Networks Attacks

Question 1

What is Wireless

Answer 1

Wireless communication is the transfer of information between two or more points that do not use an electrical conductor as a medium for the transfer.

Question 2

What is Evil twin

Answer 2

A wireless access point that deceives users into believing that it is a legitimate network access point.

might just have a similar name (SSID) to the legitimate one, or the attacker might use some DoS technique to overcome the legitimate WAP. This attack will not succeed if authentication security is enabled on the WAP, unless the attacker also knows the details of the authentication method. However, the evil twin might be able to harvest authentication information from users entering their credentials by mistake.

Question 3

What is Rogue access point

Answer 3

A rogue access point is one that has been installed on the network without authorization, whether with malicious intent or not. It is vital to periodically survey the site to detect rogue WAPs.

Question 4

What is Bluesnarfing

Answer 4

A wireless attack where an attacker gains access to unauthorized information on a device using a Bluetooth connection.

Question 5

What is Bluejacking

Answer 5

Sending an unsolicited message or picture message using a Bluetooth connection.

Question 6

What is Disassociation

Answer 6

Rather than fully deauthenticating the station. A disassociated station is not completely disconnected, but neither can it communicate on the network until it reassociates.

sends a stream of spoofed frames

Question 7

What is Jamming

Answer 7

An attack in which radio waves disrupt 802.11 wireless signals.

Question 8

What is Near-field communication (NFC)

Answer 8

A standard for peer-to-peer (2-way) radio communications over very short (around 4”) distances, facilitating contactless payment and similar technologies. NFC is based on RFID.

Question 9

What is Radio frequency identifier (RFID)

Answer 9

A means of encoding information into passive tags, which can be easily attached to devices, structures, clothing, or almost anything else.

Question 10

What is Initialization vector (IV)

Answer 10

Initialization vector (IV) or starting variable (SV)[1] is an input to a cryptographic primitive being used to provide the initial state. The IV is typically required to be random or pseudorandom, but sometimes an IV only needs to be unpredictable or unique.

Question 11

What is On-path attack (previously known as man-in-the-middle attack/man-in-the-browser attack)

Answer 11

An attack when the web browser is compromised by installing malicious plug-ins or scripts, or intercepting API calls between the browser process and DLLs.

Question 12

What is Layer 2 attacks

Answer 12

Is the process of using devices and MAC addresses on a LAN to segment a network.

Question 13

What is Address resolution protocol (ARP) poisoning

Answer 13

A network-based attack where an attacker with access to the target local network segment redirects an IP address to the MAC address of a computer that is not the intended recipient. This can be used to perform a variety of attacks, including DoS, spoofing, and Man-in-the-Middle.

Question 14

What is Media access control (MAC) flooding

Answer 14

A variation of an ARP poisoning attack where a switch’s cache table is inundated with frames from random source MAC addresses.

Question 15

What is MAC cloning

Answer 15

MAC Cloning is setting the MAC address of your PC or any other MAC address as your device WAN port and this is one of the methods to fix connectivity issues. MAC stands for Media Access Control and this is the hardware address that the Network Interface Card is manufactured with.

Question 16

What is Domain name system (DNS)

Answer 16

The Domain Name System (DNS) resolves fully qualified domain names (FQDNs) to IP addresses. It uses a distributed database system that contains information on domains and hosts within those domains. The information is distributed among many name servers, each of which holds part of the database. The name servers work over port 53. Domain name resolution is a security-critical service and the target of many attacks on both local network and the Internet.

Question 17

What is Domain hijacking

Answer 17

A type of hijacking attack where the attacker steals a domain name by altering its registration information and then transferring the domain name to another entity. Sometimes referred to as brandjacking.

Question 18

What is DNS poisoning

Answer 18

A network-based attack where an attacker exploits the traditionally open nature of the DNS system to redirect a domain name to an IP address of the attacker’s choosing.

Question 19

What is Universal resource locator (URL) redirection

Answer 19

A URL (Uniform Resource Locator) is a unique identifier used to locate a resource on the Internet. It is also referred to as a web address. You redirect it.

Question 20

What is Domain reputation

Answer 20

If your domain, website, or email servers have been hijacked, they are likely to be used for spam or distributing malware. This will lead to complaints and the likelihood of the domain being listed on a blacklist.

Question 21

What is Distributed denial-of-service (DDoS)

Answer 21

An attack that uses multiple compromised hosts (a botnet) to overwhelm a service with request or response traffic.

Question 22

What is Network DDOS attack

Answer 22

Some types of DDoS attacks simply aim to consume network bandwidth, denying it to legitimate hosts, by using overwhelming numbers of bots. Others cause resource exhaustion on the hosts’ processing requests, consuming CPU cycles and memory. This delays processing of legitimate traffic and could potentially crash the host system completely.

Question 23

What is Application DDOS attack

Answer 23

Targets vulnerabilities in the headers and payloads of specific application protocols.

Question 24

What is Operational technology (OT) DDOS attack

Answer 24

An OT is a communications network designed to implement an industrial control system rather than data networking.
DDoS attacks against the controllers in such networks can use the same techniques as against computer networks. Also, because of the limited processing ability of some controller types, older DDoS techniques and still be applied

Question 25

What is Malicious code or script execution

Answer 25

Automation using scripting means that each configuration or build task is performed by a block of code. The script will take standard arguments as data, so there is less scope for uncertainty over configuration choices leading to errors. A script will use the following elements:

Parameters that the script takes as input data (passed to the script as arguments).
Branching and looping statements that can alter the flow of execution based on logic conditions.
Validation and error handlers to check inputs and ensure robust execution.
Unit tests to ensure that the script returns the expected outputs, given the expected inputs.

Question 26

What is PowerShell

Answer 26

A command shell and scripting language built on the .NET Framework.
The preferred method of performing Windows administration tasks

Question 27

What is Python

Answer 27

High-level programming language that is widely used for automation.
Is a popular language for implementing all kinds of development projects, including automation tools and security tools, as well as malicious scripts (python.org).

Question 28

What is Bash

Answer 28

A command shell and scripting language for Unix-like systems. The most common Linux command line.

Question 29

What Macros

Answer 29

A sequence of actions performed in the context of a word processor, spreadsheet, or presentation file. While the user may be able to record macro steps using the GUI, ultimately macros are coded in a scripting language.

Question 30

What is Visual Basic for Applications (VBA)

Answer 30

Programming languages used to implement macros and scripting in Office document automation.