Domain 1.2 - Compare and contrast types of attacks.

Question 1

____________ is the process by which intruders gain access to your facilities, your network, and even your employees by exploiting the generally trusting nature of people.

Answer 1

Social engineering

Question 2

What is Phishing?

Answer 2

A form of social engineering in which you ask someone for a piece of information that you are missing by making it look as if it is a legitimate request.

Question 3

How is Spear Phishing different from Phishing?

Answer 3

Phishing that is tailored for a specific individual, a group, or organization is Spear Phishing.

Question 4

Whaling is Spear Phishing for what types of users?

Answer 4

C-level corporate executives, politicians and celebrities.

Question 5

Define Vishing

Answer 5

Phishing with Voice.

Question 6

What is it called when you follow someone through a door they just unlocked?

Answer 6

Tailgating

Question 7

Impersonation

Answer 7

Pretending to be someone you are not.

Question 8

If I email you a link to a Fake Anti-Virus, what is that considered?

Answer 8

A Hoax

Question 9

Everyone else is doing it. I am going to do it to.

Answer 9

Consensus (or Social Proof)

Question 10

Convincing the person who is being tricked that there is a limited supply of something can often be effective if carefully done. is the principle of

Answer 10

Scarcity

Question 11

What is the Three-way Handshake?

Answer 11

When you connect to a server your system sends a SYN packet, the server responds with a SYN/ACK, then your computer sends an ACK. This establishes the connection.

Question 12

What is a SYN flood?

Answer 12

The attacker’s computer sends a SYN packet to a target server. The server responds with a SYN/ACK. The attacker does not send a final ACL, but instead sends more SYN packets.

Question 13

How does a replay attack work?

Answer 13

After a successful Man-In-the-Middle (MITM) attack occurs. in which the attacker intercepts data between a target and a service the target is reaching. The attacker uses that intercepted data to reconnect to the service as the target user.

Question 14

How do you prevent a Buffer Overflow?

Answer 14

Prevented with Input Validation

Question 15

What kind of attack is this:

’ Select * FROM tblUSERS WHERE username = ‘” or ‘1’ =’1’ AND PASSWORD = ‘ ‘ or ‘1’=’1’ ‘

Answer 15

SQL Injection

Question 16

When an attacler gains access to a restricted directory using HTTP, it is called ________ ________.

Answer 16

Directory Traversal.

Question 17

An attacker would exploit a vulnerability within a website or web application that the victim would visit, essentially using the vulnerable website as a vehicle to deliver a malicious script to the victim’s browser.

Answer 17

Cross-site scripting (XSS)

Question 18

What does XSS Stand for?

Answer 18

Cross-Site Scripting.

Question 19

How do you prevent XSS?

Answer 19

Input Validation

Question 20

When a website acquires your credentials

Answer 20

XSS

Question 21

XSRF

Answer 21

Cross-site request forgery

Question 22

CSRF

Answer 22

Cross-site request forgery

Question 23

Involves unauthorized commands coming from a trusted user to the website.

Answer 23

XSRF/CSRF

Question 24

Cross-site request forgery uses this

Answer 24

the current authenticated users credentials.

Question 25

Best way to prevent XSRF/CSRF

Answer 25

Disable the running of scripts.

Question 26

When a website uses your credentials

Answer 26

Cross-site request forgery XSRF/CSRF

Question 27

Vertical Privilege Escalation

Answer 27

requires the attacker to grant himself higher privileges

Question 28

Horizontal Privilege Escalation

Answer 28

used to assume the identity of another user with similar privileges.

Question 29

Involves a user gaining more rights and privileges than they should have.

Answer 29

Privilege Escalation

Question 30

What is ARP Spoofing?

Answer 30

ARP spoofing is a type of attack in which a malicious actor sends falsified ARP (Address Resolution Protocol) messages over a local area network.

Question 31

This results of this attack link an attacker’s MAC address with the IP address of a legitimate computer or server on the network.

Answer 31

ARP Spoofing

Question 32

DNS Poisoning is what?

Answer 32

The DNS server is given information about a name server that it thinks is legitimate but isn’t. The result is the DNS server sends you to a web address of my choosing instead of the website you were attempting to reach.

Question 33

What does DNS stand for

Answer 33

Domain Name Server

Question 34

What does DNS do?

Answer 34

It ties a fully qualified domain name (FQDN) to an IP address.

Question 35

What exploit is referred to as a Zero Day?

Answer 35

A zero day vulnerability refers to a hole in software that is unknown to the vendor. This security hole is then exploited by hackers before the vendor becomes aware and hurries to fix it

Question 36

What exploit takes advantage of a weakness in NTLM and Lan Manager, where it was possible for an attacker to send an authenticated copy of the password hash value with a valid username and authenticate to any remote server?

Answer 36

Pass The Hash

Question 37

What does Clickjacking involve?

Answer 37

Clickjacking involves a transparent layer onto of a link/icon you click on. When you click on the transparent/translucent layer without now it, you are redirected somewhere else.

Question 38

____________ describes when the item used to validate a user’s session, such as a cookie, is stolen and used by another to establish a session with a host that thinks it is still communicating with the first party.

