Attack Types

Question 1

IOC - Define

Answer 1

Indicator of Compromise

Question 2

Virus

Answer 2

Malicious Code that requires user interaction to install and replicate.

Question 3

Crypto-malware/Ransomware

Answer 3

Malicious applications that scare or scam users into paying money or granting access.

Question 4

Trojan/RAT

Answer 4

Friendly software that contains malicious software.

Question 5

Worms

Answer 5

Self replicating program without user interaction

Question 6

Network Service Worms

Answer 6

Worm that exploits a network

Question 7

Mass Mailing Worms

Answer 7

Work that spreads thorugh email

Question 8

PUP

Answer 8

Potentially Unwanted Program which tend to be adware or spyware.

Question 9

Fileless Virus

Answer 9

Malware that operates in memory. Hooks in through Powershell or WMI

Question 10

Botnet

Answer 10

Malicious Code that infects a large number of hosts

Question 11

Logic Bomb

Answer 11

Malicious code that triggers after a specific time or on a date or after a specific activity etc

Question 12

Empire, PowerSploit, MetaSploit, Cobalt Strike

Answer 12

Fileless Attack Framework

Question 13

Spyware

Answer 13

Malicious software that collects user activity and reports back

Question 14

Keylogger

Answer 14

Malicious code that collects all keystrokes

Question 15

Rootkits

Answer 15

Malicious code that installs at the OS or Kernal level

Question 16

Backdoors

Answer 16

Software that installs for the purpose of opening ports to install additional software

Question 17

Spraying

Answer 17

A form of brute force where the attacker has acquired a bunch of usernames and are testing passwords against them.

Question 18

Brute Force

Answer 18

Systematic approach of trying different passwords

Question 19

Rainbow Table

Answer 19

Precomputed table to reverse cryptographic hashes

Question 20

Dictionary Attack

Answer 20

Using known words to brute force

Question 21

Brutus, Cain and Abel, Crack, Aircrack-ng, John the Ripper

Answer 21

Dictionary attack tools

Question 22

Salting

Answer 22

Adding random data to hashing algorithm so that each hash is unique even if the same password is used twice.

Question 23

Known Plaintext/ Ciphertext

Answer 23

Access to both can allow an attacker to reveal further information like secret keys. AES is not vulnerable to this attack.

Question 24

AES

Answer 24

Advanced Standard Encryption

Question 25

Birthday Attack

Answer 25

Brute force that works on hash collisions

Question 26

Hash Collisions

Answer 26

When two different passwords accidentally have the same hash and therefore the hash can be used without knowing the password.

Question 27

Downgrade Attack

Answer 27

Forcing a system to use a lower quality mehtod of communication. Mostly in place so systems can talk to legacy systems. Used in MITM

Question 28

Adverserial AI

Answer 28

Tained data fed into machine learning system

Question 29

Supply Chain Attack

Answer 29

Attack on an organization by targeting less secure elements in a supply network

Question 30

Cloud Based Attack