Cyber 2
Cybersecurity Knowledge Challenge
Test your understanding of cybersecurity concepts and hone your skills with this engaging quiz. Designed for cybersecurity enthusiasts and professionals alike, this quiz covers various topics including IDS, DDoS attacks, worms, X.509 certificates, and more.
Challenge yourself and improve your knowledge while enjoying the process! Topics included:
- Intrusion Detection Systems
- Denial of Service Attacks
- Malware and Worms
- Cryptographic Protocols
From the following sentences, mark the one that is true.
A Signature-Based IDS uses statistical models or machine learning to characterize usage behaviour
A Network-Based IDS can be effective for new variants of malware.
Usually an IDS is mounted to perform active monitoring.
An Anomaly-Based IDS is not considered as resource intensive.
From the following sentences, mark the one that is true.
Tripwire is an example of a network-based IDS
An Host-Based IDS is generally resource intensive.
An Host-based IDS usually creates a multiple sources of log and alert information
An Host-Based IDS can be mounted in a multiple machines.
From the following sentences, mark the one that is true.
Bro is a Host-Based IDS
An host-based IDS requires complex configuration in the host.
An IDS must be designed for the majority of network attacks.
An Anomaly-Based IDS can have higher percentages of false alerts when compared with other IDS types.
From the following sentences, mark the one that is true.
In a drive-by attack, the attacker needs to eavesdrop communications between an host and a web server
In a DoS attack, UDP SYN packet can be used to overwhelm a server.
In the spear phishing attack, the attackers need to know more about the targets.
A teardrop attack is a DDoS attack that involves IP spoofing and ICMP packets towards a target.
From the following sentences, mark the one that is true.
A tampering attack consists of intentionally destroying, manipulating or editing data in a defined communication channel.
A Ransomware cannot be conveyed by a worm script
A botnet consists of a set of vulnerable but not yet attacked machines
A zero-day vulnerability (or exploit) consists usually of a vulnerability already covered by a security patch.
From the following sentences, mark the one that is true.
In a session hijacking attack, the attacker searches for vulnerable host to infect it with a malware
A teardrop attack takes advantage of IP fragments overlapping, causing a DoS
In order to protect clients and servers against the playback attacks, an hash algorith can be used.
A random nonce can be used to ensure authentication between a client and a server.
From the following sentences, mark the one that is true.
A flashcrowd is a DDoS attack.
Pattern analysis can be used to distinguish a flashcrowd from a DDoS.
In a DDoS attack an amplifier cannot be a reflector
Generally in a DoS attack, the attacker uses its own host to generate traffic towards a target.
From the following sentences, mark the one that is true.
SYN-ACK cookie allow the current state to be maintained in the server to protect it from false SYN packets.
Attackers can use DNS services as reflectors services.
Usually one client is able to generate enough data to overwhelm a server.
The shrew makes use of TCP behaviour forcing TCP to timeout at specific rates to deny service. It send big amounts of traffic for long periods.
From the following sentences, mark the one that is true. Regarding DoS/DDoS
The defense for a DDoS attack should be implemented closest as possible to the target machine
In a DDoS, an amplification server usually is a server outside the botnet.
The zombies are the hosts of the attackers, where a DDoS attack starts
In DDoS, a reflector is a vulnerable machine used to generate traffic towards a specific target
From the following sentences, mark the one that is true.Regarding DoS/DDoS
Traceback intends to increase the potential damage of a DDoS attack.
Normal and protected servers cannot be used as amplifiers machines
Stateless Internet Flow Filter (SIFF) is used to prevent a DDoS attack, and assumes privileged packets that are transportedd in a best-effort category.
A netwotk telescope (darknet) can be used to make backscatter measurements about type/number of DDoS attacks
From the following sentences, mark the one that is true
In DoS, the crossfire attack starts by flooding the target server or service.
In the crossfire attack is directed to transient links, I.e. Links that may be used or not to convey traffic towards destination.
In the crossfire attack persistent links, I.e. Links that may be used or not to convey traffic towards destination.
In the crossfire, bots can be used to potentiate the attack.
From the following sentences, mark the one that is true.Regarding Worms
Stuxnet was a worm that intended to attack IoT devices
A worm has 3 main stages by this order: attempt to infect new targets; detect new targets and execute code in the victim machine
The uncontrolled propagation of a worm may result in the worm competing with it self for bandwidth.
A worm is a script that generally requires human intervention to run.
From the following sentences, mark the one that is true.Regarding worms
In order to dificult tracing of the "patients zero", zombies can be hacked in the first stage of the worm attack
The payload of Mirai worm was used to attack a routing protocol, which resulted in a DDoS attack to many websites.
Generally a worm propagation is slow to be undetected by protection systems
To better detect worms and their propagation, human intervention is required.
From the following sentences, mark the one that is true.
A CRL is a list of that should be maintained in each client.
The KDC is a CA as a trust intermediary
A X.509 certificate can be revoked before its expiration date, and never after that.
The X.509 authentication service defines a set of KDCs to share the secret keys.
From the following sentences, mark the one that is true.
All version of X.509 certificate should include revocation date.
All version of X.509 certificate should include a set of extensions.
All version of X.509 certificate should include period of validity.
All version of X.509 certificate should include the private key of the subject.
{"name":"Cyber 2", "url":"https://www.quiz-maker.com/QPREVIEW","txt":"Test your understanding of cybersecurity concepts and hone your skills with this engaging quiz. Designed for cybersecurity enthusiasts and professionals alike, this quiz covers various topics including IDS, DDoS attacks, worms, X.509 certificates, and more.Challenge yourself and improve your knowledge while enjoying the process! Topics included:Intrusion Detection SystemsDenial of Service AttacksMalware and WormsCryptographic Protocols","img":"https://cdn.poll-maker.com/104-5107649/img-jlh4brtf3doge3owxms0eupx.jpg"}
More Quizzes
Monthly SecOPS quiz
1168
امن المعلومات
39200
ITEC MIDTERMS
452226
Information assurance 1
10532
Principles of Information Security CH1
23120
Cyber
15823
Secure Application Development Quiz
11619
Directory and Files Discovery
320
Security Plus 10q Part 2
10525
Cybersecurity Knowledge Challenge
1058
ETHICAL HACKING
1059
Practice QUIZ
10523