Section 2.4 attacks

Question 1

DOS Attack

Answer 1

Definition: A Denial of Service (DoS) attack is an attempt to make a machine or network resource unavailable to its intended users, typically by flooding it with excessive requests.

Example: Flooding a website with traffic to the point where it crashes and becomes inaccessible to users.

Question 2

DDOS Attack

Answer 2

Definition: A Distributed Denial of Service (DDoS) attack is similar to a DoS attack but is launched from multiple sources simultaneously, making it more difficult to mitigate.

Example: Coordinated attack from a botnet targeting a specific server, overwhelming its capacity.

Question 3

DNS Attack

Answer 3

Definition: A Domain Name System (DNS) attack targets the DNS server infrastructure to disrupt or manipulate DNS resolution.

Example: DNS Spoofing, where attackers redirect users to malicious websites by falsifying DNS records.

Question 4

Wireless Attack

Answer 4

Definition: Attacks targeting wireless networks, exploiting vulnerabilities in protocols like Wi-Fi (802.11).

Example: Man-in-the-Middle (MitM) attacks, where an attacker intercepts communication between devices on a Wi-Fi network.

Question 5

On-Path Attack

Answer 5

Definition: Attacks where the attacker is positioned on the communication path between two parties, allowing them to intercept or manipulate data.

Example: ARP Poisoning, where the attacker sends false Address Resolution Protocol (ARP) messages to associate their MAC address with the IP address of the victim, redirecting traffic through them.

Question 6

Replay Attacks

Answer 6

Definition: Attacks where a valid data transmission is intercepted and maliciously retransmitted, often to gain unauthorized access or perform unauthorized actions.

Example: Capturing network traffic containing authentication credentials and replaying it to gain access to a system without proper authorization.