Testout Networking: Chapter 12
(12.4.6) Dumpster diving is a low-tech way of gathering information that may be useful for gaining unauthorized access or as a starting point for more advanced attacks. How can a company reduce the risk associated with dumpster diving?
Establish and enforce a document destruction policy.
(12.3.4) What is the primary benefit of CCTV?
Expands the area visible to security guards.
(12.2.10) You want to make sure that a set of servers only accepts traffic for specific network services. You have verified that the servers are only running the necessary services, but you also want to make sure that the servers do not accept packets sent to those services. Which tool should you use?
Port scanner
(12.1.10) Which protocol does HTTPS use to offer greater security for web transactions?
SSL
(12.1.10) You want to allow traveling users to connect to your private network through the internet. Users will connect from various locations, including airports, hotels, and public access points (like coffee shops and libraries). As such, you won't be able to configure the firewalls that might be controlling access to the internet in these locations. Which of the following protocols is MOST likely to be allowed through the widest number of firewalls?
SSL
(12.5.11) What should you try first if your antivirus software does not detect and remove a virus?
Update your virus detection software.
(12.4.6) Match each social engineering description on the left with the appropriate attack type on the right.
-An attacker sends an email pretending to be from a trusted organization, asking users to access a website to verify personal information. -An attacker gathers personal information about the target individual, who is a CEO. -An attacker gathers personal information about the target individual in an organization. -An attacker searches through an organization's trash for sensitive information. -An attacker enters a secure building by following an authorized employee through a secure door without providing identification. -An attacker uses a telephone to convince target individuals to reveal their credit card information.
(12.3.4) You are an IT consultant and are visiting a new client's site to become familiar with their network. As you walk around their facility, you note the following: -When you enter the facility, a receptionist greets you and directs you down the hallway to the office manager's cubicle. The receptionist uses a notebook system that is secured to her desk with a cable lock. -The office manager informs you that the organization's servers are kept in a locked closet. Only she has the key to the closet. When you arrive on site, you will be required to get the key from her to access the closet. -She informs you that server backups are configured to run each night. A rotation of external USB hard disks are used as the backup media. -You notice the organization's network switch is kept in an empty cubicle adjacent to the office manager's workspace. -You notice that a router/firewall-content filter all-in-one device has been implemented in the server closet to protect the internal network from external attacks. Which security-related recommendations should you make to this client? (Select two.)
-Control access to the work area with locking doors and card readers. -Relocate the switch to the locked server closet.
(12.3.4) Match each physical security control on the left with an appropriate example of that control on the right. Each security control may be used once, more than once, or not at all.
-Protected cable distribution -Door locks -Perimeter barrier -Safety -Protected cable distribution -Physical access control -Safety -Perimeter barrier
(12.1.10) Creating fake resources such as honeypots, honeynets, and tarpits fulfills which of the following main intrusion detection and prevention goals? (Select two.)
-Reveals information about an attacker's methods and gathers evidence for identification or prosecution purposes. -Offers attackers a target that occupies their time and attention while distracting them from valid resources.
(12.4.6) Which of the following are examples of social engineering attacks? (Select two.)
-Shoulder surfing -Dumpster diving
(12.1.10) Which of the following protocols are often added to other protocols to provide secure data transmission? (Select two.)
-TLS -SSL
(12.2.10) Drag each penetration test characteristic on the left to the appropriate penetration test name on the right.
-The tester has detailed information about the target system prior to starting the test. -The tester has the same amount of information that would be available to a typical insider in the organization. -The tester has no prior knowledge of the target system. -Either the attacker has prior knowledge about the target system or the administrator knows that the test is being performed. -The tester does not have prior information about the system, and the administrator has no knowledge that the test is being performed.
(12.1.10) Which of the following is an example of an internal threat?
A user accidentally deletes the new product designs.
(12.5.11) What is the main difference between a worm and a virus?
A worm can replicate itself, while a virus requires a host for distribution.
(12.2.10) A security administrator is conducting a penetration test on a network. She connects a notebook system running Linux to the wireless network and then uses Nmap to probe various network hosts to see which operating system they are running. Which process did the administrator use for the penetration test in this scenario?
Active fingerprinting
(12.5.11) While browsing the internet, you notice that the browser displays ads linked to recent keyword searches you performed. Which attack type is this an example of?
Adware
(12.1.10) Which of the following BEST describes an inside attacker?
An unintentional threat actor (the most common threat).
(12.5.11) Which of the following BEST describes the key difference between DoS and DDoS?
Attackers use numerous computers and connections.
(12.4.6) An organization's receptionist received a phone call from an individual claiming to be a partner in a high-level project and requesting sensitive information. Which type of social engineering is this individual engaging in?
Authority
(12.4.6) What is the primary countermeasure to social engineering?
Awareness
(12.5.11) You are using a password attack that tests every possible keystroke for each single key in a password until the correct one is found. Which of the following technical password attacks are you using?
Brute force attack
(12.2.10) Which SIEM component is responsible for gathering all event logs from configured devices and securely sending them to the SIEM system?
Collectors
(12.5.11) Which of the following is a text file that a website stores on a client's hard drive to track and record information about the user?
Cookie
(12.2.10) A security administrator logs on to a Windows server on her organization's network. Then she runs a vulnerability scan on that server. Which type of scan did she conduct in this scenario?
Credentialed scan
(12.5.11) Which type of denial-of-service (DoS) attack occurs when a name server receives malicious or misleading data that incorrectly maps hostnames to IP addresses?
DNS poisoning
(12.5.11) Which of the following is an attack that either exploits a software flaw or floods a system with traffic in order to prevent legitimate activities or transactions from occurring?
Denial-of-service attack
(12.3.4) Which of the following can you use to stop piggybacking from occurring at a front entrance where employees swipe smart cards to gain entry?
Deploy a mantrap.
(12.4.6) On your way into the back entrance of your work building one morning, a man dressed as a plumber asks you to let him in so he can fix the restroom. What should you do?
Direct him to the front entrance and instruct him to check in with the receptionist.
(12.5.11) You are cleaning your desk at work. You toss several stacks of paper in the trash, including a sticky note with your password written on it. Which of the following types of non-technical password attacks have you enabled?
Dumpster diving
(12.4.6) Which of the following is a common social engineering attack?
Hoax virus information emails.
(12.1.10) Which of the following intrusion detection and prevention systems uses fake resources to entice intruders by displaying a vulnerability, configuration flaw, or valuable data?
Honeypot
(2.5.11) As you are helping a user with a computer problem, you notice that she has written her password on a note stuck to her computer monitor. You check your company's Password Policy and find that the following settings are currently required: -Minimum password length = 10 -Minimum password age = 4 -Maximum password age = 30 -Password history = 6 -Account lockout clipping level = 3 Require complex passwords that include numbers and symbols Which of the following is the best action to take to make remembering passwords easier so that the user no longer has to write their password down?
Implement end user training.
(12.3.4) Which of the following CCTV types would you use in areas with little or no light?
Infrared
(12.5.11) Which of the following best describes spyware?
It monitors the actions you take on your machine and sends the information back to its originating source.
(12.3.4) Which of the following is the MOST important way to prevent console access to a network switch?
Keep the switch in a room that is locked by a keypad.
(12.3.4) Which of the following controls is an example of a physical access control method?
Locks on doors
(12.1.10) Members of the sales team use laptops to connect to the company network. While traveling, they connect their laptops to the internet through airport and hotel networks. You are concerned that these computers will pick up viruses that could spread to your private network. You would like to implement a solution that prevents the laptops from connecting to your network unless antivirus software and the latest operating system patches have been installed. Which solution should you use?
NAC
(12.2.10) Which of the following Security Orchestration, Automation, and Response (SOAR) system components helps to document the processes and procedures that are to be used by a human during a manual intervention?
Playbook
(12.2.10) A network utilizes a network access control (NAC) solution to defend against malware. When a wired or wireless host tries to connect to the network, a NAC agent on the host checks it to make sure it has all of the latest operating system updates installed and that the latest antivirus definitions have been applied. What is this process called?
Posture assessment
(12.2.10) When analyzing assets, which analysis method assigns financial values to assets?
Quantitative
(12.1.10) Telnet is inherently unsecure because its communication is in plaintext and is easily intercepted. Which of the following is an acceptable alternative to Telnet?
SSH
(12.1.10) Which of the following protocols can you use to securely manage a network device from a remote connection?
SSH
(12.3.4) You want to use CCTV as a preventative security measure. Which of the following is a requirement for your plan?
Security guards
(12.4.6) What is the definition of any attack involving human interaction of some kind?
Social engineering
(12.3.4) Which of the following is a secure doorway that can be used with a mantrap to allow an easy exit but actively prevents re-entrance through the exit portal?
Turnstiles
(12.3.4) Five salespeople work out of your office. They frequently leave their laptops on the desks in their cubicles. You are concerned that someone might walk by and take one of these laptops. Which of the following is the BEST way to address your concerns?
Use cable locks to chain the laptops to the desks.
(12.4.6) You have just received a generic-looking email that is addressed as coming from the administrator of your company. The email says that as part of a system upgrade, you need enter your username and password in a new website so you can manage your email and spam using the new service. What should you do?
Verify that the email was sent by the administrator and that this new service is legitimate.
(12.2.10) You want to be able to identify the services running on a set of servers on your network. Which tool would BEST give you the information you need?
Vulnerability scanner
(12.2.10) What is the main difference between vulnerability scanning and penetration testing?
Vulnerability scanning is performed within the security perimeter; penetration testing is performed outside of the security perimeter.
(12.4.6) A senior executive reports that she received a suspicious email concerning a sensitive internal project that is behind production. The email was sent from someone she doesn't know, and he is asking for immediate clarification on several of the project's details so the project can get back on schedule. Which type of attack BEST describes the scenario?
Whaling