Final Exam

Question 1

What are the 5 Digital Footprinting Methods?

Answer 1

Social Networking
Web Searching
Network Enumeration
Domain Name System-Based Reconnaissance
Network-Based Reconnaissance

Question 2

What does ssh do and how would you use it?

Answer 2

ssh -p “port number” user@host

how to login to a hosts account (remote login program)

Question 3

What is cat and how would you use it?

Answer 3

Cat displays files

cat “file name”

Question 4

what is cd and how would you use it?

Answer 4

cd is used to change directories

cd “directorypath&filename”

Question 5

what is ls and how would you use it?

Answer 5

ls is used to list the contents of a directory

usage: ls

or

ls -als

Question 6

what is base64 and how would you use it?

Answer 6

base64 is used to encode/decode data and print to standard output

usage: base64 -d “file to decode”

Question 7

what is tr and how would you use it?

Answer 7

tr translates characters

usage: tr listofcharacterstotranslate listofcharacterstotranslateto

Question 8

what is mkdir and how would you use it?

Answer 8

mkdir makes new directories

usage: mkdir “directoryname”

Question 9

what is cp and how would you use it?

Answer 9

cp copies files and directories

usage: cp “source destination”

Question 10

what is xxd and how would you use it?

Answer 10

xxd makes a hexdump or does the reverse

usage: xxd “infile” “outfile”

Question 11

what is gunzip, bunzip2, and zcat and what do they do?

Answer 11

these commands decompress files to standard output

usage: command filename

Question 12

what is nc and how would you use it?

Answer 12

nc is an arbitrary TCP and UDP connections and listens.
It can open TCP connections, send UDP packets, listen on arbitrary TCP and UDP ports, do port scanning, and deals with both IPv4 and IPv6

usage: nc “options” “destination” “port”

Question 13

what is openssl s_client and how would you use it?

Answer 13

the s_client command implements a generic SSL/TLS client which connects to a remote host using SSL/TLS

usage: openssl s_client -connect host:port -pass pass: thepasswordincleartext

Question 14

what are CVEs?

Answer 14

Common Vulnerabilities and Exposures

Question 15

what is the purpose of network enumeration?

Answer 15

it identifies domain names as well as other resources in the target network

Question 16

what protocol does the ping utility use?

Answer 16

ICMP

Question 17

which scan is more likely to be logged by the target system, a TCP connect scan or a TCP half-open scan?

Answer 17

TCP connect scan

Question 18

write the name command to perform a network sweep

Answer 18

nmap -sP

Question 19

what protocol is used in a network sweep?

Answer 19

ICMP

Question 20

what happens on wire shark when you run a TCP connect scan?

Answer 20

syn
syn, ack
ack
rst, ack

Question 21

what does wire shark look like when you run a TCP SYN scan?

Answer 21

SYN
SYN, ACK
RST

Question 22

what nmap command determines the operating system?

Answer 22

nmap -O

Question 23

what knowledge would a pen tester gain from the ICMP message?

Answer 23

if a port is unreachable or unavailable

Question 24

what type of scan produces a UDP theN a ICMP destination unreachable?

Answer 24

UDP ping scan

Question 25

what is the purpose of the TCP RST flag?

Answer 25

RST means the connection is reset

Question 26

what does it mean when nmap reports that a port is filtered?

Answer 26

Nmap cannot determine whether the port is open because packet filtering prevents its probes from reaching the port

Question 27

what does it mean when nmap reports that a port is unfiltered?

Answer 27

the unfiltered states means that a port is accessible, but Nmap cannot determine whether it is open or closed