06- Footprinting

Question 1

active fingerprinting

Answer 1

specially crafted packets are sent to the operating system get a response

Question 2

Application

Answer 2

Is designed for end user operation. It is a program or collection of programs that provides users with access to word processors, Web browsers, picture viewer, etc.

Question 3

Attack

Answer 3

occurs when a system is compromised based on a vulnerability by an unknown exploit

Question 4

banner grabbing

Answer 4

can reveal compromising information about the operating system and the services that are running on the system; works by using Telnet or a proprietary program

Question 5

BiLE

Answer 5

stands for Bi?directional Link Extractor; includes a couple of Perl scripts used in enumeration processes

Question 6

DNS footprinting

Answer 6

allows you to obtain information about DNS zone data

Question 7

DNS zone data

Answer 7

includes DNS domain names, computer names, IP addresses, and more information about the network

Question 8

DNSstuff

Answer 8

DNS interrogation tool; extracts DNS information about IP addresses, mail server extensions, DNS lookups, WHOIS lookups, etc.

Question 9

Enumeration

Answer 9

the first attack on a target network; the process to gather the information about a target machine by actively connecting to it

Question 10

Ethical Hacking

Answer 10

testing the resources for a good cause and for the betterment of technology; another term for ?penetration testing.?

Question 11

Exploit

Answer 11

written to take advantage of a vulnerability; could be a piece of software; a technology; or data that can cause damage or change the behavior of a computer

Question 12

Firewall

Answer 12

Is a security system consisting of a combination of hardware and software which limits the exposure of a computer or computer network to attack from crackers; commonly used on local area networks that are connected to the Internet. It is a tool that provides security to a network against unauthorized access from the Internet or other outside networks

Question 13

footprinting

Answer 13

the first step in hacking; the process of collecting information about a target network and its environment

Question 14

Google

Answer 14

A popular search engine

Question 15

Google hacking

Answer 15

refers to creating complex search engine queries; An attacker can try to find websites that are vulnerable to exploits and vulnerabilities

Question 16

Google Hacks

Answer 16

a compilation of carefully crafted Google searches that expose novel functionality from Google’s search and map services

Question 17

Goolink Scanner

Answer 17

removes the cache from your searches, and collects and displays only vulnerable site’s links

Question 18

Gooscan

Answer 18

a tool that automates queries against Google search appliances

Question 19

Hackers for Charity

Answer 19

a group of technologists who have sourced their information from various sources and maintain a GHDB

Question 20

Hacking

Answer 20

a loaded term that in some ways defies definition. Very simply, it is an intrusion upon a system. In some cases, as with Certified Ethical Hackers, this intrusion is solicited for the purposes of defining and ultimately resolving network vulnerabilities. Still, in others, hacking denotes unauthorized access. In some cases, the term “hacker” is used synonymously with “programmer”

Question 21

Initial information gathering

Answer 21

Gathering information available in the outside world about any organization

Question 22

Intrusion Detection System (IDS)

Answer 22

Can either be implemented as hardware or software and is responsible for monitoring a network and defining various activities as either valid, allowed activities or malicious activities, all based on predefined rules

Question 23

Intrusion Prevention System (IPS)

Answer 23

an active IDS; the next level of security technology with its capability to provide security at all system levels from the operating system kernel to network data packets

Question 24

IP addresses

Answer 24

used to find the machines in a network

Question 25

IPSec (Internet Protocol Security)

Answer 25

a collection of protocols to support data packet exchange at the IP layer

Question 26

Linux

Answer 26

the number one OS used for hacking and penetration testing; started in 1991 by Finnish student Linus Torvalds

Question 27

Maltego

Answer 27

a platform that gives you a clear threat picture to the environment that an organization owns and operates; footprinting tool

Question 28

Malware

Answer 28

any type of program that is created with the intent to cause damage, steal data, or abuse computer system resources; includes computer viruses, worms, and Trojan horses

Question 29

map

Answer 29

provides the hacker with a blueprint of the organization?s security profile

Question 30

Metagoofil

Answer 30

performs a search in Google to identify and download the documents to a local disk and then extracts the metadata with different libraries such as Hachoir and PdfMiner

Question 31

Netcat

Answer 31

known as the Swiss Army knife for hackers because it can perform many different tasks all in one small program

Question 32

Netcraft

Answer 32

a wide neighborhood watch scheme; enables anyone who is alert at that moment to defend everyone within the community against phishing attacks

Question 33

network scanning

Answer 33

scanning the private and public network; Most of the techniques are developed to scan internally and quite a few have the ability to scan the public network and give reliable results.

Question 34

Nmap

Answer 34

considered one the best available tools for security scanning; free and open source and works on Linux, Windows, and Mac OS X

Question 35

operating system

Answer 35

A software system which manages the interaction between users and hardware

Question 36

passive fingerprinting

Answer 36

try to sniff a packet and try to understand the operating system and its version

Question 37

Patch

Answer 37

a fix to a vulnerability

Question 38

Pen testers

Answer 38

Penetration testers; people who perform penetration testing, also called Ethical Hackers

Question 39

Penetration testing

Answer 39

also referred to as ethical hacking; however, the validity of the term ?ethical hacker? is debated still today. The primary difference between penetration testing and vulnerability scanning is that penetration testing actually exploits a vulnerability and access to a target resource is obtained to prove without a doubt that the system or resource is vulnerable to attack. As with vulnerability scanning, penetration scanning should occur routinely and only with the permission of the owner whose systems and network are being targeted. Penetration testing can be carried out using a wide range of tools or with a vendor provided solution

Question 40

Phishing

Answer 40

Any type of situation where an individual or application is posing as something it is not for the purpose of gaining personal information from a user

Question 41

Ping

Answer 41

used to know if the host computer you are trying reach is actually operating; a built?in command on the Operation System

Question 42

reconnaissance

Answer 42

The process of information gathering

Question 43

Security

Answer 43

should protect against vandalism, theft, and attacks by individuals

Question 44

SiteDigger

Answer 44

searches Google's cache to look for vulnerabilities, errors, configuration issues, proprietary information, and interesting security nuggets on websites

Question 45

Sniff

Answer 45

Is the process of monitoring data travel on a network for constructive or malicious purposes

Question 46

Social engineering

Answer 46

The art of convincing people to disclose sensitive information using social methods of communication. The information is generally exploited by attackers to gain access to a system or network

Question 47

Social Engineering Attacks

Answer 47

Social engineering is a form of hacking exploiting human vulnerabilities. There are several types of social engineering attacks, such as pretexting (inventing a scenario), phishing (appearing as a legitimate authority) and quid pro quo (offering a service in return for the requested information), but all have the same goal: divulging sensitive information

Question 48

SQL injection

Answer 48

can give access to the data with privileges to create, read, update, alter, delete, and/or steal data from the database

Question 49

Telnet

Answer 49

A program that allows for remote access to another system's terminal. It is a specialized protocol in terminal emulation which allows the client to appear to be directly connected to a server

Question 50

Vishing

Answer 50

used to get information by calling potential victims to share the confidential information

Question 51

Vulnerability

Answer 51

a weak link in the software, settings, etc., through which, if not fixed early, someone can get access to the computer, application, and/or network and can cause damage

Question 52

WHOIS

Answer 52

a query and response based protocol used to query databases that store registered users,assignees, and owners of internet resources