Meanings

Question 1

Black hats

Answer 1

They are engaged in potentially illegal activities, such as attacking computer systems for malicious purposes

Question 2

White hat

Answer 2

People who always do their work for good

Question 3

Grey hat

Answer 3

They are working for good but they are using the technology of blackhat hackers

Question 4

Reconnaissance

Answer 4

Research, identification and selection of targets

Question 5

Weaponization

Answer 5

Pairing remote access malware with exploit into a deliverable payload (e.g., Adobe PDF and Microsoft Office files).

Question 6

Delivery
(As in Intrusion Kill Chain)

Answer 6

Transmission of weapon to target (e.g., via email attachments, websites or USB drives)

Question 7

Exploitation
(As in Intrusion Kill Chain)

Answer 7

Once delivered, the weapon’s code is triggered, exploiting vulnerable applications or systems.

Question 8

Installation
(As in Intrusion Kill Chain)

Answer 8

The weapon installs a backdoor on a target’s system, allowing persistent access

Question 9

Command & Control
(As in Intrusion Kill Chain)

Answer 9

Outside server communication with the weapons providing “hands-on keyboard access” inside the target’s network

Question 10

Actions on objective
(As in Intrusion Kill Chain)

Answer 10

The attacker works to achieve the objective of the intrusion, which can include exfiltration or destruction of data, or intrusion of another target.