01. Introduction to Ethical Hacking

Question 1

What is CONFIDENTIALITY?

Answer 1

Assurance that the information is accessible only to those authorised to have access.

Question 2

What is INTEGRITY?

Answer 2

The trustworthiness of data or resources in terms of preventing improper or unauthorised changes.

Question 3

What is AVAILABILITY?

Answer 3

Assurance that the systems responsible for delivering, storing, and processing information are accessible when required by the authorized users.

Question 4

What is AUTHENTICITY?

Answer 4

Assurance that the systems responsible for delivering, storing, and processing information are accessible when required by the authorized users.

Question 5

What is NON-REPUDIATION?

Answer 5

Assurance that the systems responsible for delivering, storing, and processing information are accessible when required by the authorized users.

Question 6

What is the ATTACK EQUATION?

Answer 6

Attacks = Motive + Method + Vulnerability

Question 7

What are PASSIVE ATTACKS?

Answer 7

Passive attacks do not tamper with the data and involve intercepting and monitoring network traffic and data flow on the target network.
Examples: Sniffing, Eavesdropping, Network Traffic Analysis

Question 8

What are ACTIVE ATTACKS?

Answer 8

Active attacks tamper with the data in transit or disrupt the communication or services between the systems to bypass or break into secured systems.
Examples: DoS, Man-in-the-Middle, Session Hijacking and SQL Injection

Question 9

What are CLOSE-IN ATTACKS?

Answer 9

Close-in attacks are performed when the attacker is in close physical proximity with the target system or network in order to gather, modify, or disrupt access to information.
Examples: Social Engineering such as Eavesdropping, Shoulder Surfing, and Dumpster Diving

Question 10

What are INSIDER ATTACKS?

Answer 10

Insider attacks involve using privileged access to violate rules or intentionally cause a threat to the organization’s information or information systems.
Examples: Theft of physical devices, Planting Keyloggers, Backdoors, Malware

Question 11

What are DISTRIBUTION ATTACKS?

Answer 11

Distribution attacks occur when attackers tamper with hardware or software prior to installation.
Examples: Attackers tampering with hardware (or software) at its source or in transit

Question 12

What are three examples of OFFENSIVE WARFARE?

Answer 12

Web Application Attacks, Web Server Attacks, Malware Attacks, MITM Attacks, System Hacking

Question 13

What is DEFENSIVE INFORMATON WARFARE?

Answer 13

Refers to all strategies and actions designed to defend against attacks on ICT assets.

Question 14

What are three examples of DEFENSIVE WARFARE?

Answer 14

Prevention, Deterrence, Alerts, Detection, Emergency Preparedness, Response

Question 15

What is OFFENSIVE INFORMATION WARFARE?

Answer 15

Refers to information warfare that involves attacks against the ICT assets of an opponent.

Question 16

What is the CEH HACKING METHODOLOGY? (CHM)

Answer 16

Footprinting, Scanning, (Enumeration, Vulnerability Analysis), Gaining Access (Cracking Passwords, Vulnerability Exploitation), (Escalating Privileges), Maintaining Access (Executing Applications, Hiding Files), Clearing Logs (Covering Tracks)

Question 17

What is the CYBER KILL CHAIN METHODOLOGY?

Answer 17

Reconnaissance, Weaponisation, Delivery, Exploitation, Installation, Command and Control, Actions on Objectives

Question 18

Define the CYBER KILL CHAIN METHODOLOGY.

Answer 18

The cyber kill chain methodology is a component of intelligence-driven defense for the identification and prevention of malicious intrusion activities. It provides greater insight into attack phases, which helps security professionals to understand the adversary’s tactics, techniques, and procedures beforehand.

Question 19

What are TACTICS, TECHNIQUES, and PROCEDURES?

Answer 19

Tactics, Techniques, and Procedures (TTPs) refers to the patterns of activities and methods associated with specific threat actors or groups of threat actors.

Question 20

What are TACTICS? (TTP)

Answer 20

“Tactics” are the guidelines that describe the way an attacker performs the attack from beginning to the end.

Question 21

What are TECHNIQUES? (TTP)

Answer 21

“Techniques” are the technical methods used by an attacker to achieve intermediate results during the attack.