Answer 38

Session hijacking

Question 39

What is it called when a squatter predicts URL typos and then registers those domain names to direct traffic to their own site.

Answer 39

URL Hijacking/Typo Squatting

Question 40

Shimming involves what?

Answer 40

A shim is a small library that is created to intercept API (Application Program Interface) calls transparently and do one of three things: handle the operation itself; change the arguments passed; or redirect the request elsewhere.

Question 41

When you change the MAC address of your device to be that of a different device in order to gain access that the other device has.

Answer 41

MAC Spoofing.

Question 42

Initialization Vector

Answer 42

A weakness in WEP that can allow the encryption algorithm to be cracked in as little at 5 min.

Question 43

Any access point added to your network that is not authorized is considered a what?

Answer 43

A Rogue Access point.

Question 44

What is an Evil Twin?

Answer 44

An attack in which a rogue wireless access point poses as a legitimate wireless service provider to intercept information that users transmit.

Question 45

A technology that allows a device to connect to your wireless router at the push of a button.

Answer 45

Wi-Fi Protected Setup (WPS). this is very susceptible to brute force attacks.

Question 46

How do you detect and stop a rogue access point?

Answer 46

WIPS - WiFi Intruder Prevention System

Question 47

The gaining of unauthorized access through a bluetooth connection

Answer 47

Bluesnarfing

Question 48

Bluejacking

Answer 48

Bluejacking is the sending of unsolicited messages over Bluetooth to another device.

Question 49

NFC stands for

Answer 49

Near Field Communication

Question 50

What is the birthday theory/Probability theory.

Answer 50

With 23 people in the room, you have a 50 percent chance that 2 will have the same birthday and only 75 people are needed for a 99.9 percent chance.

Question 51

What is a rainbow table?

Answer 51

A database of Hashed Usernames and Passwords up to 14 characters, used to compared to a Username/Password hash files stolen from a server to determine usable credentials.

Question 52

What attack involves attempting a list of common words hoping to find one that works.

Answer 52

Dictionary Attack

Question 53

This attack tries every character one at a time, building up to 14 characters. Will eventually crack your password, given unlimited time and resources.

Answer 53

Brute Force Attack

Question 54

How does a downgrade attack work?

Answer 54

The attacker tries to trick the target into downgrading to a less secure method of communication. Then exploits that less secure technology. IE downgrading from TLS 1.2 to SSL V3.

Question 55

As part of your training program, you’re trying to educate users on the importance of security. You explain to them that not every attack depends on implementing advanced technological methods. Some attacks take advantage of human shortcomings to gain access that should otherwise be denied. What term do you use to describe attacks of this type?

A. Social engineering
B. IDS system
C. Perimeter security
D. Biometric

Answer 55

A. Social engineering

Question 56

What is the form of social engineering in which you simply ask someone for a piece of information that you want by making it look as if it is a legitimate request?

A. Hoaxing
B. Swimming
C. Spamming
D. Phishing

Answer 56

D. Phishing

Question 57

Which of the following is the best description of shoulder surfing?

A. Following someone through a door they just unlocked
B. Figuring out how to unlock a secured area
C. Watching someone enter important information
D. Stealing information from someone’s desk

Answer 57

C. Watching someone enter important information

Question 58

As the security administrator for your organization, you must be aware of all types of attacks that can occur and plan for them. Which type of attack uses more than one computer to attack the victim?

A. DoS
B. DDoS
C. Worm
D. UDP attack

Answer 58

B. DDoS

Question 59

An administrator at a sister company calls to report a new threat that is making the rounds. According to him, the latest danger is an attack that attempts to intervene in a communications session by inserting a computer between the two systems that are communicating. Which of the following types of attacks does this constitute?
A. Man-in-the-middle attack
B. Backdoor attack
C. Worm
D. TCP/IP hijacking

Answer 59

A. Man-in-the-middle attack

Question 60

Which of the following involves unauthorized commands coming from a trusted user to the website?

A. ZDT
B. HSM
C. TT3
D. XSRF

Answer 60

D. XSRF

Question 61

An IV attack is usually associated with which of the following wireless protocols?

A. WEP
B. WAP
C. WPA
D. WPA2

Answer 61

A. WEP

Question 62

Which of the following types of attacks involves the sending of unsolicited messages over a Bluetooth connection?

A. Bluesmurfing
B. Bluesnarfing
C. Bluewhaling
D. Bluejacking

Answer 62

D. Bluejacking

Question 63

As the Security Administrator, you discovered that a PC was compromised while a user was browsing the internet. You discovered that while the system uses TLS it was forced to use SSL 1.0. What attack was used by the attacker?

A. Collision Attack
B. Downgrade Attack
C. Replay Attack
D. Brute Force Attack

Answer 63

B. Downgrade Attack

Question 64

Which cryptographic attack is based on having a strong probability vs a guaranteed match?

A. Brute Force Attack
B. Dictionary Attack
C. Birthday Attack
D. Known Text Attack

Answer 64

C. Birthday Attack