Module 1 - Intro to Ethical Hacking Flashcards by Nicholas Phelps

Existence of a weakness, design, or implementation error that can lead to an unexpected event compromising the security of the system.

a. Vulnerability
b. Exploit
c. Payload
d. Zero-Day Attack
e. Daisy Chaining
f. Doxing
g. Bot

a. Vulnerability

How well did you know this?

Not at all

Perfectly

A breach of IT system security through vulnerabilities.

a. Vulnerability
b. Exploit
c. Payload
d. Zero-Day Attack
e. Daisy Chaining
f. Doxing
g. Bot

b. Exploit

How well did you know this?

Not at all

Perfectly

The part of an exploit code that performs the intended malicious action, such as destroying, creating backdoors, and hijacking computer.

a. Vulnerability
b. Exploit
c. Payload
d. Zero-Day Attack
e. Daisy Chaining
f. Doxing
g. Bot

c. Payload

How well did you know this?

Not at all

Perfectly

An attack that exploits computer application vulnerabilities before the software developer releases a patch for the vulnerability.

a. Vulnerability
b. Exploit
c. Payload
d. Zero-Day Attack
e. Daisy Chaining
f. Doxing
g. Bot

d. Zero-Day Attack

How well did you know this?

Not at all

Perfectly

It involves gaining access to one network and/or computer and then using the same information to gain access to multiple networks and computers that contain desirable information.

a. Vulnerability
b. Exploit
c. Payload
d. Zero-Day Attack
e. Daisy Chaining
f. Doxing
g. Bot

e. Daisy Chaining

How well did you know this?

Not at all

Perfectly

Publishing personally identifiable information about an individual collected from publicly available databases and social media.

a. Vulnerability
b. Exploit
c. Payload
d. Zero-Day Attack
e. Daisy Chaining
f. Doxing
g. Bot

f. Doxing

How well did you know this?

Not at all

Perfectly

A software application that can be controlled remotely to execute or automate predefined tasks.

a. Vulnerability
b. Exploit
c. Payload
d. Zero-Day Attack
e. Daisy Chaining
f. Doxing
g. Bot

g. Bot

How well did you know this?

Not at all

Perfectly

Assurance that the information is accessible only to those authorized to have access.

a. Confidentiality
b. Integrity
c. Availability
d. Authenticity
e. Non-Repudiation

a. Confidentiality

How well did you know this?

Not at all

Perfectly

Gaurantee that the sender of a message cannot later deny having sent the message and that the recipient cannot deny having received the message.

a. Confidentiality
b. Integrity
c. Availability
d. Authenticity
e. Non-Repudiation

e. Non-Repudiation

How well did you know this?

Not at all

Perfectly

Assurance that the systems responsible for delivering, storing, and processing information are accessible when required by the authorized users.

a. Confidentiality
b. Integrity
c. Availability
d. Authenticity
e. Non-Repudiation

c. Availability

How well did you know this?

Not at all

Perfectly

The trustworthiness of data or resources in terms of preventing improper and unauthorized changes.

a. Confidentiality
b. Integrity
c. Availability
d. Authenticity
e. Non-Repudiation

b. Integrity

How well did you know this?

Not at all

Perfectly

Refers to the characteristic of a communication, document or any data that ensures the quality of being genuine.

a. Confidentiality
b. Integrity
c. Availability
d. Authenticity
e. Non-Repudiation

d. Authenticity

How well did you know this?

Not at all

Perfectly

Is an on-demand delivery of IT capabilities where sensitive data of organizations and their clients is stored.

a. Cloud Computer Threats
b. Advanced Persistent Threats (APT)
c. Viruses and Worms
d. Ransomware

a. Cloud Computing Threats

How well did you know this?

Not at all

Perfectly

Restricts access to the computer system’s files and folders and demands an online ransom payment to the malware creator(s) in order to remove the restrictions.

a. Cloud Computer Threats
b. Advanced Persistent Threats (APT)
c. Viruses and Worms
d. Ransomware

d. Ransomware

How well did you know this?

Not at all

Perfectly

Are the most prevalent networking threat that are capable of infecting a network within seconds.

a. Cloud Computer Threats
b. Advanced Persistent Threats (APT)
c. Viruses and Worms
d. Ransomware

c. Viruses and Worms

How well did you know this?

Not at all

Perfectly

Is an attack that is focused on stealing information from the victim machine without thy user being aware of it.

a. Cloud Computer Threats
b. Advanced Persistent Threats (APT)
c. Viruses and Worms
d. Ransomware

b. Advanced Persistent Threats (APT)

How well did you know this?

