Threats & Vulnerabilities

Question 1

What is adware?

Answer 1

i.e Malicious software popup prompting to buy something

Question 2

What is a virus?

Answer 2

Attaches itself as malicious payload to another program, spreads via a host file

Question 3

What is spyware?

Answer 3

Retrieving sensitive information

Question 4

What is a trojan?

Answer 4

Malicious software disguised as something else, does not replicate

Question 5

What is a rootkit?

Answer 5

Program hides using bootstrap loader system/kernel level access

Question 6

What is a logic bomb?

Answer 6

Malicious code that triggers based on certain conditions being met

Question 7

What is ransomware?

Answer 7

Denying access to computer for extortion

Question 8

What is polymorphic malware?

Answer 8

Malware that changes it’s behavior to evade AV signature definition detection, code remains the same i.e encryption

Question 9

What is an armored virus?

Answer 9

Virus specifically designed to prevent its source code being analysed, trick AV program space it is running is somewhere else

Question 10

What is a smurf attack?

Answer 10

Ping request to broadcast address to cause all client to respond, combines with source address spoofing for DoS

Question 11

What is a replay attack?

Answer 11

Replaying data i.e log in sequence

Question 12

What can be used to mitigate replay attacks?

Answer 12

Session token that expires

Anti replay counter

Question 13

What is spoofing?

Answer 13

Impersonation of another entity

Question 14

What is SPAM vs SPIM?

Answer 14

SPAM is unwanted email

SPIM is unwanted messages on instant messaging

Question 15

What is a XMAS attack?

Answer 15

Port scanning + discovering underlying OS

Question 16

What is pharming?

Answer 16

DNS poisoning

change lmhost file, dns cache resolution, dns sever

Question 17

How would MITM be achieved with ARP poisoning?

Answer 17

Spoof MAC address of another computer

Change victim computer default gateway to relay through rogue computer

Question 18

What is XSS?

Answer 18

Cross-Site Scripting

Question 19

What is transitive access?

Answer 19

Access gained indirectly

i.e jump host

Question 20

What is a worm?

Answer 20

Malicious software that replicated between systems without a host file

Question 21

What is a rainbow table?

Answer 21

List of common password hashes

Question 22

What is a birthday attack?

Answer 22

Using hash collisions to gain access despite data being different

Question 23

What is typo squatting?

Answer 23

Misleading by wrong url

i.e googlee.com

Question 24

What is a watering hole attack?

Answer 24

Compromising known website to infect computer

Question 25

What is reciprocity?

Answer 25

Complying with someone because they did something beneficial to you

Question 26

What is consensus?

Answer 26

Following what everyone else is doing

Question 27

How to you protect against a cross-site scripting attack?

Answer 27

Input & output validation on server side
Input client to server
Output server responding to client

Question 28

What is an attack vector for cross-site scripting?

Answer 28

Customized link with an embedded script

Question 29

What is a way to protect against SQL injection?

Answer 29

Turn off SQL commands and used stored procedures

Question 30

What is directory traversal/command injection?

Answer 30

Navigating through file system to execute something

Question 31

What is banner grabbing?

Answer 31

Scanning port activity during vulnerability scan for additional information

Question 32

What is black box penetration testing?

Answer 32

No prior knowledge of target infrastructure

Question 33

What is white box penetration testing?

Answer 33

Full knowledge of infrastructure before testing

Question 34

What is gray box penetration testing?

Answer 34

Some knowledge of infrastructure before testing

Question 35

What is XSRF?

Answer 35

Cross-site Request Forgery

Question 36

What advantages does NoSQL have against SQL?

Answer 36

Not subject to SQL injection

Highly scalable

Question 37

What is fuzzing?

Answer 37

Entering random data on software in attempt to break it with an exception that cannot handle the error (trial and error)

Question 38

What is blue snarfing?

Answer 38

Theft of information from Bluetooth device

Question 39

What is blue jacking?

Answer 39

Pushing information to a Bluetooth device

Question 40

What is metamorphic malware?

Answer 40

Malware changes itself each iteration retaining the same functionality