Module 3 - Scanning Networks

Question 1

Network Scanning Concepts:

Refers to a set of procedures used for identifying hosts, ports, and services in a network.

a. Network Incident Response
b. Network Eavesdropping
c. Network Scanning
d. Network Discovery

Answer 1

c. Network Scanning

Question 2

Network Scanning Concepts:

What is the correct sequence for a 3-Way Handshake?

a. ACK–SYN–SYN/ACK
b. SYN–SYN/ACK–ACK
c. SYN–ACK–SYN/ACK
d. SYN/ACK–SYN–ACK

Answer 2

b. SYN–SYN/ACK–ACK

Question 3

Scanning Tools:

• Network administrators can use this for network inventory, managing service upgrade schedules, and monitoring host or service uptime.
• Attacker uses it to extract information such as live hosts on the network, services (application name and version), type of packet filters/firewalls, operating systems, and OS Versions.
  a. Nmap
  b. Fing
  c. NetScanTools Pro
  d. Hping2 / Hping3

Answer 3

a. Nmap

Question 4

Scanning Techniques:

What TCP flags are used in a Xmas Scan/Attack?

a. FIN–RST–URG
b. FIN–PSH–SYN
c. URG–PSH–RST
d. URG–PSH–FIN

Answer 4

d. URG–PSH–FIN

Question 5

Scanning Techniques:

The following is an example of what kind of attack?

SYN–SYN/ACK, SYN–SYN/ACK, SYN–SYN/ACK, SYN–SYN/ACK, SYN–SYN/ACK, SYN–SYN/ACK, SYN–SYN/ACK, SYN–SYN/ACK, SYN–SYN/ACK, SYN–SYN/ACK, SYN–SYN/ACK, SYN–SYN/ACK

a. DoS Syn
b. Syn Flood
c. Syn DD0S
d. Flood Syn

Answer 5

b. Syn Flood

Question 6

Scanning Techniques:

What protocol is used when you conduct a PING or TRACEROUTE?

a. TCP
b. UDP
c. IP
d. ICMP

Answer 6

d. ICMP

Question 7

Scanning Techniques:

In Xmas scan, attackers send a TCP frame to a remote device with ___, ___, and ___ flags set. (Choose 3)

a. SYN
b. PSH
c. ACK
d. SYN/ACK
e. URG
f. FIN
g. RST

Answer 7

b. PSH
e. URG
f. FIN

Comments:

• XMas scan manipulate the PSH, URG and FIN.
• The RFC 793 expected behavior is that any TCP segment with an out-of-state Flag sent to an open port is discarded, whereas segments with out-of-state flags sent to closed ports should be handled with a RST in response.

Question 8

Scanning Beyond IDS and Firewall:

Sending fragmented probe packets to the intended server which re-assembles it after receiving all the fragments.

a. Source Routing
b. Packet Fragmentation
c. IP Address Decoy
d. IP Address Spoofing
e. Proxy Server

Answer 8

b. Packet Fragmentation

Question 9

Scanning Beyond IDS and Firewall:

Use routers and firewalls at your network perimeter to filter incoming packets that appear to come from an internal IP address.

a. IP Spoofing
b. Egress Filtering
c. Ingress Filtering
d. Proxy

Answer 9

c. Ingress Filtering

Question 10

Scanning Beyond IDS and Firewall:

Pratice that aims at ip spoofing prevention by blocking the outgoing packets with a source address that is not inside.

a. IP Spoofing
b. Egress Filtering
c. Ingress Filtering
d. Proxy

Answer 10

b. Egress Filtering

Question 11

Scanning Tools:

The following syntax is used to conduct what kind of scan or find out what information?

Nmap -P

a. Operating Systems
b. Stealth Scan
c. Speed Scan
d. TCP Scan
e. Open Ports

Answer 11

e. Open Ports

Question 12

Scanning Tools:

The following syntax is used to conduct what kind of scan or find out what information?

Nmap -O

a. Operating Systems
b. Stealth Scan
c. Speed Scan
d. TCP Scan
e. Open Ports

Answer 12

a. Operating Systems

Question 13

Scanning Tools:

The following syntax is used to conduct what kind of scan or find out what information?

Nmap -sS

a. Operating Systems
b. Stealth Scan
c. Speed Scan
d. TCP Scan
e. Open Ports

Answer 13

b. Stealth Scan

Question 14

Scanning Tools:

The following syntax is used to conduct what kind of scan or find out what information?

Nmap -T

a. Operating Systems
b. Stealth Scan
c. Speed Scan
d. TCP Scan
e. Open Ports

Answer 14

d. TCP Scan

Question 15

Scanning Tools:

The following syntax is used to conduct what kind of scan or find out what information?

Nmap -T2

a. Operating Systems
b. Stealth Scan
c. Speed Scan
d. TCP Scan
e. Open Ports

Answer 15

c. Speed Scan

Question 16

Scanning Beyond IDS and Firewall:

• Remove all the identifying information from the user’s computer while the user surfs the internet.
• Privacy and Anonymity
• Protects from online attacks
  a. Anonymizers
  b. Proxy
  c. Firewall
  d. IDS
  e. IPS

Answer 16

a. Anonymizers

Question 17

_________ is the method used to determine the operating system running on a remote target system.

Answer 17

Banner Grabbing

Comments:

Some methods can be used to determine the remote OS as nmap and others.

Question 18

Scanning Techniques:

If a port is closed you will get a ____ packet which reestablishes a connection.

a. SYN
b. ACH
c. FIN
d. URG
e. RST
f. PSH

Answer 18

e. RST

Question 19

Scanning Beyond IDS and Firewall:

A _____ server is an application that can serve as an intermediary for connecting with other computers.

-Goes to the internet on your behalf.

Answer 19

Proxy Server

Question 20

Scanning Beyond IDS and Firewall:

Increases a hackers anonymity by connecting through multiple proxy servers.

a. Proxy Server
b. Proxy Workbench
c. Proxy Chaining
d. Proxy Switcher

Answer 20

c. Proxy Chaining

Question 21

Scanning Pen Testing:

The penetration testing report will help the system administrators to:

a. Network Discovery
b. Harden Systems
c. Scan Beyond IDS and Firewall
d. Draw Network Diagrams

Answer 21

b. Harden Systems

Question 22

What port is LDAP?

Answer 22

389

Question 23

What port is IMAP?

Answer 23

143

Question 24

What is port 23?

Answer 24

Telnet

Question 25

What port is SMTP?

Answer 25

25

Question 26

What port is TFTP?

Answer 26

69

Question 27

What port is 53?

Answer 27

DNS

Question 28

What port is Kerberos?

Answer 28

88

Question 29

What port is 123?

Answer 29

NTP