Not at all

Perfectly

Include many software applications that are used to access the device remotely.

a. Botnet
b. Insider Attack
c. Phishing
d. Web Application Threats
e. IoT Threats

e. IoT Threats

How well did you know this?

Not at all

Perfectly

Is a huge network of the compromised systems used by an intruder to perform various network attacks.

a. Botnet
b. Insider Attack
c. Phishing
d. Web Application Threats
e. IoT Threats

a. Botnet

How well did you know this?

Not at all

Perfectly

Is the practice of sending an illegitimate email falsely claiming to be from a legitimate site in an attempts to acquire a user’s personal or account information.

a. Botnet
b. Insider Attack
c. Phishing
d. Web Application Threats
e. IoT Threats

c. Phishing

How well did you know this?

Not at all

Perfectly

It is an attack performed on a corporate network or on a single computer by an entrusted person who has authorized access to the network.

a. Botnet
b. Insider Attack
c. Phishing
d. Web Application Threats
e. IoT Threats

b. Insider Attack

How well did you know this?

Not at all

Perfectly

Attackers target web applications to steal credentials, set up phishing site, or acquire private information to threaten the performance of the website and hamper its security.

a. Botnet
b. Insider Attack
c. Phishing
d. Web Application Threats
e. IoT Threats

d. Web Application Threats

How well did you know this?

Not at all

Perfectly

Individuals who promote a political agenda by hacking, or especially by defacing or disabling websites.

a. Black Hats
b. White Hats
c. Gray Hats
d. Suicide Hackers
e. Script Kiddies
f. State Sponsored Hackers
g. Hactivists

g. Hacktivists

How well did you know this?

Not at all

Perfectly

An unskilled hacker who compromises system by running scripts, tools, and software developed by real hackers.

a. Black Hats
b. White Hats
c. Gray Hats
d. Suicide Hackers
e. Script Kiddies
f. State Sponsored Hackers
g. Hactivists

e. Script Kiddies

How well did you know this?

Not at all

Perfectly

Individuals who work both offensively and defensively at various times.

a. Black Hats
b. White Hats
c. Gray Hats
d. Suicide Hackers
e. Script Kiddies
f. State Sponsored Hackers
g. Hactivists

c. Gray Hats

How well did you know this?

Not at all

Perfectly

Individuals with extraordinary computing skills, resorting to malicious or destructive activities and are also know as crackers. a. Black Hats b. White Hats c. Gray Hats d. Suicide Hackers e. Script Kiddies f. State Sponsored Hackers g. Hactivists

a. Black Hat

Individuals employed by the government to penetrate and gain top-secret information and to damage information systems of other governments. a. Black Hats b. White Hats c. Gray Hats d. Suicide Hackers e. Script Kiddies f. State Sponsored Hackers g. Hactivists

f. State Sponsored Hackers

Individuals who aim to bring down critical infrastructure for a "cause" and are not worried about facing jail terms or any other kind of punishment. a. Black Hats b. White Hats c. Gray Hats d. Suicide Hackers e. Script Kiddies f. State Sponsored Hackers g. Hactivists

d. Suicide Hackers

Individuals professing hacker skills and using them for defensive purposes and are also known as security analysts. They have permission from the system owner. a. Black Hats b. White Hats c. Gray Hats d. Suicide Hackers e. Script Kiddies f. State Sponsored Hackers g. Hactivists

b. White Hat

What are the 5 hacking phases? a. Spoofing b. Gaining Access c. Documenting d. Scanning/Enumeration e. Reconnaissance/Footprinting f. Tracking g. Maintaining Access h. Phishing i. Clearing Tracks

e. Reconnaissance/Footprinting d. Scanning/Enumeration b. Gaining Access g. Maintianing Access i. Clearing Tracks

What are the 2 types of Reconnaissance?

