Networking Threats, Assessments, And Defenses

Question 1

Tracert/traceroute

Answer 1

How host connects and path and time took

Question 2

nslookup/dig

Answer 2

Query DNS records - IP and DNS server

Question 3

ipconfig/ifconfig

Answer 3

Info on host - network configuration

Question 4

Nmap

Answer 4

Scan host for vulnerabilities and open ports

Question 5

Ping/pathping

Answer 5

Check if remote hosts are reachable - ICMP

Question 6

Hping

Answer 6

Like ping but Linux

Question 7

Netstat

Answer 7

Current communication on a host - help find open ports and make connections

Question 8

Netcat

Answer 8

Finds networks and scans for open ports- TCP or UDP - can start a connection to ports

Question 9

ARP

Answer 9

Show Address Resolution Protocol table

Question 10

Curl

Answer 10

Transfer data over network using certain protocols

Question 11

The Harvester

Answer 11

Footprinting of network infrastructure - emails, subdomains, hosts, employee names, open ports

Question 12

Sn1per

Answer 12

Auto scanner for network vulnerabilities

Question 13

Scanless

Answer 13

Auto port scan scrapper - vulnerability exploitation

Question 14

Dnsenum

Answer 14

Find IP blocks - can evaluate security posture

Question 15

Cuckoo

Answer 15

Malware analysis tool

Question 16

Head

Answer 16

First 10 lines of file
-n for specified line

Question 17

Tail

Answer 17

Last 10 lines of file
-n for specified line

Question 18

Cat

Answer 18

Shows content

Question 19

Grep

Answer 19

Look for string of characters

Question 20

Chmod

Answer 20

Change file permissions

Question 21

Logger

Answer 21

Adds messages to /var/log/syslog from CLI

Question 22

Tcpreplay

Answer 22

Modify and replay network traffic that’s already captured

Question 23

Tcpdump

Answer 23

Capture network communication

Question 24

DD

Answer 24

Make disk images, copy files

Question 25

Memdump

Answer 25

Dumps memory to standard output

Question 26

WinHex

Answer 26

Disk editor and hexadecimal editor for recovery and forensics

Question 27

FTK Imager

Answer 27

Imaging tool to preview data

Question 28

Autopsy

Answer 28

Forensics tool; windows

Question 29

Crunch tool

Answer 29

Password attack tool Makes wordlists

Question 30

Hashcat

Answer 30

Advanced password recovery tools 300 plus hashing algorithm

Question 31

Medusa tool

Answer 31

Brute-forcer tool Multi thread-based parallel testing and modular design Authentication for remote

Question 32

Ncrack

Answer 32

Network authentication cracking tool to secure networks against password attacks Looks fir weak passwords

Question 33

Ophcrack

Answer 33

Password cracking based on rainbow tables

Question 34

Hydra

Answer 34

Parallel login password crack

Question 35

Mimikatz tool

Answer 35

Mines passwords, PINs, Hash, and Kerberos tickets ini windows

Question 36

THC-pptp-Bruter

Answer 36

Brute-force w pptp VPN endpoints TCP port Independent package 300 password per second Exploits vulnerability in Microsoft’s anti brute force

Question 37

Rsmangler

Answer 37

Wordlists like john the ripper