1.4 Network Attacks

Question 1

Unauthorized access point on a network that may or may not be malicious. Poses backdoor vulnerabilities to your network

Answer 1

Rogue AP

Question 2

Malicious access point that has the same SSID as your network but is controlled by an attacker. Can overpower legitimate access points to hijack network traffic.

Answer 2

Evil Twin AP

Question 3

The process of sending unsolicited messages to a phone via Bluetooth connection

Answer 3

Bluejacking

Question 4

An attack that involves the transfer of data to an attacking device via Bluetooth connection

Answer 4

Bluesnarfing

Question 5

What does an attacker exploint within a network packet in order to perform a wireless disassociation attack?

Answer 5

802.11 Management Frames

Question 6

You are working on your laptop when all of a sudden the wireless connection to your WIFI drops. It then proceeds to come back and drop off repeatedly. What type of attack are you likely subject to?

Answer 6

Wireless Disassociation

Question 7

This type of jamming involves the transmission of interfering wireless signals to decrease the recipiant’s signal-to-noise ratio. Can sometimes be unintentional from microwaves, flourescent lights, etc.

Answer 7

Radio Frequency (RF) Jamming

Question 8

An arbitrary number used in cryptography which is random, only used once, and is used to calculate a randomized hash for password and encryption. Secures against replay attacks, and is used “for the time being”

Answer 8

Nonce

Question 9

A type of nonce that is used for randomizing encryption schemes in encryption ciphers, WEP, and some SSL implementations.

Answer 9

Initialization Vectors

Question 10

A nonce most commonly associated with password randomization. Prevents passwords within a database being correlated in the event of a breach.

Answer 10

Salt

Question 11

Formerly known as man-in-the-middle attacks, this type of attack involves the attacker being on the network between you and your traffic’s destination. Traffic is redirected to the attacker, and then passed on to its destination.

Answer 11

On Path attack

Question 12

This attack utilizes the limited size of a MAC address table by sending requests from many different MAC addresses. When the address table is full it begins forwarding all traffic out of all ports.

Answer 12

MAC Flooding

Question 13

Doing this will allow an attacker to change their MAC address in order to circumvent filters on a network

Answer 13

MAC Spoofing

Question 14

An attack that injects a malicious IP address into a DNS cache of a DNS server or a client computer in order to direct web traffic to the wrong place.

Answer 14

DNS Poisoning

Question 15

This type of attack involves getting access to the domain registration, effectively transferring domain ownership to the attacker.

Answer 15

Domain Hijacking

Question 16

Takes advantage of poor spellings of domain names in order to redirect web traffic to a malicious site

Answer 16

Typosquatting/URL Hijacking

Question 17

This is what it’s called when a system is forced to fail in some capacity, or completely. Can be malicious or benign.

Answer 17

Denial of Service (DoS)

Question 18

Botnets are often used to carry out this type of attack that attempts at bringing down a service through a swarm of traffic spiking (i.e. consuming bandwidth or memory)

Answer 18

Distributed denial of service (DDoS)

Question 19

When a DDoS attack is reflected off of another device or service, such as using NTP, DNS, or ICMP to multiply the attack traffic

Answer 19

DDoS Amplification

Question 20

What could be a possible consequence for a DoS attack performed on a cloud-based application?

Answer 20

More resources consumed means more money the target has to pay the cloud provider

Question 21

What is it called when a DoS attack is carried out on hardware and software for industrial equipment, electric and utility grids, etc.?

Answer 21

Operational Technolgy (OT) DoS

Question 22

What are the main applications that can be exploited for scripting and automation attacks?

Answer 22

PowerShell

Python

Unix/Linux Shell

Macros

Visual Basic for Applications (VBA)