Chapter 1 Review Questions

Question 1

What is enumeration in hacking?

Answer 1

The phase where a hacker attempts to extract information such as usernames, computer names, network resources, shares, and services.

Question 2

Which “threat actor” may cross ethical lines, but usually has good intentions?

Answer 2

Gray Hat

Question 3

What is an Advanced Persistent Threat (APT)>

Answer 3

An attack where the hacker has inconspicuously implanted a means to continuously gain undetected daccess to a network.

Question 4

What is Threat Modeling?

Answer 4

The process of analyzing the security of the organization and determining security holes.
Once a threat model is put together, the
organization can begin securing its systems and
data

Question 5

What is the Permission to Test document?

Answer 5

The proof an ethical hacker has that they have permission to perform otherwise-illegal previously-approved-of activities to test the security of an organization’s network.

Question 6

What is Penetration Testing?

Answer 6

the practice of finding vulnerabilities and risks with the purpose of securing a computer or network system.

Question 7

Which “threat actor” uses their skills for defensive purposes?

Answer 7

White Hat

Question 8

What is the Rules of Engagement document?

Answer 8

The form detailing the agreement on how to handle sensitive data and who to contact if something goes wrong.

Question 9

What is the Open Source Security Testing Methodology Manual (OSSTMM)?

Answer 9

A framework that attempts to create a single accepted method for a thorough security test.

Question 10

What are the five phases of the ethical hacking methodology?

Answer 10

Performing reconnaissance
Scanning and enumeration
Establishing access
Maintaining access
Clearing tracks

Question 11

Which penetration testing type simulates an outside attack and is also the most expensive?

Answer 11

Black Box

Question 12

Which of the following is NOT one of the four common methods for dealing with risk?

Acceptance

Avoidance

Transference

Ignorance

Answer 12

Ignorance

Question 13

What does ISO/IEC 27001 regulate?

Answer 13

Defines the processes and requirements for an organization’s
information security management systems.

Question 14

What does the Payment Card Industry Data Security Standards
(PCI-DSS) regulate?

Answer 14

Defines the security standards for any organization that
handles cardholder information for debit cards, credit cards,
prepaid cards, and other types of payment cards.

Question 15

What does Health Insurance Portability and Accountability
Act (HIPAA) regulate?

Answer 15

A set of standards that ensures a person’s health information
is kept safe and only shared with the patient and medical
professionals that need it.

Question 16

What is the Sarbanes Oxley Act (SOX)?

Answer 16

A law enacted in 2002 with the goal of implementing
accounting and disclosure requirements that would increase
transparency in corporate governance and financial
reporting and formalizing a system of internal checks and
balances.

Question 17

What is the Digital Millennium Copyright Act (DMCA)?

Answer 17

A law is designed to protect copyrighted
works.

Question 18

What is the Federal Information Security Management Act (FISMA)?

Answer 18

A law that defines how federal government data, operations, and
assets are handled.

Question 19

What is an Objective-Based Penetration Test?

Answer 19

It is an objective-based test that focuses on the overall security of the organization and its data security.

Question 20

What is the Performing Reconnaissance stage of the Ethical Hacking Methodology?

Answer 20

the hacker begins gathering information about the
target. This can include gathering publicly available information,
using social engineering techniques, or even dumpster diving

Question 21

What is the Scanning and Enumeration stage of the Ethical Hacking Methodology?

Answer 21

Scanning is a natural extension of reconnaissance. The hacker uses
various tools to gather in-depth information about the network,
computer systems, live systems, open ports, and other features.

Extracting information such as usernames, computer names,
network resources, shares, and services is known as enumeration.

Enumeration is a part of the scanning step

Question 22

What is the Establishing Access stage of the Ethical Hacking Methodology?

Answer 22

In this phase, the hacker uses all the information gathered through
reconnaissance and scanning to exploit any vulnerabilities found
and gain access.

Question 23

What is the Maintaining Access stage of the Ethical Hacking Methodology?

Answer 23

Once the hacker has gained access, he can use backdoors, rootkits,
or Trojans to establish permanent access to the system.

Question 24

What is the Clearing Tracks stage of the Ethical Hacking Methodology?

Answer 24

The final step in the hacking process is clearing tracks. The hacker
overwrites log files to hide the fact they were ever there.

Question 25

What is the Open Web Application Security Project (OWASP)?

Answer 25

It describes techniques for testing the most common web applications and web service security issues.

Question 26

What is the NIST SP 800-115

Answer 26

a guide to the basic technical aspects of conducting information security assessments.

Question 27

Describe a Black Box attack.

Answer 27

An attack where the hacker has no starting information. It simulates outside threats, ignoring inside threats. It is the most expensive attack.

Question 28

Describe a White Box attack.

Answer 28

A comprehensive test where the attacker has full knowledge of the target. Because of this it does not simulate a real world attack.

Question 29

Describe a Gray Box attack.

Answer 29

An attack where the hacker has partial knowledge of the target, simulating an insider threat. Requires less reconnaissance than black box.

Question 30

What is a Suicide Hacker?

Answer 30

Attacks targets for a cause. Getting caught is irrelevant.

Question 31

What is a Cyber Terrorist?

Answer 31

Religious or political in motive. Goal is to create disruption or fear

Question 32

What is a State Sponsored Hacker?

Answer 32

* Is employed by a government * Retrieves top-secret information * Hacks other governments’ devices

Question 33

What is a Hacktivist?

Answer 33

Main purpose is to protest and get their views and opinions out Defaces websites Attacks with DoS/DDoS

Question 34

Script Kiddie

Answer 34

* Is extremely unskilled * Uses pre-developed tools and scripts * Has no desire to learn

Question 35

What is Risk Assessment and what four methods deal with risk?

Answer 35

The purpose of a risk assessment is to identify areas of vulnerability within the organization’s network. There are four common methods for dealing with risk: * Avoidance * Transference * Mitigation * Acceptance

Question 36

What is Scope Creep

Answer 36

This is when the client begins asking for small deviations from the scope of work. This can cause the project to go off track and increase the time and resources needed to complete it.

Question 37

What are the three types of testing?

Answer 37

Goal-based testing Objective-based testing Compliance-based testing

Question 38

What is a Goal-Based Penetration Test?

Answer 38

A goal-based penetration test will focus on the end results. The goals must be specific and well-defined before the test can begin