Cyber Attacks and Vulnerabilities

Question 1

Vulnerability where code placed in programs that bybass normal authentication and security mechanisms

Answer 1

Backdooor

Question 2

Method of accessing unauthorized directories by moving through the directory structure on a remote server

Answer 2

Directory Traversal

Question 3

when attacker is able to execute or run commands on a victim computer

Answer 3

Arbitrary Code Execution

Question 4

Attacker is able to execute commands remotely

Answer 4

RCE - Remote Code Execution

Question 5

Attack against a vulnerability that is unknown to original developer or manufacturer

Answer 5

Zero Day

Question 6

attack vector that uses malicious SQL code for backend database manipulation to access information that was not intended to be displayed

Answer 6

SQL Injection

Question 7

When a process stores data outside the memory range allocated by the developer

Answer 7

Buffer Overflow

Question 8

Occurs when an attack fills up the buffer with a non-operational instruction (NOP) so that the return address may hit a NOP and continue on until it finds the attacker’s code to run

Answer 8

Smash the Stack

Question 9

An attack that overflows a server with traffic, overloading and rendering it inaccessible to legitimate users

Answer 9

DOS - Denial of Service

Question 10

Occurs when an attacker embeds malicious scripting commands into a trusted website

Answer 10

XSS - Cross Site Scripting

Question 11

Type of XSS attack that attempts to get data provided by the attacker to be saved on the web server by the victim

Answer 11

Stored/Persistent XSS

Question 12

Type of XSS attack that attempts to have a non persistent effect activated by a victim clicking a link on the site

Answer 12

Reflected XSS

Question 13

XSS attack that attempts to exploit the victim’s web browser

Answer 13

DOM-Based XSS

Question 14

Occurs when attacker forces a user to execute actions on a web server for which they are already authenticated

Answer 14

Cross Site Request Forgery - XSRF/CSRF

Question 15

attack that involves multiple connected online devices, collectively known as a botnet, which are used to overwhelm a target website with fake traffic.

Answer 15

DDOS - Distributed Denial of Service

Question 16

Attack that manipulates or compromises the logic of an XML application or service.

Answer 16

XML injection

Question 17

XML attack that embeds a request for local resource

Answer 17

XML External Entity XXE

Question 18

XML encodes entities that expand to exponential sizes, consuming memory on the host and potentially crashing (similar to DOS)

Answer 18

XML Bomb

Question 19

Software vulnerability when the resulting outcome from execution processes is directly dependent on the order and timing of certain events, and those events fail to execute in the order and timing intended by the developer

Answer 19

Race Condition

Question 20

Password attack where a threat actor uses a single common password or a short list of common passwords against multiple accounts on the same application. This avoids the account lockouts that typically occur when an attacker uses a brute force attack on a single account by trying many passwords.

Answer 20

Spraying Attack

Question 21

Password Attack that uses a predefined list of words

Answer 21

Dictionary Attack

Question 22

What is a rainbow table attack?

Answer 22

Password cracking method that uses a special table (a “rainbow table”) to crack the password hashes in a database. Used to speed up the process of password guessing.

Question 23

What is an evil twin attack?

Answer 23

fraudulent Wi-Fi access point that appears to be legitimate but is set up to eavesdrop on wireless communications.

Question 24

What is bluesnarfing?

Answer 24

When a hacker accesses a wireless device through a Bluetooth connection.

Question 25

What is bluejacking?

Answer 25

Sending unsolicited messages over bluetooth

Question 26

What is wireless disassociation attack?

Answer 26

also known as deauthentication attacks

wireless network attacks that target the 802.11 Wi-Fi protocol by sending forged deauthentication frames to a wireless access point or client device, causing the device to disconnect from the network.

Question 27

What is the most common form of DDoS attack?

Answer 27

Network Based

Question 28

What factor has the biggest impact on domain reputation?

Answer 28

Distribution of spam

Question 29

What enables client side URL redirection? Hosts or localhost?

Answer 29

Hosts

Question 30

What is DNS poisoning?

Answer 30

Remapping a domain name to a rogue IP address

Question 31

What is domain hijacking?

Answer 31

a situation in which domain registrants lose control over their domain names due to unlawful actions of third parties

Question 32

An attack that relies on altering the burned-in address of a NIC to assume the identity of a different network host is known as

Answer 32

MAC cloning, MAC spoofing

Question 33

What is MAC flooding?

Answer 33

network attack that overflows a switch’s memory used to store the MAC address table.

Question 34

What is a smurf attack?

Answer 34

A Smurf attack is a distributed denial-of-service attack in which large numbers of ICMP packets with the intended victim’s spoofed source IP are broadcast to a computer network using an IP broadcast address.

Key word is ICMP Packets

Question 35

What is a ping of death attack?

Answer 35

A ping of death is a type of attack on a computer system that involves sending a malformed or otherwise malicious ping to a computer.

Question 36

What is used in data URL phishing?

Answer 36

Prepending

Question 37

What is prepending?

Answer 37

Prepending is the technique of adding a data URL prefix before a legitimate URL, making it appear like a secure link to the user. For example, an attacker may use a link such as “data:text/html,https://www.paypal.com” to create a fake PayPal login page. When the user clicks on the link, the malicious payload is executed, leading to the theft of the user’s PayPal credentials.

Question 38

What is cryptomalware?

Answer 38

Malware that uses encryption

Question 39

What is an SSRF attack?

Answer 39

Server Side Request Forgery - involves an attacker abusing server functionality to access or modify resources. The attacker targets an application that supports data imports from URLs or allows them to read data from URLs.

Question 40

What is Integer Overflow?

Answer 40

programming error where an application tries to store a numeric value in a variable that is too small to hold it?

Question 41

What is a null pointer deference?

Answer 41

When a computer attempts to read a variable value from an invalid memory address

Question 42

Exploits the trust a user’s web browser has in a website….XSS or XSRF?

Answer 42

XSS

Question 43

User’s browser executes attacker’s script…..XSS or XSRF?

Answer 43

XSS