MOD1: Intro to Ethical Hacking

Question 1

Information accessed by those authorized to have access.

1. Integrity
2. Availability
3. Non-repudiation
4. Authenticity
5. Confidentiality

Answer 1

Confidentiality.

Question 2

Trustworthiness of data and resources (ex. HASH).

1. Integrity
2. Availability
3. Non-repudiation
4. Authenticity
5. Confidentiality

Answer 2

Integrity.

Question 3

Information being genuine (ex. Digital Signatures)

1. Integrity
2. Availability
3. Non-repudiation
4. Authenticity
5. Confidentiality

Answer 3

Authenticity.

Question 4

Information required for authorized users.

1. Integrity
2. Availability
3. Non-repudiation
4. Authenticity
5. Confidentiality

Answer 4

Availability.

Question 5

Guarantee that the sender of the message cannot later deny having sent / received the message.

1. Integrity
2. Availability
3. Non-repudiation
4. Authenticity
5. Confidentiality

Answer 5

Non-repudiation.

Question 6

Motive (goal) + Method + Vulnerability = ?

Answer 6

Attacks.

Question 7

Classification of attacks: List the 5 types of attacks.

Answer 7

1. Passive attack
2. Active attack
3. Close-in attack
4. Insider attack
5. Distribution attack

Question 8

What is passive attack?

Answer 8

Gaining information (reconnaissance) about the target without engaging with victim.
This is legal.

Question 9

What is active attack?

Answer 9

Gaining information (reconnaissance) about the target while actively communicating with the target system.
This is illegal.

Question 10

What is Close-in attack?

Answer 10

Attacker is in close physical proximity basis with the systems/networks (ex. shoulder surfing, dumpster driving, eavesdropping)

Question 11

What is an insider attack?

Answer 11

Already inside the organization (ex. backdoors, malware, theft of physical devices). This can be a current employee.

Question 12

What is a distribution attack?

Answer 12

Attackers tamper with hardware /software prior to installation.

Question 13

What are the phases of the Cyber Kill Chain Methodology?

Answer 13

Reconnaissance –> Weaponization –> Deliver –> Exploitation –> Installation –> Command & Control –> Actions on Objectives.

Question 14

What does TTPs stand for and what is it?

Answer 14

Tactics, Techniques, Procedures.
Tactics = the guidelines
Techniques = the “how”
Procedures = how organizations do

Question 15

IoCs (Indicators of Compromise) can fall into these 4 categories:

Answer 15

1. Email indicators
2. Network indicators
3. Host-based indicators
4. Behaviour indicators

Question 16

8 Types of Hacker classes.

Answer 16

1. Black hat (aka crackers)
2. White hat
3. Gray hat
4. Suicide hackers (don’t care if they get caught)
5. Script kiddies
6. Cyber Terrorists
7. State-sponsored hackers (ex. Cozy Bear)
8. Hacktivists (political agenda)

Question 17

5 Steps of Hacking.

• know this for exam

Answer 17

1. Recon (passive vs active)
2. Scanning (ex. port scanners)
3. Gaining Access
4. Maintaining Access
5. Clearing tracks (ex. remove log files)

Question 18

Ethical hacking = _________ + __________

Answer 18

Ethical hacking = permission + intent

Question 19

List some technical skills of a hacker.

Answer 19

• knowledge of major OS environments
• networking
• expert
• knowledgeable in security
• “high technical” knowledge for launching sophisticated attacks

Question 20

List some non-technical skills of a hacker.

Answer 20

• ability to learn quickly
• strong work ethics
• committed to organization’s security policies
• awareness of standards and law

Question 21

What is information Assurance?

Answer 21

Assurance that the CIA + authenticity of information is protected during the usage, processing, storage, and transmission of information.

Question 22

What are the 5 steps in the risk management cycle?

Answer 22

1. Risk Identification
2. Risk Assessment
3. Risk Treatment
4. Risk Tracking
5. Risk Review

Question 23

Role of AI and ML in cybersecurity?

Answer 23

AI/ML - mimicking decision making process and learning. Most of our security depends heavily on signature based detection.

Question 24

Standards and Laws:

PCI DSS

Answer 24

It’s a standard, not a law.

Payment Card Industry Data Security Standard

Question 25

Standards and Laws:

ISO/IEC 27001

Answer 25

ISO (International Organization for Standardization) and IEC (International Electrotechnical Commission)

Question 26

Standards and Laws:

HIPAA

Answer 26

Health Insurance Portability and Accountability Act

Question 27

Standards and Laws:

SOX

Answer 27

Sarbanes-Oxley Act

Question 28

Standards and Laws:

DMCA

Answer 28

Defense Contract Management Agency

Question 29

Standards and Laws:

FISMA

Answer 29

Federal Information Security Management Act