CEHv8 BOOTCAMP: MODULE 02-FOOTPRINTING AND RECONNAISSANCE_SET-2 Flashcards

1
Q

Why do attackers track email communications?

A

To gather information about the physical location of an individual to perform social engineering that in turn may help in mapping target organization’s network.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is email tracking?

A

A method to monitor and spy on the delivered emails to the intended recipient.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Competitive Intelligence is the process of what?

A

Identifying, gathering, analyzing, verifying, and using information about your competitors from resources such as the internet.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is Competitive Intelligence in nature?

A
  • Non-interfering

* Subtle

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are 10 sources of Competitive Intelligence?

A
  • Company websites and employee ads.
  • Search engines, internet, and online databases.
  • Press releases and annual reports.
  • Trade journals, conferences, and newspaper.
  • Patent and trademarks.
  • Social engineering employees.
  • Product catalogues and retail outlets.
  • Analyst and regulatory reports.
  • Customer and vendor interviews.
  • Agents, distributors, and suppliers.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are 4 websites that can be used to find out how a company began and how it developed?

A
  • EDGAR Database (http://www.sec.gov/edgar.shtml)
  • Hoovers (http://www.hoovers.com)
  • LexisNexis (http://www.lexisnexis.com)
  • Business Wire (http://www.businesswire.com)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are 6 things an attacker can gather using Google Hacking techniques?

A
  • Advisories and server vulnerabilities.
  • Pages containing network or vulnerability data.
  • Pages containing logon portals.
  • Error messages that contain sensitive information.
  • Files containing passwords.
  • Sensitive directories.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Who are WHOIS databases maintained by?

A

Regional Internet Registries.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What does a WHOIS query return?

A
  • Domain name details.
  • Contact details of domain owner.
  • Domain name servers.
  • NetRange.
  • When a domain has been created.
  • Expiry records.
  • Records last updated.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

How can information gathered from WHOIS databases help an attacker?

A
  • Create detailed map of organizational network.
  • Gather personal information that assists to perform social engineering.
  • Gather other internal network details, etc.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are the 5 Regional Internet Registries (RIR)?

A
  • AFRINIC
  • ARIN
  • APNIC
  • RIPE NCC
  • LACNIC
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is SmartWHOIS?

A

A useful network information utility that allows you to look up all the available information about an IP address, hostname, or domain.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What can be determined by extracting DNS information?

A

Key hosts in the network and can perform social engineering attacks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What are 10 DNS record types?

A
  • A
  • MX
  • NS
  • CNAME
  • SOA
  • SRV
  • PTR
  • RP
  • HINFO
  • TXT
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Describe an “A” record.

A

Points to a host’s IP address.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Describe a “MX” record.

A

Points to domain’s mall server.

17
Q

Describe a “NS” record.

A

Points to host’s name server.

18
Q

Describe a “CNAME” record.

A

Canonical naming allows aliases to a host.

19
Q

Describe a “SOA” record.

A

Indicate authority for domain.

20
Q

Describe a “SRV” record.

A

Service records.

21
Q

Describe a “PTR” record.

A

Maps IP address to a hostname.