CSIRT

Security

Standards

Network

UNIX

Windows

100

It usually refers to a group, such as a government, with both the capability and the intent to effectively target a specific entity.

What is Advanced persistent threat (APT)

100

Is based on IT Baseline Protection Manual (IT-Grundschutz)

What is ISKE

100

It was one of the world's first operational packet switching networks, the first network to implement TCP/IP.

What is ARPANET (Advanced Research Projects Agency Network)

100

Command to run the last command as root

What is "sudo !!"

100

It is a suite of Microsoft security protocols that provides authentication, integrity, and confidentiality to users.

What is NTLM (NT LAN Manager)

200

It is one of the earliest practical examples of key exchange implemented within the field of cryptography.

What is Diffie–Hellman key exchange

200

Information security risk management standard

What is ISO 27005

200

The technical operation of this network adheres to the standards created by the ITU-T. These standards allow different networks in different countries to interconnect seamlessly. The E.163 and E.164 standards provide a single global address space.

What is PSTN (public switched telephone network)

200

Command to check if the last command was successful in Unix

What is "echo $?" or the value of [$?]

200

It is Microsoft's implementation of NetBIOS Name Service (NBNS).

What is Windows Internet Name Service (WINS)

300

A standard Diffie-Hellman exchange is vulnerable to this kind of attack.

What is MITM (Man-in-the-middle), (as neither side is authenticated)

300

Finnish national security auditing criteria

What is KATAKRI

300

An ATM bandwidth-allocation service that allows users to specify a throughput capacity (i.e., a peak rate) and a sustained rate but data is not sent evenly. It is often used when transmitting compressed packetized voice and video data.

What is VBR (variable bit rate)

300

It is a utility software and network protocol for Unix-like systems that transfers files while minimizing data by using delta encoding when appropriate.

What is rsync

300

It is a GSSAPI "pseudo mechanism" that is used to negotiate one of a number of possible real mechanisms. It is used when a client application wants to authenticate to a remote server, but neither end is sure what authentication protocols the other supports.

What is SPNEGO (Simple and Protected GSSAPI Negotiation Mechanism)

400

A piece of code intentionally inserted into a software system that will set off a malicious function when specified conditions are met.

What is a logic bomb

400

Bluetooth standard by IEEE

What is 802.15.1

400

These avians was used to carrie IP, issued as RFC 1149. It was implemented in 2001.

What is a pigeon (a dove)

400

These type of ports are used by Operating system for client sockets. There is a specific range on which OS can open any port specified by this port range. We expect a name not a number.

What is Ephemeral port

400

By default PowerShell will use the following two ports for communication (They are the same ports as WinRM)

What is TCP/5985 for HTTP and TCP/5986 for HTTPS

500

In 1991, he wrote the popular Pretty Good Privacy (PGP) program, and made it available (together with its source code) through public FTP for download, the first widely available program implementing public-key cryptography. A key signing protocol is named after him.

Who is Phil Zimmermann

500

It is a family of standards specified by the IEEE for maintaining compatibility between operating systems.

What is POSIX (Portable Operating System Interface)

500

These two are standardized multiplexing protocols that transfer multiple digital bit streams over optical fiber using lasers. They were originally designed to transport circuit mode communications from a variety of different sources, primarily to support real-time, uncompressed, circuit-switched voice encoded in PCM (Pulse-Code Modulation) format.

What is Synchronous optical networking (SONET) and Synchronous Digital Hierarchy (SDH)

500

On this date the current time will roll over from a zero followed by 31 ones (0x7FFFFFFF) to a one followed by 31 zeros (0x80000000), which will reset time to the year 1901 or 1970, depending on implementation on 32 bit Unix systems.

What is 19 January 2038

500

It is a set of Component Object Model (COM) objects for accessing data sources. A part of MDAC, it provides a middleware layer between programming languages and OLE DB. It allows a developer to write programs that access data without knowing how the database is implemented; developers must be aware of the database for connection only.

What is ActiveX Data Objects (ADO)