100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
Previously searched by you
Previously searched by you
logo
GSEC 401.3 Internet Security Technology Study Guide Test. $12.49   Add to cart
Quickly navigate to
Preview
  2.  
  3. GSEC
  4.  
  5. GSEC

Exam (elaborations)

GSEC 401.3 Internet Security Technology Study Guide Test.
 0 view  0 purchase
  • Course
  • GSEC
  • Institution
  • GSEC

GSEC 401.3 Internet Security Technology Study Guide Test. Reconnaissance Tools - CORRECT ANSWER 1) Who Is - DNS Servers 2) NSLookup - ip Address 3) ARIN - IP Address Range Scanning Tools - CORRECT ANSWER 1) Hping2 - visable IP 2) NMap - Open Ports 3) Vulnerability Scanner - Services and e...

[Show more]

Preview 3 out of 17  pages

Document information

  • November 18, 2024
  • 17
  • 2024/2025
  • Exam (elaborations)
  • Questions & answers

Subjects

  • gsec
  • gsec 4013 internet security technology study guid

Written for

  • GSEC
  • GSEC

Seller

avatar-seller
Nursewendo

Reviews received

Content preview

GSEC 401.3 Internet Security
Technology Study Guide Test.
Reconnaissance Tools - CORRECT ANSWER 1) Who Is - DNS Servers

2) NSLookup - ip Address

3) ARIN - IP Address Range



Scanning Tools - CORRECT ANSWER 1) Hping2 - visable IP

2) NMap - Open Ports

3) Vulnerability Scanner - Services and exposures



Exploitation Tools - CORRECT ANSWER 1) Pivot points

2) internal recon

3) internal scanning

4) data exploits



Creating backdoors - CORRECT ANSWER 1) Create an unauthorized entry point in a system or network



Covering Tracks - CORRECT ANSWER 1) remove all traces of entries

2) erase and alter logs

3) remove backdoor



Mitnick vs. Shimomura (Attack) - CORRECT ANSWER 1) Confidentiality, integrity and availability attack

2) Reconnaissance probing to determine trust relationship ("R utilities")

3) IP Spoofing to act as one side of trust relationship

4) Lack of site or secure network design

5) Minimal configuration management

,Detection and Prevention Technique questions - CORRECT ANSWER 1) What common techniques
(prevention and detection) coul have prevented the attack?

2) What risk management techniques could have detected the attack?



**** Ensure you FIX the Problem and NOT address the Symptoms ****



Patching Systems - CORRECT ANSWER 1) Fix know Vulnerabilities

2) Apply patch in timely manner

3) Reduce attack surface



Hardening the System - CORRECT ANSWER 1) Disable unused systems

2) Network vulnerability scans

3) Host-Based IDS

4) Network Intrusion Detection

5) Firewalls



Malicious Code Types - CORRECT ANSWER 1) Logic Bombs

2) Trojan Horse

3) Trap Door



Malicious Code: Logic Bombs - CORRECT ANSWER 1) Most commonly inserted by a trusted insider



Malicious Code: Trojan Horses - CORRECT ANSWER 1) Any program that has an unintended purpose



Malicious Code: Trap Doors - CORRECT ANSWER 1) Inserted for "maintenance" purposes, Sendmail and
DNS have both of these



Remote Maintenance - CORRECT ANSWER 1) Allows adminstrators and vendors into a system, to
troubleshoot a problem remotely

, Denial of Service - CORRECT ANSWER 1) Resource exhaustion DOS: (SMURF, SYN Flood) Very difficult to
defend against. Overwhelms resources on system

2) Take advantage of vulnerabilities in a system



Brute Force - CORRECT ANSWER 1) Bombarding a system with guess to gain access



Browsing - CORRECT ANSWER 1) Simplest attack

2) Open source search to reveal sensitive information

3) Social Media is a great tool for browsing



Race Conditions - CORRECT ANSWER 1) Timing is everything

2) TOC/TOU (Time of check/time of use)

2a) TOC/TOU Attack: Exploiting the difference in between when a security control is applied and the
time of service was used

3) TOC/TOU should equal zero



Alteration of Code - CORRECT ANSWER 1) Attack against the integrity of a system, program and data



RootKit - CORRECT ANSWER 1) Hides the back doors and root access to a system

2) Subvert kernel, process management, file access, security and memory management funcgtions



Types of RootKits - CORRECT ANSWER 1) NARK

2) ADORE

3) KISS



Firewalls - CORRECT ANSWER 1) Preventive technology

2) Router with a filtering ruleset

3) Reduce risks by protecting systems from attempts to exploit vulnerabilities

4) Increase privacy:

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller Nursewendo. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $12.49. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

75323 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$12.49
  • (0)
  Add to cart