Guide to Network Security

A ____ (sometimes called a network protocol analyzer) is a network tool that collects copies of packets from the network and analyzes them or stores the packets for later analysis.

____ verify that an organization's security policies are prudent (cover the right issues) and are being implemented correctly.

Wired networks are just as vulnerable to sniffing as wireless networks.

A(n) ____ vulnerability scanner listens in on the network and identifies vulnerable versions of both server and client software.

Probably the most popular port scanner is ____, which runs on both UNIX and Windows systems.

Protocol analyzers are commonly referred to as ____.

Implementing applications that verify the true communication destination during execution help prevent vulnerabilities associated with ____.

One of the preparatory parts of the attack methodology is the collection of publicly available information about a potential target, a process known as ____.

Which vulnerability can occur if a programmer does not properly validate user input and allows an attacker to include unintended SQL input that can be passed to a database?

If Web software can access parts of the underlying operating system's file system through normal URL mappings, a(n) ____ may occur.

Organizations are safe from sniffer attacks when their computing environment is primarily a switched network environment.

Passive scanners are advantageous in that they do not require vulnerability analysts to get prior approval for testing.

Most C++ catastrophe vulnerabilities rely on uninitialized function pointers in a class.

Requirements for a complex password system include using a ____ value, implementing strong encryption, requiring periodic password changes, and generally implementing a system where guessing a password or its hash is very difficult.

Allowing users to decide which mobile code to run is the best way to resolve weaknesses introduced with mobile code.

The printf (user_input); command in C has the potential to cause a(n) ____ vulnerability.

The ____ command, available on most popular Web browsers, allows users to see the source code behind the page.

A(n) ____ uses all the techniques and tools available to an attacker in an attempt to compromise or penetrate an organization's defenses.

SPIKE can fuzz any protocol that utilizes ____.

The ____ stage of the attack methodology is a systematic survey of the target organization's Internet addresses, conducted to identify the network services offered by the hosts in that range.