Passive & Active

Involves acquiring information **without directly interacting with the target.** a. Active b. Passive

b. Passive

Involves interacting with the target directly by any means. a. Active b. Passive

a. Active

Refers to the pre-attack phase when the attacker **scans the network** for specific information on the basis of information gathered during reconnaissance. a. Extract Information b. Pre-Attack Phase c. Port Scanner

b. Pre-Attack Phase

Attackers extract information such as **live machines**, port, port status, OS details, device type, **system uptime**, etc. to lauch attack. a. Extract Information b. Pre-Attack Phase c. Port Scanner

a. Extract Information

Can include use of dialers, **port scanners**, network mappers, ping tools, vulnerability scanners, etc. a. Extract Information b. Pre-Attack Phase c. Port Scanner

c. Port Scanner

Involves the use of hacking tools, tricks, and techniques to **identify vulnerabilities** so as to ensure system security. a. Black Hat b. Gray Hat c. Ethical Hacking d. White Hat

c. Ethical Hacking

Controlled zone, as it **provides a barrier** between internal networks and Internet. a. Internet Zone b. DMZ c. Intranet Zone d. Management Network Zone

b. DMZ

Secured zone with **strict policies.** a. Internet Zone b. DMZ c. Intranet Zone d. Management Network Zone

d. Management Network Zone

Uncontrolled zone, as it is **outside the boundaries** of an organization. a. Internet Zone b. DMZ c. Intranet Zone d. Management Network Zone

a. Internet Zone

Controlled zone with **no heavy restrictions.** a. Internet Zone b. DMZ c. Intranet Zone d. Management Network Zone

c. Intranet Zone

Types of Security Policies: **No restrictions** on usage of system resources. a. Promiscuous Policy b. Permissive Policy c. Prudent Policy d. Paranoid Policy

a. Promiscuous Policy

Types of Security Policies: Policy begins wide open and only known **dangerous services/attacks or behaviors** are blocked. It should be updated regularly to be effective. a. Promiscuous Policy b. Permissive Policy c. Prudent Policy d. Paranoid Policy

b. Permissive Policy

Types of Security Policies: It provides **maximum security** while allowing known but necessary dangers. It **blocks all services** and only save/necessary services are enabled individually; everything logged. a. Promiscuous Policy b. Permissive Policy c. Prudent Policy d. Paranoid Policy

c. Prudent Policy

Types of Physical Security Control: Prevent **security violations** and enforce various access control mechanisms. Examples include door lock, security guard, etc. a. Preventive Controls b. Detective Controls c. Deterrent Controls d. Recovery Controls e. Compensating Controls

a. Preventive Controls

Types of Physical Security Control: Detect Security violations and **record any intrusion attempts**. Examples include motion detector, alarm systems and sensors, video surveillance, etc. a. Preventive Controls b. Detective Controls c. Deterrent Controls d. Recovery Controls e. Compensating Controls

b. Detective Controls

Types of Physical Security Control: Used to discourage attackers and **send warning messages** to the attackers to discourage an intrusion attempt. Examples include various types of warning signs. a. Preventive Controls b. Detective Controls c. Deterrent Controls d. Recovery Controls e. Compensating Controls

b. Deterrent Controls

Types of Physical Security Control: Used to recover from security violation and **restore information and systems** to a persistent state. Examples include disaster recovery, business continuity plans, backup systems, etc. a. Preventive Controls b. Detective Controls c. Deterrent Controls d. Recovery Controls e. Compensating Controls

d. Recovery Controls

Types of Physical Security Control: Used as an alternative control when the **intended controls failed** or cannot be used. Examples include hot site, backup power system, etc. Work Arounds a. Preventive Controls b. Detective Controls c. Deterrent Controls d. Recovery Controls e. Compensating Controls

e. Compensating Controls

Risk Management: **Identifies the sources**, causes, consequences, etc. of the internal and external risks affecting the security of the organization. a. Risk Identification b. Risk Assessment c. Risk Treatment d. Risk Tracking e. Risk Review

a. Risk Identification

Risk Management: Assesses the organization's risk and provides an estimate on the likelihood and impact of the risk. a. Risk Identification b. Risk Assessment c. Risk Treatment d. Risk Tracking e. Risk Review

b. Risk Assessment

Risk Management: **Selects and implements appropriate controls** on the identified risks. a. Risk Identification b. Risk Assessment c. Risk Treatment d. Risk Tracking e. Risk Review

c. Risk Treatment

Risk Management: **Ensures appropriate controls are implemented** to handle risks and identifies the chance of a new risk occurring. a. Risk Identification b. Risk Assessment c. Risk Treatment d. Risk Tracking e. Risk Review

d. Risk Tracking

Risk Management: **Evaluates the performance** of the implemented risk management strategies. a. Risk Identification b. Risk Assessment c. Risk Treatment d. Risk Tracking e. Risk Review

e. Risk Review

Performs real-time SOC (Security Operations Center) functions like identifying, monitoring, recording, auditing, and analyzing security incidents.

