1.2 Application/Service attacks

Question 1

DoS(Denial of Service)

Answer 1

Flooding a target machine or resource with many requests to overload the system and prevent the use of its resources

Question 2

DDos (distributed denial of service)

Answer 2

Flooding a target machine or resource with many requests to overload the system and prevent the use of its resources using multiple different sources

Question 3

Man in the middle

Answer 3

The attacker alters the communication between two parties who believe they are directly communicating

Question 4

Buffer Overflow

Answer 4

Program that attempts to write more data than can be held in a fixed block of memory

Question 5

Injection

Answer 5

Occurs from processing invalid data, inserts code into the vulnerable computer program and changes the course of execution

Question 6

Cross-site request forgery(XSRF)

Answer 6

Unauthorized commands are sent from a user that is trusted by a website. Allows the attacker to steal cookies and harvest passwords

Question 7

Privilege escalation

Answer 7

An Attack that exploits a vulnerability that allows them to gain access to resources that they normally would be restricted from accessing

Question 8

ARP poisoning

Answer 8

the act of falsifying the IP to MAC address resolution system employed by TCP/IP

Question 9

Cross-site Scripting (XXS)

Answer 9

found in web applications, allows for an attacker to inject client side scripts into webpages.

Question 10

Amplification

Answer 10

The amount of traffic sent by the atter is originally small but then is repeatedly multiplied to place a massive strain on the victim’s resources, in an attempt to cause it to fail or malfunction

Question 11

DNS Poisoning

Answer 11

is a type of attack that exploits DNS vulnerabilities by diverting internet traffic away from a legitimate server and towards a fake one

Question 12

Domain Hijacking

Answer 12

The act of changing the registration os a domain name without the permission of the victim

Question 13

Man in the browser

Answer 13

A proxy trojan that infects web browsers to capture browser session data

Question 14

Zero day

Answer 14

Exploiting flaws or vulnerabilities that are undisclosed to the world, and therefore have no defense

Question 15

Replay

Answer 15

Network based attack where valid data transmission is rebroadcasted, repeated, or delayed.

Question 16

Press the Hash

Answer 16

an authentication attack the captures the hash of a password, the attacker then attempts to log on as the user with the stolen hash. commonly associated with Microsoft NTLM (New Technology LAN Manager) Protocol

Question 17

Hijacking and related attacks

Answer 17

I. Clickjacking- overlay of malicious link over what appears to be a legitimate website
II. Session hijacking- an attack in which an attacker attempts to impersonate the user by using their legitimate session token
III. URL hijacking- Redirects the user to a false website based on misspelling the URL(AKA Typosquatting

Question 18

Driver Manipulation

Answer 18

I. Shimmering- the process of injecting alternate or compensation code into a system in order to alter its operations without changing the original or existing code
II. Refactoring- Rewrites the internal processing of code without changing its behavior