Intro Course

Question 1

Tool in Kali for cracking passwords in brute force attacks (dictionary)

Answer 1

Hydra

Question 2

Linux Distribution System

Answer 2

Kali Linux

Question 3

An attack that renders a machine unusable by flooding the target with information that causes a crash

Answer 3

DOS attack (denial of service attack)

Question 4

When a hacker places a sniffer between and catches the data between one host and another

Answer 4

MITM (Man in the middle) or on path attack

Question 5

Tool can be used to scan and map computers on a network

Answer 5

NMap

Question 6

The step of the attack in which the attacker opens and maintains communication channel between the target computer and the attacker computer

Answer 6

Command and Control (phase 6)(Lockheed Martin kill chain)

Question 7

When a hacker is manipulating someone to get something he wants

Answer 7

Social Engineering

Question 8

Three types of social engineering

Answer 8

Phishing attack, vishing attack, and Pretexting attack

Question 9

How is a Phishing attack done?

Answer 9

Via email

Question 10

How is a Vishing attack done?

Answer 10

Via phone

Question 11

How is a Pretexting attack done?

Answer 11

In person

Question 12

Works directly with the operation system and saves files to the file system

Answer 12

Desktop application

Question 13

What is the purpose of 2 factor authentication?

Answer 13

To add an extra layer to the authentication process

Question 14

Persistent module is another name for a backdoor

Answer 14

Installation (Phase 5)(Lockheed Martin kill chain)

Question 15

Analyses misconfigured endpoints

Answer 15

Microsoft Defender ATP

Question 16

What is an application?

Answer 16

A computer software designed for a specific task

Question 17

Software that allows us to manage the users

Answer 17

Active directory

Question 18

Tech that is used to detect and prevent unauthorized access to sensitive information (data breaches)

Answer 18

DLP Data Loss Prevention

Question 19

What is it when we improve the security of the operation system, we update the operation system to the latest version, and we remove unused features from the operation system

Answer 19

Hardening a server

Question 20

A command-line utility that create a new directory or folder in LINUX

Answer 20

MKDIR command

Question 21

When a user downloads a malicious program that encrypts their files and the hacker demands payment

Answer 21

Ransomware

Question 22

What is the primary purpose of a firewall?

Answer 22

to filter network traffic

Question 23

A command to list files and directories in LINUX

Answer 23

LS command

Question 24

What are the three States (forms) of data?

Answer 24

Use, transit, or rest

Question 25

What is used to secure data in transit

Answer 25

VPN (virtual private network)

Question 26

Used to divide a network into multiple zones

Answer 26

Segmentation

Question 27

Used to verify network connectivity between hosts

Answer 27

Ping command

Question 28

What do you call attacking vs reading about your target

Answer 28

Active attacks vs passive attack

Question 29

What is the primary objective of Incident Response based on NIST?

Answer 29

According to NIST it’s mitigating violations of security policies

Question 30

Reads content and generates new content from existing data

Answer 30

Generative AI

Question 31

Allows communication between devises in a small geographical area

Answer 31

LAN (Local Area Network)

Question 32

How does a data breach affect an organization?

Answer 32

Financial Impact, Legal Liability, and Reputation Loss

Question 33

What is risk?

Answer 33

Asset + vulnerability + threat = risk

Question 34

Which aspect of the CIA triad ensures data security?

Answer 34

Integrity

Question 35

What does the A in CIA stand for?

Answer 35

Availability

Question 36

A different attack method example. Outdated software, phishing email, malware infected attachment

Answer 36

Threat vector