Theory Test 1

Question 1

Hacker

Answer 1

General term for anyone who uses a computer to gain unauthorized access

Question 2

Elite Hacker (Cracker)

Answer 2

Extensive knowledge of computers, well experienced

Question 3

Black Hat, White Hat, Grey Hat?

Answer 3

Black: illegal, malicious
White: ethical hacker, legal (contracted, security tester)
Grey: illegal-ish, non-malicious

Question 4

Script Kiddies

Answer 4

Not much knowledge, use programs from internet

Question 5

Noob

Answer 5

New to hacking, almost no knowledge

Question 6

Hacker Goals and Motivation

Answer 6

Goal: Steal, stop access, extort, destroy
Motive: Challenge, revenge, vandalism

Question 7

Who created worms and started “hacking”?

Answer 7

Robert Tappan Morris

Question 8

CIA

Answer 8

Confidentiality, Integrity, Availability

Question 9

Confidentiality

Answer 9

Messages cannot be read (encryption)

Question 10

Integrity

Answer 10

Assurance that data is not altered (hashing)

Question 11

Availability

Answer 11

Network available to appropriate users (authentication)

Question 12

AAA

Answer 12

Authentication, Authorization, and Accounting (systems)

Question 13

TCP

Answer 13

Transmission Control Protocol

Question 14

TCP/IP

Answer 14

Allows multiple apps to share same network connection and IP. Stack: 1. Network, 2. Internet, 3. Transport, 4. App

Question 15

System and Registered Port Ranges

Answer 15

System: 0-1023
Registered: 1024-49151

Question 16

Port 20&21

Answer 16

File Transfer Protocol (FTP)

Question 17

Port 22

Answer 17

SSH, encrypted communication

Question 18

Port 23

Answer 18

Telnet, unencrypted communication

Question 19

Port 25

Answer 19

Simple Mail Transfer Protocol (SMTP)

Question 20

Port 53

Answer 20

DNS

Question 21

Port 80

Answer 21

HyperText Transfer Protocol (HTTP)

Question 22

Port 110

Answer 22

Post Office Protocol 3 (POP3)

Question 23

Port 143

Answer 23

Internet Message Access Protocol 4 (IMAP4)

Question 24

Port 443

Answer 24

SSL & TLS, HTTPS

Question 25

Ports 139 and 445

Answer 25

File sharing ports. 139: NetBIOS, 445: AD, windows shares

Question 26

6 Possible TCP Flags

Answer 26

SYN, ACK, PSH, URG, RST, FIN

Question 27

UDP

Answer 27

User Data Protocol

Question 28

ICMP

Answer 28

Internet Control Message Protocol

Question 29

Types of DoS/DDoS Attacks

Answer 29

Syn flood, ping flood, smurf attack, fraggle, LAND

Question 30

SYN Flood

Answer 30

DoS, SYN requests are spammed, exploits 3-way handshake, server can’t accept new connections

Question 31

Ping Flood

Answer 31

DoS, pings are spammed (ICMP echo requests), slows down computer. Command: ping __ -l (size in bytes) -t (continuous)

Question 32

Smurf Attack

Answer 32

DDoS, send ping to broadcast address and spoof source, causing host to be flooded with ICMP echo replies

Question 33

Fraggle Attack

Answer 33

DoS, send lots of spoofed UDP to router broadcast address

Question 34

LAND Attack

Answer 34

Victim is sent packet with own IP in source and destination and same port for source and destination, causing continuous loop

Question 35

Buffer Overflow Attack

Answer 35

Overflow a buffer with data that the extra data string could be passed to memory and run

Question 36

SQL Injection Attack

Answer 36

Code injection technique, SQL statements are inserted into an entry field for execution

Question 37

Netstat

Answer 37

Displays net connections for TCP and UDP protocols and network protocol statistics