This is not as secure as WPA, but better than no security.
What is WEP
100
in IT Security principles, CIA stands for?
What is Confidentiality, Integrity and Availibility
100
This describes a threat or vulnerablity that is unknown to developers and has not been addressed
What is Zero Day
100
SHA stands for
What is Secure Hash Algorithm
100
This policy ensures that the users have only the rights and permissions they need for the job and no more
What is Least priviledge policy
200
A software or hardware that checks information coming from the Internet and depending on the applied configuration settings either blocks it or allows it to pass through is called:
What is a Firewall
200
In obtaining certificates, CA stands for?
What is a Certificate Authority
200
A form of testing in which the information given to the tester is complete. This means the pen tester is given all information about the target system.
What is White box
200
MD5 stands for
What is Message Digest 5
200
This kind of policy may recommends using 1 uppercase letter and more than 8 characters
What is password policy
300
A device designed to forward data packets between networks is called:
What is a Router
300
This is the another acronym for "ping"
ping 1.1.1.1
What is ICMP (Internet Control Message Protocol)
300
An application stores user passwords in a hashed format. Which one of these "condiments" can decrease the likelihood that attackers can discover these passwords?
What is Salt or Salting the passwords
300
HMAC stands for
What is Hand-based Message Authentication Code
300
This kind of policy is agreed upon at the CTRL+ALT+DEL screen as you are about to login to your system
What is Acceptable Use Policy
400
A network device designed for managing the optimal distribution of workloads across multiple computing resources is called:
What is a Load balancer
400
This kind of attack goes after port 53
What is DNS Attack
400
During input validation, to prevent a SQL injection attack it's best to block any one of these types of characters
What is dash OR apostrophe OR equal sign
400
AES stands for
What is Advanced Encryption Standard
400
This is a hierarchical sensitivity label applied to an object to be used to determine which user may access what data. (ex: confidential, sensitive, etc)
What is security or data classification policy
500
This ensures the privacy of a VPN connection?
What is Tunneling
500
Known as port 22, this is considered safer than telnet.
What is SSH
500
This kind of attack can occur during TCP handshake
What is SYN flood attack
500
RC4 stands for
What is Ron Rivest version 4
500
"Explicit Deny" is normally defined in this kind of policy