SIEM (Security Incident and Event Management)

Used to **ensure the confidentiality, integrity,** and **availability** of the network services.

Network Security Controls

Network Security Controls: - The **selective restriction** of access to a place or other system/network resource. - It **protects information assets** by determining who can and cannot access them. - It **involves user identification**, authentication, authorization, and accountablility. a. Access Control b. Identification c. Authentication d. Authorization e. Cryptography f. Accounting g. Security Policy

a. Access Control

Types of Access Control: Owner grants permission a. Discretionary Access Control (DAC) b. Mandatory Access Control (MAC) c. Role-Based Access

a. Discretionary Access Control (DAC)

Types of Access Control: - It does not permit the end user **to decide who can access the information.** - It does not permit the user to **pass privileges** to other users, as the access could then be circumvented. a. Discretionary Access Control (DAC) b. Mandatory Access Control (MAC) c. Role-Based Access

b. Mandatory Access Control (MAC)

Types of Access Control: - Users can be assigned **access to systems, files**, and **fields on a one-by-one basis** whereby access is granted to the user for a particular file or system. - It can simplify the **assignment of privileges** and ensure that individuals have all the privileges necessary to perform their duties. a. Discretionary Access Control (DAC) b. Mandatory Access Control (MAC) c. Role-Based Access

c. Role-Based Access

Information Security Controls: Describes a method to ensure that an **individual holds a valid identify**. Examples: username, account no, username, CAC, etc. a. Identification b. Authentication c. Authorization d. Accounting

a. Identification

Information Security Controls: It involves validating the **identity of an individual**. Examples: password, PIN, etc. a. Identification b. Authentication c. Authorization d. Accounting

b. Authentication

Information Security Controls: It involves **controlling the access** of information for an individual. Emamples: A user can only read the file but not write to or delete it. (Access to) a. Identification b. Authentication c. Authorization d. Accounting

c. Authorization

Information Security Controls: It is a method of keeping **track** of **user actions** on the network. It keeps track of who, when, how the users access the network. It helps in identifying authorized and unauthorized actions. a. Identification b. Authentication c. Authorization d. Accounting

d. Accounting

Information Security Controls: Refers to unauthorized access or disclosure of **sensitive or confidential data.**

Data Leakage (Spillage)

Information Security Controls: The process of making a **duplicate copy** of critical data that can be used to restore and recover purposes when a primary copy is lost or corrupted either accidentally or on purpose.

Backup

Penetration Testing Concepts: A method of evaluating the security of an information system or network by **simulating an attack to find out vulnerabilities** that an attacker can exploit.

Penetration Testing

Penetration Testing Concepts: Focuses on **discovering the vulnerabilities in the information system** but provides no indication if the vulnerabilities can be exploited or the amount of damage that may result from the successful exploitation of the vulnerability. **Inside Passive** a. Penetration Testing b. Vulnerability Assessment c. Scanning/Enumeration d. Gaining Access

b. Vulnerability Assessment

Penetration Testing Concepts: A methodological approach to security assessment that **encompasses the security audit** and vulnerability assessment and demonstrates if the vulnerabilities in system can be successfully exploited by attackers. **Outside Active** a. Penetration Testing b. Vulnerability Assessment c. Scanning/Enumeration d. Gaining Access

a. Penetration Testing

Penetration Testing Concepts: - An approach where a set of **security responders** performs analysis of an information system to assess the adequacy and efficiency of its security controls. - Has **access** to all the organizational resources and information. - Primary role is to detect and mitigate attackers activities, and to anticipate how **surprise attacks** might occur. a. Red Teaming b. Gray Teaming c. White Teaming d. Blue Teaming

d. Blue Teaming

Penetration Testing Concepts: - An approach where a team of ethical hackers perform penetration test on an information system with **no or very limited access** to the organization's internal resources. - It may be conducted **with** or **without** warning. - It is proposed to **detect network** and **system vulnerabilities** and **check security** from an attacker's perspective approach to network, system, or information access. a. Red Teaming b. Gray Teaming c. White Teaming d. Blue Teaming

a. Red Teaming

Information Security Laws and Standards: Provides a comprehensive framework for ensuring the **effectiveness of information security controls** over information resources that support Federal operations and assets.

