Week 2

Question 1

What do you do during the reconnaissance phase of the cyber kill chain?

Answer 1

Identify and select target

Question 2

What do you do during the weaponisation phase of the cyber kill chain?

Answer 2

Preparing the payload

Question 3

What do you do during the delivery phase of the cyber kill chain?

Answer 3

Find a way to deliver the payload, ex phishing

Question 4

What do you do during the exploitation phase of the cyber kill chain?

Answer 4

You trigger the payload; could be dependent on user action (clicking the link)

Question 5

What do you do during the Installation phase of the cyber kill chain?

Answer 5

Installation of a backdoor/RAT

Question 6

What do you do during the Command and Control (C2) phase of the cyber kill chain?

Answer 6

Establish infrastructure to enable C2 access to the compromised host

Question 7

What do you do during the Actions on objectives phase of the cyber kill chain?

Answer 7

You have full access so you fulfill your original objectives (ransom, data exfiltration)

Question 8

What kind of attacks are explained by the cyber kill chain?

Answer 8

Adversarial attacks

Question 9

What is enumeration?

Answer 9

Active; about scanning the target to know more about its technical properties

Question 10

What is the first step of pentesting?

Answer 10

Info gathering

Question 11

What step is after enumeration in pentesting?

Answer 11

Exploitation

Question 12

What is priv esc?

Answer 12

Privilege escalation is about expanding system access, either horizontal (same access, different account) or vertical (different access, different account)

Question 13

What is the equivalent of step 7 (Actions on objectives) in the cyber kill chain in pentesting?

Answer 13

Post-exploitation

Question 14

What is a critique of the cyber kill chain?

Answer 14

Inflexible

Question 15

What are infection vectors?

Answer 15

Paths taken to infect victims

Question 16

What is the oldest type of infection vector?

Answer 16

Malicious attachments

Question 17

What is the infection vector called when a user’s web browser makes them automatically download malicious content?

Answer 17

Drive-By download

Question 18

What is the name of the function that creates malicious websites and make them appear high in the search lists?

Answer 18

Black Hat Search Engine Optimisation (SEO)

Question 19

What are som pentesting linux distributions?

Answer 19

Kali, BlackBox, ParrotOS

Question 20

What is the name of the online tool for searching devices connected to the internet?

Answer 20

Shodan

Question 21

What is one of the benefits of using the Shodan database?

Answer 21

You don’t have to actively perform searches against a network

Question 22

What are som linux commands that are useful for recon?

Answer 22

Dig, nslookup, traceroute, nc

Question 23

What is metasploit?

Answer 23

A tool for exploiting vulnerable systems

Question 24

What are the three components of Metasploit?

Answer 24

msfconsole
modules
tools

Question 25

What is an exploit?

Answer 25

A code which uses a system vulnerability

Question 26

What is a vulnerability?

Answer 26

A flaw in code, design or logic which can be exploited

Question 27

What is a payload?

Answer 27

Some code which will run on the targeted system

Question 28

What is an example of an online password-cracking tool?

Answer 28

Hydra

Question 29

What is the difference between a brute force attack and a dictionary attack?

Answer 29

Brute force checks all possible combinations, a dictionary attack checks all entries in a list

Question 29

What is a mask password attack?

Answer 29

Specify a password structure, much like a regular expression: basically just a more intelligent brute force attack

Question 30

What is an important distinction between different password attacks?

Answer 30

Whether they are online or offline