within a single document.

Question 19

What is vertical scaling in SQL databases?

Answer 19

Improving performance by upgrading the CPU/RAM of a single server.

Question 20

Why is horizontal scaling important in NoSQL?

Answer 20

Allows growth by adding more servers, essential for high-traffic apps.

Question 21

What does it mean that SQL is ‘schema-first’?

Answer 21

Requires table structures and types to be defined before use.

Question 22

How does NoSQL handle data integrity compared to SQL?

Answer 22

It lacks constraints, so integrity checks must be handled by the app.

Question 23

What is a JOIN in SQL and why is it useful?

Answer 23

Combines rows from different tables using a related column.

Question 24

What are the 4 main components of Hadoop?

Answer 24

Hadoop Common, HDFS, MapReduce, YARN.

Question 25

Describe the MapReduce approach.

Answer 25

Map functions process data in parallel; reduce functions combine results.

Question 26

What does the NameNode do?

Answer 26

Tracks metadata and block locations in HDFS.

Question 27

What is the FsImage in Hadoop?

Answer 27

Snapshot of the file system state.

Question 28

What is Hadoop's default replication factor?

Answer 28

3 (each file is stored on 3 nodes).

Question 29

What does HDFS do in Hadoop?

Answer 29

Stores large files across many nodes with redundancy.

Question 30

Why is replication important in Hadoop?

Answer 30

Ensures fault tolerance by storing multiple copies of data.

Question 31

What’s the difference between Docker containers and VMs?

Answer 31

Containers share the OS kernel; VMs simulate entire hardware.

Question 32

What are Linux namespaces and cgroups?

Answer 32

Namespaces isolate resources; cgroups limit resource usage.

Question 33

Name the 3 components of Docker.

Answer 33

Docker daemon, Docker objects (containers/images), Docker registries.

Question 34

What’s the purpose of Docker Compose?

Answer 34

Manages multi-container apps using a YAML config file.

Question 35

What is Docker Swarm?

Answer 35

Clusters multiple Docker engines into one virtual engine.

Question 36

What is the purpose of Linux namespaces in containers?

Answer 36

To isolate file systems, users, and network environments per container.

Question 37

What does the Docker Engine do?

Answer 37

Manages container lifecycles, networking, and storage.

Question 38

What is the difference between Docker Hub and Docker Cloud?

Answer 38

Hub is a public registry; Cloud offered CI/CD features (now deprecated).

Question 39

What are the 3 cloud service models?

Answer 39

IaaS, PaaS, SaaS.

Question 40

What’s AaaS (Analytics as a Service)?

Answer 40

Cloud-based analytics platform offering prebuilt models and dashboards.

Question 41

What is a distributed ledger?

Answer 41

A decentralized database shared across multiple locations without a central authority.

Question 42

What are the four requirements for adding a block to a blockchain?

Answer 42

1. Transaction, 2. Verified, 3. Stored in block, 4. Block is hashed.

Question 43

List blockchain alternatives.

Answer 43

Tangle, Hashgraph.

Question 44

How does IaaS differ from SaaS?

Answer 44

IaaS provides infrastructure; SaaS provides complete software apps.

Question 45

What is the purpose of a hash in blockchain?

Answer 45

Ensures block integrity and links it to previous blocks.

Question 46

How is consensus achieved in a blockchain?

Answer 46

Majority of nodes validate transactions using algorithms like PoW or PoS.

Question 47

What is Analytics as a Service (AaaS)?

Answer 47

SaaS-based platform for performing analytics without managing infrastructure.