14 d4 hw

Question 1

An ___ takes advantage of a system or applications vulnerability.

Answer 1

exploit

Question 2

Nmap switch option “-sA” performs ___ Scan.

Answer 2

ACK Stealth

Question 3

The ___ ___ Act of ___ modernized US Cybercrime legislation and mandates life sentences for offenders.

Answer 3

CyberSecurity Enhancement Act of 2002

Question 4

___ Scan sends packets with FIN, URG, and PSH control flags set.

Answer 4

TCP Xmas Tree

Question 5

___ is an entity that sees all messages, but is unable to modify them; is able to inject new messages.

Answer 5

Man-on-the-side

Question 6

Title 18 ___ safeguards computers from fraud and related activities.

Answer 6

USC 1030

Question 7

Nmap switch option ___ is an active fingerprinting method that performs OS detection.

Answer 7

-o

Question 8

A ___ is caused when applications are allowed to write beyond allocated memory due to lack of input validation.

Answer 8

buffer overflow

Question 9

___ represents an entity that sits between systems to observe and modify data.

Answer 9

man-in-the-middle

Question 10

___ is used in Linux to provide interactive monitoring of active processes.

Answer 10

Top

Question 11

___ is a simple offline password cracking tool found on Kali.

Answer 11

John the Ripper

Question 12

___ is a troubleshooting tool used to determine if a host is reachable.

Answer 12

ping

Question 13

___ fingerprinting is also known as TCP stack fingerprinting.

Answer 13

Passive OS fingerprinting

Question 14

SYN ___ Scan is also known as half-open scan.

Answer 14

Stealth

Question 15

___ is used in UNIX to clean from binary files.

Answer 15

Zap3

Question 16

___ is a UNIX/Linux tool that can perform DNS zone transfers.

Answer 16

dig

Question 17

Title 18 USC 1029 deals with fraud and related activities in connection with ___.

Answer 17

Access Devices

Question 18

___ is used to display software package information in UNIX.

Answer 18

pkginfo

Question 19

___ is used to search inside text files for matching patterns.

Answer 19

grep

Question 20

___ is the encapsulation of data for traversing through the network.

Answer 20

tunneling

Question 21

___ is used in UNIX to provide interactive monitoring of active processes.

Answer 21

prstat

Question 22

___ is know as the “take it with you” scanner.

Answer 22

scanline

Question 23

___ displays target hosts’ NFS exported file system.

Answer 23

showmount -e

Question 24

___ displays current system information in UNIX.

Answer 24

uname -a

Question 25

___ is a technique to connect to applications to identify the version.

Answer 25

banner grabbing

Question 26

___ Scan sends packets with no control flag set.

Answer 26

TCP null

Question 27

___ describes actions taken to minimize the exploitation footprint with a target network, and remain undetected in a network.

Answer 27

tradecraft

Question 28

___ fingerprinting involves connecting to a target port and reviewing the resulting TCP packets sent as a response to identify default values.

Answer 28

Active OS

Question 29

___ is a fully functional payload that is delivered in one shot during the exploit.

Answer 29

single

Question 30

Nmap switch option “-sT” performs a ___ Scan.

Answer 30

TCP Connect

Question 31

Nmap ___ mode sends serialized scans every five minutes.

Answer 31

Paranoid (0)

Question 32

Nmap switch option “-sV” performs ___.

Answer 32

Version Detection

Question 33

Solaris vfs_getvfssw() is used to perform ___ after exploitation of a UNIX system.

Answer 33

privilege escalation

Question 34

___ - ___ rootkits exploit the function of LKM to hide below the application layer.

Answer 34

kernel-mode

Question 35

___ payload initiates a connection from the target to the handler.

Answer 35

Reverse TCP