Threats and Vulnerabilities

Question 1

What is DOS Attack?

Answer 1

• Denial Service of Attack
• A machine floods a victim with requests
• TCP SYN Flood (Multiple TCP sessions)
• Smurf Attack (ICMP Flood)
• DDOS (Multiple computer flood similar to BotNet and Zombie)

Question 2

What is MITM Attack?

Answer 2

• Man In The Middle (On-Path Attack)
• Attacker in between victim and destination

Question 3

What is Session Hijacking?

Answer 3

An attacker guesses the session ID that is in use between a
client and a server

Question 4

What is DNS Poisioning?

Answer 4

Involves corrupting the DNS cache to redirect users to malicious websites, making it a potent technique for intercepting web traffic and stealing sensitive information.

Question 5

What is Rogue DHCP Server?

Answer 5

A DHCP server on a network which is not under the administrative control of the network administrators

Question 6

What is Spoofing?

Answer 6

An attacker masquerades as another person by falsifying their identity

Question 7

What is IP Spoofing?

Answer 7

Modifying the source address of an IP packet to hide the identity of the sender or impersonate another client

Question 8

What is MAC Spoofing?

Answer 8

• A technique for changing a factory-assigned Media Access Control (MAC) address of a network interface on a networked device.
• Affect every computer on this network subnet.

Question 9

What is MAC Filtering?

Answer 9

Relies on a list of all known and authorized MAC addresses

Question 10

What is ARP Spoofing?

Answer 10

• A type of attack in which a malicious actor sends falsified ARP (Address Resolution Protocol) messages over a local area network.
• Results in the linking of an attacker’s MAC address with the IP address of a legitimate computer, server, or gateway on the network.
• Targets single host’s traffic

Question 11

What is VLAN Hopping?

Answer 11

Attacker exploits misconfigurations to gain unauthorized access to different VLAN

Question 12

What is Double Tagging?

Answer 12

• Attacker exploits trunk port vulnerabilities to direct traffic to another VLAN
• VLAN Hopping Attack

Question 13

What is Switch Spoofing?

Answer 13

An attacker modifying a device’s MAC address to appear as an authorized switch port

Question 14

What is Malware?

Answer 14

Designed to infiltrate a computer system and possibly damage it without the user’s knowledge or consent

Question 15

What is Virus?

Answer 15

Made up of malicious code that is run on a machine without the user’s knowledge and infects it whenever that code is run

Question 16

What is Worm?

Answer 16

A piece of malicious software that can replicate itself without user
interaction

Question 17

What is Trojan Horse?

Answer 17

A piece of malicious software disguised as a piece of harmless or
desirable software

Question 18

What is RAT?

Answer 18

• Remote Access Trojan
• Provides the attacker with remote control of a victim machine

Question 19

What is Ransomware?

Answer 19

Restricts access to a victim’s computer system or files until a ransom or payment is received

Question 20

What is Spyware?

Answer 20

Gathers information about you without your consent

Question 21

What is Keylogger?

Answer 21

Captures any key strokes made on the victim machine

Question 22

What is Rootkit?

Answer 22

Designed to gain administrative control over a computer system or network device without being detected

Question 23

What is Rogue Access Point?

Answer 23

A wireless access point that has been installed on a secure network without authorization from a local network administrator

Question 24

What is Shadow IT?

Answer 24

Use of IT systems, devices, software, applications, or services without the explicit approval of the IT department

Question 25

What is Evil Twin?

Answer 25

Wireless access point that uses the same name as your own network

Question 26

What is Deauthentication?

Answer 26

Attempts to interrupt communication between an end user and the wireless access point

Question 27

What is Dictionary Attack?

Answer 27

Guesses the password by attempting to check every single word or phrase contained within a word list, called a dictionary

Question 28

What is Brute Force Attack?

Answer 28

Tries every possible combination until they figure out the password

Question 29

What is Hybrid Attack?

Answer 29

Combination of dictionary and brute force attacks

Question 30

What is Wireless Interception?

Answer 30

Captures wireless data packets as they go across the airwaves

Question 31

What is Insider Threat?

Answer 31

An employee or other trusted insider who uses their authorized network access in unauthorized ways to harm the company`

Question 32

What is Dumper Diving?

Answer 32

Scavenging for personal or confidential information in garbage or recycling containers

Question 33

What is Shoulder Surfing?

Answer 33

Coming up behind an employee and trying to use direct observation to obtain information

Question 34

What is Piggybacking?

Answer 34

Similar to tailgating, but occurs with the employee’s knowledge or consent

Question 35

What is Tailgaiting?

Answer 35

Entering a secure portion of the organization’s building by following an authorized person into the area without their knowledge or consent

Question 36

What is Whaling Attack?

Answer 36

Focused on key executives within an organization or other key leaders, executives, and managers in the company

Question 37

What is Phishing?

Answer 37

Sending an email in an attempt to trick a user to click a link and divulge personal information such as credit card and bank account information.

Question 38

What is Social Engineering?

Answer 38

Is a hacker term for tricking people into revealing their password or some form of security information.

Question 39

What is Spearphishing?

Answer 39

More targeted form of phishing

Question 40

What is Logic Bomb?

Answer 40

A specific type of malware that is tied to either a logical event or a specific time

Question 41

What is On-Path Attack?

Answer 41

* An attack where the penetration tester places their workstation between two hosts to capture, monitor, and relay communications. * Known as MITM Attack

Question 42

What is ARP Poisoning?

Answer 42

* Corrupts ARP cache by associating attacker's MAC with IP addresses of LAN devices * Affects all hosts in a LAN

Question 43

What is Deauthentication Attack?

Answer 43

* Attacker captures packets used in association/authentication processes to crack shared passphrase * Wireless

Question 44

What is a Frequency Jamming?

Answer 44

Denying wireless service to authorized users as legitimate traffic is jammed by the overwhelming frequencies of illegitimate traffic.

Question 45

What is Exploit?

Answer 45

A malicious technique or software crafted to exploit vulnerabilities in computer systems, often leading to unauthorized access or system compromise?

Question 46

What is QoS?

Answer 46

* Quality of Service * A set of technologies that help a network perform well by controlling traffic and prioritizing applications

Question 47

What is MAC Flooding?

Answer 47

* An attack that targets switches on LAN. * Involves sending multiple packets with fake MAC addresses to overflow switch address table.

Question 48

What is Bluejacketing?

Answer 48

A cyberattack that involves sending unwanted messages to a Bluetooth-enabled device using Bluetooth.