Question 22

What are PROCEDURES? (TTP)

Answer 22

“Procedures” are organizational approaches that threat actors follow to launch an attack.

Question 23

What is the MITRE ATT&CK FRAMEWORK? (PRE-ATT&CK and ENTERPRISE)

Answer 23

Reconnaissance, Weaponise, Deliver, Exploit, Control, Execute, Maintain

Question 24

Define the MITRE ATT&CK FRAMEWORK.

Answer 24

MITRE ATT&CK is a globally accessible knowledge base of adversary tactics and techniques based on real-world observations. The ATT&CK knowledge base is used as a foundation for the development of specific threat models and methodologies in the private sector, government, and the cybersecurity product and service community. The 14 tactic categories within ATT&CK for Enterprise are derived from the later stages (exploit, control, maintain, and execute) of the seven stages of the Cyber Kill Chain.

Question 25

What are the four meta-features of the DIAMOND MODEL OF INTRUSION ANALYSIS?

Answer 25

Adversary (An opponent who was behind the attack), Victim (The target that has been exploited or where the attack was performed), Capability (The attack strategies or how the attack was performed), Infrastructure (What the adversary used the reach the victim)

Question 26

What is HACKING?

Answer 26

Hacking refers to exploiting system vulnerabilities and compromising security controls to gain unauthorized or inappropriate access to a system’s resources. It involves modifying system or application features to achieve a goal outside of the creator’s original purpose. Hacking can be used to steal and redistribute intellectual property, leading to business loss

Question 27

What is a HACKER?

Answer 27

An intelligent individual with excellent computer skills who can create and explore computer software and hardware. Some hack with malicious intent such as to steal business data, credit card information, social security numbers, email passwords, and other sensitive data.

Question 28

What are BLACK HATS?

Answer 28

Individuals with extraordinary computing skills; they resort to malicious or destructive activities and are also known as crackers.

Question 29

What are WHITE HATS?

Answer 29

Individuals who use their professed hacking skills for defensive purposes and are also known as security analysts. They have permission from the system owner.

Question 30

What are GREY HATS?

Answer 30

Individuals who work both offensively and defensively at various times.

Question 31

What are SUICIDE HACKERS?

Answer 31

Individuals who aim to bring down the critical infrastructure for a “cause” and are not worried about facing jail terms or any other kind of punishment.

Question 32

What are SCRIPT KIDDIES?

Answer 32

An unskilled hacker who compromises a system by running scripts, tools, and software that were developed by real hackers.

Question 33

What are CYBER TERRORISTS?

Answer 33

Individuals with wide range of skills who are motivated by religious or political beliefs to create fear through the large-scale disruption of computer networks.

Question 34

What are STATE-SPONSORED HACKERS?

Answer 34

Individuals employed by the government to penetrate and gain top-secret information from and do damage to the information systems of other governments.

Question 35

What are HACKTIVISTS?

Answer 35

Individuals who promote a political agenda by hacking, especially by using hacking to deface or disable website.

Question 36

What are HACKER TEAMS?

Answer 36

A consortium of skilled hackers having their own resources and funding. They work together in synergy for researching the state-of-the-art technologies.

Question 37

What are INDUSTRIAL SPIES?

Answer 37

Individuals who perform corporate espionage by illegally spying on competitor organizations and focus on stealing information such as blueprints and formulas.

Question 38

What is an INSIDER?

Answer 38

Any trusted person who has access to critical assets of an organization. They use privileged access to violate rules or intentionally cause harm to the organization’s information system.

Question 39

What are CRIMINAL SYNDICATES?

Answer 39

Groups of individuals that are involved in organized, planned, and prolonged criminal activities. They illegally embezzle money by performing sophisticated cyber-attacks.

Question 40

What are ORGANISED HACKERS?

Answer 40

Miscreants or hardened criminals who use rented devices or botnets to perform various cyber-attacks to pilfer money from victims.

Question 41

What is ETHICAL HACKING?

Answer 41

Ethical hacking involves the use of hacking tools, tricks, and techniques to identify vulnerabilities and ensure system security. It focuses on simulating the techniques used by attackers to verify the existence of exploitable vulnerabilities in a system’s security. Ethical hackers perform security assessments for an organization with the permission of concerned authorities.