6. Infrastructure Attack Flashcards
1
Q
Metasploit
A
Framework to:
- Scan Network
- Enumeration
- Exploitation
- Privilege Escalation
- Lateral Movement
2
Q
Vulnerability
A
System Weaknesses
3
Q
Exploit
A
Attack performed on weaknesses
4
Q
Payload
A
Code that runs after the exploit is done.
5
Q
CVE
A
Common Vulnerabilities and Exposures
6
Q
SearchSploit
A
gathers recent information about exploits
7
Q
msfconsole
A
Metasploit tool
- Search
- Use
- Set
8
Q
Metasploit Search
A
search [name]
9
Q
Reverse Shell Types
A
- Bind Shell: Connects to target to gain remote shell
2. Reverse Shell: Attacker runs a listener, Target connects with shell.
10
Q
msfvenom
A
Metasploit tool using msfpayloads and msfencode
11
Q
Meterpreter
A
Metasploit Payload running in memory. 1. Getuid 2. pwd 3. ls/cd 4. Download 5. Session 6. Background 7 Clearev
12
Q
Lateral Movement
A
use credentials from one computer to gain access to another computer in the same level in the organization
13
Q
Eternal Blue
A
created by NSA
14
Q
Bloodhound
A
Collects info on attacked network
15
Q
Neo4j
A
set up DB user account
