Passive Exploitation PE

Question 1

True or False: Passive 802.11 Exploitation is the ability to exploit information of already-collected signals WITHOUT transmitting any frames into a wireless network.

Answer 1

True

Question 2

True or False: A target is always aware when passive exploitation is being conducted.

Answer 2

False

Question 3

When an intruder is not actively doing anything, just monitoring information to exploit at a later time, this is referred to as what type of passive exploitation?

Answer 3

Keylogging

Question 4

The settings on a(n) _______ can help the client determine what kind of three specific kinds of encryption to use or not to use.

Answer 4

AP

Question 5

The three kinds of 802.11 Encryption are:

Answer 5

WEP, WPA, WPA2

Question 6

Wire Equivalency Privacy (WEP), also known as the original IEEE 802.11 standard of encryption, was originally ratified in what year?

Answer 6

1997

Question 7

Wired Equivalent Privacy (WEP), was decommissioned in 2004, and succeeded by what??

Answer 7

WPA

Question 8

Alongside using the same RC4 stream cipher and CRC-32 checksum, what protocol did WPA use as a solution to WEP shortcomings?

Answer 8

Temporal Key Integrity Protocol (TKIP)

Question 9

WPA was later succeeded by what?

Answer 9

WPA2

Question 10

True or False: WPA2 defines two types of security: Passphrase Authentication and 802.1X/EAP security.

Answer 10

True

Question 11

Passphrase Authentication is for what kinds of networks?

Answer 11

Small office/Home office networks (SOHO)

Question 12

802.1X/EAP security is for what kinds of networks?

Answer 12

Enterprise Networks

Question 13

What standard, not protocol, replaced the RC4 Cipher used in WEP and temporal key integrity protocol (TKIP)?

Answer 13

AES

Question 14

What tool is used for wi-fi hacking and security?

Answer 14

Aircrack-ng

Question 15

Aircrack is an all-in-one tool that can be used as what?

• Packet Sniffer
• WEP/WPA/WPA2 cracker
• Analyzing and Hash Capturing Tool
• All of the above

Answer 15

All of the Above

Question 16

What kind of attack is a hacking method that uses trial and error to crack passwords, login credentials, and encryption keys?

Answer 16

Brute Force Attack

Question 17

True or False: A Brute Force Attack could take less than a minute to crack.

Answer 17

True

Question 18

What type of Brute Force Attack is where the attacker makes logical guesses to crack your authentication system that aren’t assisted by software tools?

Answer 18

Simple Brute Force Attack

Question 19

Which Brute Force Attack would be where an attacker may use your birth year as a pin?

Answer 19

Simple Brute Force Attack

Question 20

What type of Brute Force Attack is where they use a simple approach to try and test several possible combinations by guessing possible passwords that are beyond the scope of their logic?

Answer 20

Hybrid Brute Force Attack

Question 21

Which type of attack is used where an attacker isn’t targeting a specific user, but instead is using a leaked password and testing it against multiple user IDs?

Answer 21

Reverse Brute Force Attack

Question 22

True or False: Dictionary Attack requires an attacker to use ordinary words (as they are in the dictionary) paired with a typical sequence of numbers or special characters in order to crack the password.

Answer 22

True

Question 23

What type of attack allows attackers to eavesdrop on the communication between two targets?

Answer 23

MITM

Question 24

True or False: PSK is a shared key in between two clients in order to use a “secure” channel.

Answer 24

True

Question 25

What is the first main step in a successful WPA passive attack?

Answer 25

Using a wireless sniffer or protocol analyzer

Question 26

What was the main attack against the CRC32 checksum?

Answer 26

Chop-Chop

Question 27

When an attacker truncates the last byte of the encrypted packet and guesses the value, what is the average amount of guesses it takes to guess the right value?

Answer 27

128

Question 28

True or False: WPA2-PSK (Pre-Shared Key) is the most secure form of encryption used on personal wireless networks.

Answer 28

True

Question 29

True or False: The main vulnerability on WPA2 was called KRACK – Key Reinstallation Attack.

Answer 29

True

Question 30

True or False: During a KRACK, the attack is against a 4-way handshake, and does not exploit access points themselves, but instead targets users.

Answer 30

True