CREST CPSA 4, CPSA 5 100% Verified Questions and Answers (2023)

CREST CPSA 4, CPSA 5 100% Verified Questions and Answers (2023) Internet Protocol Security (IPsec) - ANSWER-a secure network protocol suite that authenticates and encrypts the packets of data sent over an Internet Protocol network Internet Protocol Security (IPsec) - ANSWER-used in virtual private networks (VPNs) number of possible TCP ports - ANSWER-65535 number of possible UDP ports - ANSWER-65535 RFC1918 24-bit block - ANSWER-10.0.0.0/8 RFC1918 20-bit block - ANSWER-172.16.0.0/12 RFC1918 16-bit block - ANSWER-192.168.0.0/16 Common Vulnerabilities and Exposures (CVE) - ANSWER-provides a reference-method for publicly known information-security vulnerabilities and exposures Common Vulnerability Scoring System (CVSS) - ANSWER-an open industry standard for assessing the severity of computer system security vulnerabilities DREAD - ANSWER-part of a system for risk-assessing computer security threats Common Weakness Enumeration (CWE) - ANSWER-a category system for software weaknesses and vulnerabilities National Vulnerability Database (NVD) - ANSWER-the U.S. government repository of standards-based vulnerability management data represented using the Security Content Automation Protocol (SCAP) 500 - ANSWER-Internal Server Error 501 - ANSWER-Not Implemented 502 - ANSWER-Bad Gateway 503 - ANSWER-Service Unavailable 504 - ANSWER-Gateway Timeout 505 - ANSWER-HTTP Version Not Supported 511 - ANSWER-Network Authentication Required CHANGE_ON_INSTALL - ANSWER-SYS MANAGER - ANSWER-SYSTEM TIGER - ANSWER-SCOTT WOOD - ANSWER-ADAMS STEEL - ANSWER-JONES CLOTH - ANSWER-CLARK PAPER - ANSWER-BLAKE TRACE - ANSWER-TRACESVR MANAGER - ANSWER-OLAPSYS CHANGE_ON_INSTALL - ANSWER-XDB 400 - ANSWER-Bad Request 401 - ANSWER-Unauthorized 402 - ANSWER-Payment Required 403 - ANSWER-Forbidden 404 - ANSWER-Not Found 405 - ANSWER-Method Not Allowed 406 - ANSWER-Not Acceptable 407 - ANSWER-Proxy Authentication Required 408 - ANSWER-Request Timeout 409 - ANSWER-Conflict 410 - ANSWER-Gone 411 - ANSWER-Length Required 413 - ANSWER-Payload Too Large 426 - ANSWER-Upgrade Required 429 - ANSWER-Too Many Requests threat - ANSWER-a source of potential disruption, which has the potential to cause a risk risk - ANSWER-the combination of consequences of a threat occurring and the likelihood of it doing so inherent risk - ANSWER-the risk that an event will occur which may negatively affect the achievement of organisation's objectives, assuming there are no controls in place residual risk - ANSWER-the risk which remains after taking controls in to account Session Initiation Protocol (SIP) - ANSWER-a signaling protocol used for initiating, maintaining, and terminating real-time sessions that include voice, video and messaging applications SIP requests - ANSWER-REGISTER; INVITE; ACK; BYE; CANCEL; UPDATE; REFER; PRACK; SUBSCRIBE; NOTIFY; PUBLISH; MESSAGE; INFO; OPTIONS IPsec security architecture - ANSWER-Authentication Headers (AH) Encapsulating Security Payloads (ESP) Security Associations (SA) - Internet Security Association and Key Management Protocol (ISAKMP); Internet Key Exchange (IKE and IKEv2) LM - ANSWER-all passwords are converted into uppercase before generating the hash value LM - ANSWER-password length is limited to maximum of 14 characters LM - ANSWER-a 14-character password is broken into 7+7 characters and the hash is calculated for the two halves separately LM - ANSWER-if the password is 7 characters or less, then the second half of hash will always produce same constant value (AAD3B435B51404EE) LM - ANSWER-the hash value is sent to network servers without salting LM - ANSWER-uses DES 128 bits - ANSWER-LAN Manager (LM) hash size: Net-NTLM - ANSWER-used for network authentication Net-NTLM - ANSWER-get these hashes when using tools like Responder or Inveigh Net-NTLMv1 - ANSWER-uses DES Net-NTLMv2 - ANSWER-uses HMAC-MD5 128 bits - ANSWER-Network New Technology LAN Manager (Net-NTLM) hashes size: NTLM - ANSWER-get these hashes when dumping the SAM database of any Windows OS, a Domain Controller's N database or from Mimikatz NTLM - ANSWER-uses MD4 128 bits - ANSWER-New Technology LAN Manager (NTLM) hash size: NTLM - ANSWER-You CAN perform Pass-The-Hash attacks with these hashes Net-NTLM - ANSWER-You CANNOT perform Pass-The-Hash attacks with these hashes nbtstat; nbtscan - ANSWER-NetBIOS scanning tools: