information security

Aug 11th, 2014
Sigchi4life
Category:
Computer Science
Price: $70 USD

Question description

1.

------------ is summary data collected from packet headers and network devices that illustrates connection, traffic, protocol and other patterns.

2.

A  is a formal description of message formats and the rules for exchanging those messages

3.

Results from a port scan would likely benefit an attacker (select all that apply)

during the Attack & Exploitation phase


during the Device Discovery & Service Enumeration phase

exfiltrate data from the target environment

when attempting to identify a specific device type (database, web server, etc.)

4

Why should a defender monitor for the release of new metasploit modules, new attacker tools, techniques, etc? How can a defender make this information "actionable" in a manner that will reduce overall risk of compromise?


5

What are four qualities of an Information Security Monitoring program. 

Hint, "contributes to a growing knowledge base" is one...

6

Describe the concepts of Defense in Depth and Detection in Depth. Compare and contrast. What's different? What's similar?

 Make sure you describe both concepts in full sentences and discuss the differences and similarities thoroughly.) 

7

What is multi-factor authentication? Identify each component and provide an example.

8

Successfully defending or attacking a target network, application, or device can often require a good deal of technical skill and experience. Why and how does malware and tools such as Metasploit upset this balance? Consider both please. 

9

Define and describe each phase in the defender's methodology, provide examples. 

10

How would the "principle of least privilege" apply when setting up a user account for a new employee?

11

<img src="http://url.to.file.which/not.exist" onerror=alert(document.cookie);>

" ]is likely a cross reference reflection attack

" ]is likely a cross site scripting attack

" ]is likely a cross request forgery attack

" ]is likely a cross buffer overflow attack

12


www.exploit-db.com is "the ultimate archive of exploits and vulnerable software. A great resource for penetration testers, vulnerability researchers, and security addicts alike." 

What category of security relevant data would you categorize this resource as and why? What value does it provide to a network defender?


Tutor Answer

(Top Tutor) Daniel C.
(997)
School: University of Maryland
PREMIUM TUTOR

Studypool has helped 1,244,100 students

8 Reviews


Summary
Quality
Communication
On Time
Value
darnay
Dec 2nd, 2016
" The best tutor out there!!!! "
dontuwannaknow
Nov 23rd, 2016
" Excellent work as always thanks so much "
SjSurvivor143
Nov 9th, 2016
" Thanks for the help. "
ddg82
Oct 31st, 2016
" Thanks, good work "
tinytim47
Oct 18th, 2016
" Wow this is really good.... didn't expect it. Sweet!!!! "
jestin7
Oct 9th, 2016
" This tutor is great! "
mixedballz
Oct 4th, 2016
" excellent work as always thanks for the help "
lilmoe415
Sep 25th, 2016
" Thank you, Thank you, for top quality work, this is your guy!! "
Ask your homework questions. Receive quality answers!

Type your question here (or upload an image)

1829 tutors are online

Brown University





1271 Tutors

California Institute of Technology




2131 Tutors

Carnegie Mellon University




982 Tutors

Columbia University





1256 Tutors

Dartmouth University





2113 Tutors

Emory University





2279 Tutors

Harvard University





599 Tutors

Massachusetts Institute of Technology



2319 Tutors

New York University





1645 Tutors

Notre Dam University





1911 Tutors

Oklahoma University





2122 Tutors

Pennsylvania State University





932 Tutors

Princeton University





1211 Tutors

Stanford University





983 Tutors

University of California





1282 Tutors

Oxford University





123 Tutors

Yale University





2325 Tutors