FISMA (Federal Information Security Management Act)

Information Security Threats and Attack Vectors: An attack in which the perpetrator seeks to make a machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a host conntected to the internet. a. Zombie Attack b. Denial of Service (DoS) c. Privilege Escalation d. Distributed Denial of Service (DDoS) e. Input Validation f. Error Handling

b. Denial of Service (DoS)

Information Security Threats and Attack Vectors: The act of exploiting a bug, design flaw or configuration oversight in an operating system or software application to gain elevated access to resources that are normally protected from an application or user. a. Zombie Attack b. Denial of Service (DoS) c. Privilege Escalation d. Distributed Denial of Service (DDoS) e. Input Validation f. Error Handling

c. Privilege Escalation

Information Security Threats and Attack Vectors: Occurs when more data is put into a fixed-length **buffer** then the buffer can handle. The extra information, which has to go somewhere, can **overflow** into adjacent memory space, corrupting or overwriting ythe data held in that space. a. Phishing b. Denial of Service (DoS) c. Privilege Escalation d. Buffer Overflow e. Input Validation f. Error Handling

d. Buffer Overflow

Information Security Threats and Attacks Vectors: Social Engineering attack often used to steal user data, including login credentials and credit card numbers. It occurs when an attacker, masquerading as a trusted entity, dupes a victim into opening an email, instant message, or text message. a. Phishing b. Denial of Service (DoS) c. Privilege Escalation d. Buffer Overflow e. Input Validation f. Error Handling

a. Phishing

Information Security Controls: \_\_\_\_\_\_\_\_ ________ is a set of defined processes to **identify, analyze, prioritize**, and **resolve security incidents** to restore normal service operations as quickly as possible and prevent future recurrence of the incident. a. Classification and Prioritization b. Detection and Analysis c. Incident Management d. Forensic Investigation

c. Incident Management

Information Security Controls: Once complete, the security incident requires additional review and analysis before closing the case. a. Preparation for Incident Handline and Response b. Detection and Analysis c. Classification and Prioritization d. Notification e. Containment f. Forensic Investigation g. Eradication and Recovery h. Post-Incident Activities

h. Post-Incident Activities

Information Security Controls: The process of recovering the system or network to its original state. The process is done only after the completion of all internal and external actions. a. Preparation for Incident Handline and Response b. Detection and Analysis c. Classification and Prioritization d. Notification e. Containment f. Forensic Investigation g. Eradication and Recovery h. Post-Incident Activities

g. Eradication and Recovery

Information Security Controls: Performed to find the root cause of the incident to know what exactly happened to the information system. a. Preparation for Incident Handline and Response b. Detection and Analysis c. Classification and Prioritization d. Notification e. Containment f. Forensic Investigation g. Eradication and Recovery h. Post-Incident Activities

f. Forensic Investigation

Information Security Controls: - Is a crucial step in the incident management process that focuses on preventing additional damage. - Ensuring all the critical and essential computer resources are kept and protected at a safe place. - Regular check on infected system is done to know their operational status. a. Preparation for Incident Handline and Response b. Detection and Analysis c. Classification and Prioritization d. Notification e. Containment f. Forensic Investigation g. Eradication and Recovery h. Post-Incident Activities

e. Containment

Information Security Controls: After the incident has been identified and classified, suitable people and teams are notified about the problem. a. Preparation for Incident Handline and Response b. Detection and Analysis c. Classification and Prioritization d. Notification e. Containment f. Forensic Investigation g. Eradication and Recovery h. Post-Incident Activities

d. Notification

Information Security Controls: Each incident is categorized and sub-categorized to troubleshoot the incident securely. Accurate categorization helps to allocate the management to the right team that has the appropriate knowledge and skills to handle the situation in real time. a. Preparation for Incident Handline and Response b. Detection and Analysis c. Classification and Prioritization d. Notification e. Containment f. Forensic Investigation g. Eradication and Recovery h. Post-Incident Activities

c. Classification and Prioritization

Information Security Controls: - Security events are monitored and carefully analyzed using firewalls, intrusion detection and prevention systems, etc. - Identifying signatures of an incident, analyzing those signatures, recording the incident, prioritizing various incidents and alerting incidents. a. Preparation for Incident Handline and Response b. Detection and Analysis c. Classification and Prioritization d. Notification e. Containment f. Forensic Investigation g. Eradication and Recovery h. Post-Incident Activities

b. Detection and Analysis

Information Security Controls: - All the actions are pre-planned and detailed guidelines are provided to the employees at this step. - Various policies and procedures are established to stay well equipped. a. Preparation for Incident Handline and Response b. Detection and Analysis c. Classification and Prioritization d. Notification e. Containment f. Forensic Investigation g. Eradication and Recovery h. Post-Incident Activities

a. Preparation for Incident Handling and Response