Chapter 7 Flashcards

Question 1

Q

DoS

Answer

A

Denial-of-Service is and attack from a single source that attempts to disrupt the services provided by the attacked system

Question 2

Q

DDoS

Answer

A

Distributed Denial of Service is an attack on a system launched from multiple sources intended to make a computers resources or services unavailable to users

DDoS attacks typically include sustained, abnormally high network traffic

Question 3

Q

Escalation

Question 4

Q

Privilege

Question 5

Q

MAC Spoofing

Answer

A

An attack that changes the source MAC address

Question 6

Q

IP Spoofing

Answer

A

An attack that changes the source IP address

Question 7

Q

MITM

Answer

A

Man-in-the-Middle is an attack using active interception or eavesdropping

It uses a third computer to capture traffic sent between two other systems

Question 8

Q

ARP Poisoning

Answer

A

An attack that misleads systems about the actual MAC address of a system

Question 9

Q

ARP Request

Question 10

Q

ARP Reply

Question 11

Q

DNS Poisoning

Answer

A

An attack that modifies or corrupts DNS results

DNSSEC helps prevent DNS poisoning

Question 12

Q

DNSSEC

Answer

A

Domain Name System Security Extensions is a suite of extensions to DNS used to protect the integrity of DNS records and prevent some DNS attacks

Question 13

Q

Amplification Attack

Answer

A

An attack that increases the amount of bandwidth sent to a victim

Question 14

Q

Brute Force

Answer

A

A password attack that attempts to guess a password

Online brute force attacks guess passwords of online systems

Offline attacks guess passwords contained in a file or database

Question 15

Q

Dictionary

Answer

A

A password attack that uses a file of words and character combinations

The attack tries every entry within the file when trying to guess a password

Question 16

Q

Hash

Answer

A

A number created by executing a hashing algorithm against data, such as a file or message

Hashing is commonly used for integrity

Common hashing algorithms are MD5, SHA-1, and HMAC

Question 17

Q

MD5

Answer

A

Message Digest 5 is a hashing function used to provide integrity

MD5 creates 128-bit hashes, which are also referred to as MD5 checksums

Experts consider MD5 cracked

Question 18

Q

SHA

Answer

A

Secure Hash Algorithm is a hashing function used to provide integrity

Versions include SHA-1, SHA-2, and SHA-3

Question 19

Q

Pass the Hash

Answer

A

A password attack that captures and uses the hash of a password

It attempts to log on as the user with the hash and is commonly associated with the Microsoft NTLM protocol

Question 20

Q

Birthday

Answer

A

A password attack named after the birthday paradox in probability theory

The paradox states that for any random group of 23 people, there is a 50 percent chance that 2 of them have the same birthday

Question 21

Q

Collision

Answer

A

A hash vulnerability that can be used to discover passwords

A hash collision occurs when two different passwords create the same hash

Question 22

Q

Rainbow Table

Answer

A

A file containing precomputed hashes for character combinations

Rainbow tables are used to discover passwords

PBKDF2 and bcrypt thwart rainbow table attacks

Question 23

Q

Salt

Answer

A

A random set of data added to a password when creating the hash

PBKDF2 and bcrypt are two protocols that use salts

Question 24

Q

Replay Attack

Answer

A

An attack where the data is captured and replayed

Attackers typically modify data before replaying it

Question 25

Q

Known Plaintext

Answer

A

A cryptographic attack that decrypts encrypted data

In this attack, the attacker knows the plaintext used to create chiphertext

Question 26

Q

Typo Squatting

Answer

A

The purchase of a domain name that is close to a legitimate domain name

Attackers often try to trick users who inadvertently use the wrong domain name

Also called URL hijacking

Question 27

Q

Hosting a Malicious Website

Question 28

Q

Earning Ad Revenue

Question 29

Q

Reselling the domain

Question 30

Q

Clickjacking

Answer

A

An attack that tricks users into clicking something other than what they think they’re clicking

Question 31

Q

Session Hijacking

Answer

A

An attack that attempts to impersonate a user by capturing and using a session ID

Session IDs are stored in cookies

Question 32

Q

Domain Hijacking

Answer

A

An attack that changes the registration of a domain name without permission from the owner

