Attack!
Auth Models
Certified...
Psuedo-Random Questions
CYA
100

This type of attack involves forwarding data at a later date or time.

What is a replay attack?

100

This client-server model provides mutual authentication and works on the basis of tickets

What is kerberos?

100
You use this key to encrypt data in a PKI environment

What is the public key of the recipient?

100

The purpose of hashing documents

What is data integrity?

100
This technique for timestamps is used for data collected in different regions to give a synchronized view of the sequence of events

What is time normalization?

200

In this attack, the victim receives the replies from a directed IP broadcast sent by a bad actor to a border router.

What is a smurf attack?

200

This model uses assertions and service and identity providers

What is SAML?

200

Diffie Hellman and Elliptic Curve Cryptography are these type of one-time keys

What are ephemeral keys?

200

This simple yet surprisingly still effective attack uses phrases like 1=1

What is SQL injection?

200

Recording all stages wherein evidence is collected and names of those who have handled it

What is the chain of custody?

300

This attack involves manipulating individuals into revealing sensitive information or providing physical access to secure areas.

What is social engineering, or an impersonation attack?

300

Presenting something you know, something you are, and something you have, for example

What is multi-factor authentication

300

This key sports a .cer file extension and is in the P7B format

What is the public key?

300

The small amount of risk left over after mitigation

What is residual risk?

300

This clause should be added to any contract with a cloud provider so evidence can be collected

What is a 'right to audit' clause?

400

This attack cannot be detected by AV, NIDS, NIPS, or SIEM systems.

What is a zero-day attack?

400

restricting access to network or application resources based on a user's defined attributes

What is role-based access control, or RBAC?
400

This key provides non-repudiation

What is the private key?

400

This secure coding practice controls the data being entered into a web request form

What is input validation?

400

preventing someone under investigation from deleting evidence

What is legal hold?

500

This attack involves sending emails to high-level executives in a targeted company

What is a spear-phishing attack?

500

This works over HTTPS and authorizes devices, APIs, servers, and applications with tokens rather than credentials

What is OAuth?

500

This tool is considered fastest in determining certificate validity

What is OCSP?

500

US law protecting medical information

What is HIPAA?

500

This should be done before and after investigating forensic data to prove to the court the evidence was not tampered with

What is hash the data?