Lesson 14 - System Hacking

Question 1

What is the open source cross platform development environment and where did it originate from

Answer 1

.NET = .NET Core

Original .NET was a Microsoft framework

Question 2

What is the C2 Framework that is focuses on PowerShell but does have a Python component for Linux

Answer 2

Empire
Maintained by Kali Linux

no longer effective due to its popularity

Question 3

A C2 framework but on .NET so what is the advantage?

Answer 3

Covenant - Cross Platform

Aims to show the attack surface of .NET and make attacks through this vector easier.

Question 4

Cross Platform C2 framework but also contains payloads such as Apfell and Poseidon for testing MAC OS

Answer 4

Mythic

Question 5

What is a Powershell Tools that includes a large set of scripts for Windows Post Exploitation

Answer 5

Nishang

Question 6

What is the tool that is used to read from or write to TCP, UDP, or Unix Domain socket network connections. Also referred to as the swiss army of hacking tools

Answer 6

NETCAT

Syntax
nc [options] [target address] [port(s)]

-l listen mode (default)
- u starts in UDP mode
- p - port it should listen
- e program to excecute
- n not to perform DNS
- z - zero I/O mode without payload
- w timeout in seconds
- v verbose mode
- vv - very verbose mode

Question 7

What is the tool similar to NETCAT developed my Nmap as an improvement

Answer 7

Ncat

Question 8

What is the replacement for Telnet that runs over a secure TCP Port 22

Answer 8

Secure Shell (SSH)

unlike Netcat and Ncat SSH was not developed with network testing in mind.

Also has the ability to copy files which Telnet does not have

Question 9

What is the Linux command that is similar to Telnet but if the server has a .rhosts file configured you can bypass credentials

Answer 9

rsh/rlogin

Question 10

What is the big issues still prevalent in Cloud Security

Answer 10

Exposed Keys and misconfiguration.

Pacu is a good tool for this as long as you have access to

Question 11

Which Metasploit tool is the most common for performing enumeration and what is the term when an attacker uses a compromised host as a platform to spread an attack to other points in the network

Answer 11

Meterpreter

Pivot

Question 12

One example of the use of reverse engineering would be

Answer 12

Attempt to analyze Digital Rights Management (DRM)

Question 13

What are the 3 primary methods of reverse engineering

Answer 13

Decompilation
Disassembly
Debugging

Question 14

The process of reviewing uncompiled source code either manually or using automated tools

Answer 14

Static Code Analysis

Question 15

What is the reverse engineering method that will allow you to determine if the apps logic will produce unintended results

Answer 15

Decompilation - - tool that converts machine code/assembly to code in a specific higher level-language

Note: if they use obsucation then that can make interpretation difficult

Question 16

What is the reverse engineering software that converts machine language into assembly language

Answer 16

Disassembly

has some disadvantages vs decomplication but more common than decompilers and more accurate

Question 17

What is the reverse engineering tools used to analyze software as it excecutes

Answer 17

Debugging

running state by stepping through, halting or otherwise modifying programs underlying code

Question 18

A debugger included with Kali Linux that analyzes binary code found in 32 bit windows

Answer 18

OllyDbg

Question 19

A debugger that includes both CLI’s and GUIS and can load and modify Python Scripts during rutime

Answer 19

Immunity Debugger

Question 20

Open source debugger that works on most OS’s (Mac, Windows and Linux)

Answer 20

GNU Debugger (GDB)

Question 21

A commercial disassembler and debugging tool with numerous processors and file formats

Answer 21

Interactive Disassembler (IDA)

Question 22

What is the open-source reverse engineering tool developed by the NSA. Has disassember and decompiler and can use GDB and WinDBG

Answer 22

Ghidra

Question 23

What are unexplainable portion of code that servers no identifiable purpose

Answer 23

Code Caves
Result from compiling process