2.0 Threats, Vulnerabilities, and mitigations

Question 1

What is phishing?

Answer 1

A: Social engineering attack using spoofed links/emails to steal data or deliver malware.

Question 2

Q: What is smishing and vishing?

Answer 2

A: Smishing = phishing via SMS; vishing = phishing via voice call.

Question 3

Q: What are removable device vectors?

Answer 3

A: Malware delivered via USB drives; may emulate a keyboard.

Question 4

Q: What is agentless malware?

Answer 4

A: Malware exploiting vulnerable software without installing itself.

Question 5

Name some vectors of attack a hacker could enter through?

Answer 5

Bluetooth, wifi, file based or image based vectors, voice fishing

Question 6

What is Agentless?

Answer 6

No installed executable, compromised software on the server

Question 7

Name some unsecure wireless network protocols?

Answer 7

WEP, WPA, WPA2, 802.1X

Question 8

What is smishing?

Answer 8

Phishing over text message

Question 9

What is an SQL injection?

Answer 9

inject malicious SQL code into a database query

Question 10

What is an LDAP injection?

Answer 10

Targets LDAP queries

Question 11

How to keep OS’s safe?

Answer 11

Patch and up to date

Question 12

What is cross-site scripting (XSS)?

Answer 12

When information from one site goes onto another

Hackers hijacks a victim who goes to a legitimate site and thus the javascript code will execute.

Steal info, hijack sessions, or redirect users

Question 13

What is non-persistent XSS attack?

Answer 13

Script is included in the URL or input and reflected back immediately in the response

Only works if the user clicks on a suspicious link

Question 14

What is a persistent XSS attack?

Answer 14

The malicious script is stored on the server like in a comment, profile bio or post

Runs everytime a person visits the affected page

Question 15

What is End of Life?

Answer 15

When a manufactuer will stop selling a product, usually a warning out first

Question 16

What is end of service?

Answer 16

Complete end of support unless maybe you pay a lot

Question 17

What is directory traversal?

Answer 17

When you move to a part of the project/folder that you shouldn’t have access to

Question 18

Name insecure protocols

Answer 18

Telnet, FTP, SMTP, IMAP

Question 19

Name some secure protocols

Answer 19

SSH, SFTP, IMAPS

Question 20

What port is FTP on?

Answer 20

Port 21

Question 21

What port is Telnet on?

Answer 21

Port 23

Question 22

What is port http on?

Answer 22

Port 80

Question 23

What is port SMTP on?

Answer 23

Port 25

Question 24

What port is IMAP on?

Answer 24

Port 143

Question 25

What port is POP3 on?

Answer 25

Port 110

Question 26

What does Telnet do?

Answer 26

Remote command line login

Question 27

What does FTP do?

Answer 27

Transfers files without encryption File transfer protocol

Question 28

What doe SMTP do?

Answer 28

Sends emails without encryption Simple mail transfer protocol

Question 29

What does IMAP do?

Answer 29

Retrieves email (plaintext login) Internet message access protocol

Question 30

What does POP3 do?

Answer 30

Downloads email messages to local device (no encryption)

Question 31

What is the secure version of Telnet? and what port does it run on?

Answer 31

SSH port 22

Question 32

What is the secure version of FTP? and what port does it run on?

Answer 32

SFTP port 22

Question 33

What is the secure version of IMAP? and what port does it run on?

Answer 33

IMAPS and port 993

Question 33

What is the secure version FTP?

Question 34

What is the secure version of POP3? and what port does it run on?

Answer 34

POP3S and port 995

Question 35

What is the secure version of HTTP? and what port does it run on?

Answer 35

HTTPS and port 443

Question 36

Whats the difference between SFTP and FTPS?

Answer 36

SFTP is a new protocol using SSH, more modern FTPS is an older FTP that uses TLS encryption

Question 37

What is the difference between hashing and encryption?

Answer 37

Hashing, you hash a password and check the hash with the hash you have saved in your system Encryption - you encrypt a message and send it, decrypt with the correct key

Question 38

Difference between jailbreaking and rooting?

Answer 38

Jailbreaking is for iPhones Rooting is for Androids

Question 39

Difference between a Virus and a Worm?

Answer 39

Viruses need something to latch onto for it to spread whether that be a packet or file Worms can spread by themselves

Question 40

What is RFID cloning?

Answer 40

Where you clone someone's badge ID

Question 41

Fileless virus

Answer 41

Stays in memory

Question 42

What is a Fox Hunt?

Answer 42

Where you hunt for the radio frequency that is jamming your signals

Question 43

How does ARP Poisoning work?

Answer 43

We have an ARP server and a victim laptop. The attacker will send a message to ARP saying “hey, we are that victim” then the server will send the info to the attacker and the attacker then feeds the info to the victim

Question 44

How do replay attacks work?

Answer 44

Hijacks a session or save the credentials for reuse

Question 45

What is a birthday attack?

Answer 45

Looking for a hash collision

Question 46

What are some indicators of compromise?

Answer 46

1. Unusually amount of traffic 2. Change to file hash values 3. International traffic increase 4. Changes to DNS data 5. Uncommon patterns like reading a file more than usual

Question 47

Why is segmentation good for cybersecurity?

Answer 47

Keeps things seperate

Question 48

What does SIEM do and mean?

Answer 48

Security Information and Event Management Monitor, log, event correlation, alerting, dashboards and reporting

Question 49

What are some mitigation techniques?

Answer 49

1. Patching vulnerabilities - auto updates - third party updates 2. Encryption - prevent access to application data files or full disk encryption 3. Monitoring - network, servers, etc… SIEM - Security event manager 4. Least privilege - role based access, best solution is to have no administrative privileges 5. Configuration enforcement 6. Decommissioning - once someone is out, or if a technology is faulty and must be decommission DESTROY

Question 50

What does Nmap tool do?

Answer 50

Scans all the ports to see the ones that are open

Question 51

Difference between Firewall, IDS and IPS

Answer 51

Firewalls manage the traffic and blocks IDS tries to detect and notify IPS tries to detect and block

Question 52

What does Wireshark do?

Answer 52

Packet capture and network analysis

Question 53

What does metasploit do?

Answer 53

Exploitation framework for penetration testing

Question 54

What does burp suite do?

Answer 54

Web app vulnerability testing tool

Question 55

What does tcpdump do?

Answer 55

Command line packet analyzer

Question 56

Main difference between TCP and UDP?

Answer 56

TCP is reliable and establishes a connection UDP is fast and is connectionless

Question 57

Difference between VPN and a proxy?

Answer 57

VPN is meant to encrypt all data transferring between the two poitns Proxy is meant to establish an alternate communication