Question 33

Q

Man-in-the-Browser

Answer

A

An attack that infects vulnerable web browsers

It can allow the attacker to capture browser session data, including keystrokes

Question 34

Q

Shimming

Answer

A

A driver manipulation method

It uses additional code to modify the behavior of a driver

Question 35

Q

Refactoring

Answer

A

A driver manipulation method

Developers rewrite the code without changing the driver’s behavior

Question 36

Q

Zero-day Vulnerability

Answer

A

A vulnerability or bug that is unknown to trusted sources but can be exploited by attackers

Zero-day attacks take advantage of zero-day vulnerabilities

Question 37

Q

Memory Leak

Answer

A

An application flaw that consumes memory without releasing it

Question 38

Q

Integer Overflow

Answer

A

An application attack that attempts to use or create a numeric value that is too big for an application to handle

Input handling and error handling thwart the attack

Question 39

Q

Buffer Overflow

Answer

A

An error that occurs when an application receives more input, or different input, than it expects

It exposes system memory that is normally inaccessible

Question 40

Q

Pointer Deference

Answer

A

A programming practice that uses a pointer to reference a memory area

A failed dereference operation can corrupt memory and sometimes even cause an application to crash

Question 41

Q

DLL Injection

Answer

A

An attack that injects a Dynamic Link Library (DLL) into memory and runs it

Attackers rewrite the DLL, inserting malicious code

Question 42

Q

Compiled Code

Answer

A

Code that has been optimized by an application and converted into an executable file

Compare with runtime code

Question 43

Q

Runtime Code

Answer

A

Code that is interpreted when it is executed

Compare with compiled code

Question 44

Q

Input Validation

Answer

A

A programming process that verifies data is valid before using it

Question 45

Q

Verifying Proper Characters

Question 46

Q

Implementing Boundary or Range Checking

Question 47

Q

Blocking HTML Code

Question 48

Q

Preventing the use of certain characters

Question 49

Q

Race Condition

Answer

A

A programming flaw that occurs when two sets of code attempt to access the same resource

The first one to access the resource wins, which can result in inconsistent results

Question 50

Q

Error-Handling

Answer

A

A programming process that handles errors gracefully

Question 51

Q

Errors to users should be general

Question 52

Q

Detailed information should be logged

Question 53

Q

Encryption

Answer

A

A process that scrambles, or ciphers, data to make it unreadable

Encryption normally includes a public algorithm and a private key

Compare with asymmetric and symmetric encryption

Question 54

Q

Authentication

Answer

A

The process that occurs when a user proves an identity, such as with a password

Question 55

Q

Dead Code

Answer

A

Code that is never executed or used

It is often caused by logic errors

Question 56

Q

obfuscation

Answer

A

An attempt to make something unclear or difficult to understand

Steganography methods use obfuscation to hide data within data

Question 57

Q

Static code analyzers

Question 58

Q

Dynamic Anlysis

Question 59

Q

Stress testing

Question 60

Q

Sandboxing

Answer

A

The use of an isolated area on a system, typically for testing

Virtual machines are often used to test patches in an isolated sandbox

Application developers sometimes use the chroot command to change the root directory

Question 61

Q

Model Verification

Question 62

Q

Waterfall

Answer

A

A software development life cycle model using a top-down approach

It uses multiple stages with each stage starting after the previous stage is complete

Compare with agile

Question 63

Q

Secure DevOps

Answer

A

A software development process using an agile-aligned methodology

It considers security through the lifetime of the project

Question 64

Q

Security Automation

Answer 47

A

The process used to prevent unauthorized changes

Unauthorized changes often result in unintended outages

Answer 48

A

A method of tracking changes to software as it is updated

Answer 49

A

The process of organizing tables and columns in a database

Normalization reduces redundant data and improves overall database performance

Answer 50

A

A group of SQL statements that execute as a whole, similar to a mini-program

Developers use stored procedures to prevent SQL injection attacks

Answer 51

A

An attack that injects code or commands

Common injection attacks are DLL injection, command injection, and SQL injection attacks

Answer 52

A

A web application vulnerability

Attackers embed malicious HTML or JavaScript code into a web site’s code, which executes when a user visits the site

Answer 53

A

A web application attack

XSRF attacks trick users into performing actions on web sites, such as making purchases, without their knowledge

Answer 54

A

A structure used to provide a foundation

Cyber security frameworks typically use a structure of basic concepts and provide guidance to professionals on how to implement security

Brainscape's Knowledge GenomeTM

Chapter 7 Flashcards

Protecting Against Advance Attacks

Brainscape's Knowledge Genome^TM