Chapter 7: Protecting Against Advanced Attacks

Question 1

What is a Denial-of-Service (DoS)?

Answer 1

An attack that makes a service unavailable by overwhelming it with traffic.

Question 2

What is a Distributed Denial-of-Service (DDoS)?

Answer 2

A DoS attack launched from multiple systems simultaneously.

Question 3

What is Resource Exhaustion?

Answer 3

Draining a system’s resources to degrade its performance or outright cause it to crash.

Question 4

What is Reflected DDoS?

Answer 4

A DDoS that tricks legitimate servers into flooding a target with responses.

Question 5

What is Amplified DDoS?

Answer 5

A DDoS that uses small requests to trigger larger responses from servers.

Question 6

What is SYN Flood?

Answer 6

A DoS attack that overwhelms a server by not completing TCP handshakes.

Question 7

What is Forgery?

Answer 7

An attack that occurs when an attacker creates a fake identity, certificate, file, or other object in an attempt to fool unsuspecting users or systems.

Question 8

What is Spoofing?

Answer 8

An example of forgery, occurs when one person or entity impersonates someone or something else (IP Spoofing, MAC Spoofing, etc.).

Question 9

What is On-Path Attack? AKA man-in-the-middle attack.

Answer 9

An attack where the attacker intercepts and potentially alters communications.

Question 10

What is an Attacker-in-the-browser attack?

Answer 10

A malware-based attack that manipulates browser sessions in real-time, often to intercept or alter sensitive data like banking transactions.

Question 11

What is SSL Stripping?

Answer 11

Downgrading HTTPS to HTTP to intercept unencrypted data.

Question 12

What is DNS Poisoning?

Answer 12

Tampering with DNS records to redirect users to fake sites.

Question 13

What is a Pharming Attack?

Answer 13

Redirecting users to malicious websites through DNS manipulation.

Question 14

What is URL Redirection?

Answer 14

Sending users to different, often malicious, websites without their knowledge.

Question 15

What is Domain Hijacking?

Answer 15

Taking unauthorized control of a domain name.

Question 16

What is DNS Filtering?

Answer 16

Blocking harmful websites by preventing DNS resolution.

Question 17

What is a DNS Sinkhole?

Answer 17

A fake DNS server that traps malicious traffic for analysis.

Question 18

What is a Replay Attack?

Answer 18

Reusing captured data packets to gain unauthorized access.

Question 19

What is Credential Replay?

Answer 19

Reusing valid login credentials to gain unauthorized access.

Question 20

What is Input Validation?

Answer 20

Checking user input to prevent malicious data from entering a system.

Question 21

What are some good practices when verifying user input?

Answer 21

Verifying proper characters, blocking HTML code, prevent the use of certain characters, and implementing boundary/range checking.

Question 22

What are Race Conditions?

Answer 22

A flaw where two or more processes access shared data at the same time, leading to unpredictable results or vulnerabilities.

Question 23

What is Time of Check to Time of Use (TOCTOU)

Answer 23

A flaw where a system’s state changes between checking a condition and using it, leading to security issues.

Question 24

What is Error Handling?

Answer 24

The process of managing unexpected conditions in software to ensure stability and security.

Question 25

What are good examples of proper Error Handling?

Answer 25

Logging errors internally while showing generic messages to users to avoid system info exposure.

Question 26

What is Code Obfuscation?

Answer 26

A technique to make code unreadable or harder to reverse-engineer, often used to protect intellectual property.

Question 27

What is a Compiler?

Answer 27

A program that converts source code into machine-readable instructions.

Question 28

What are some potential vulnerabilities with outsourced code development?

Answer 28

Code does not perform expected tasks, code may have vulnerabilities that can be exploited, malicious code may be present, and lack of updates.

Question 29

What are some best practice headers for HTTPS?

Answer 29

HTTP Strict Transport Security, Content-Security-Policy, and X-Frame-Options.

Question 30

What is a Cookie?

Answer 30

A small file used by websites to store user session data and preferences.

Question 31

What is a Secure Cookie?

Answer 31

A cookie transmitted only over HTTPS to protection it from interception.

Question 32

What is Code Signing?

Answer 32

The process of digitally signing code to verify its integrity and source.

Question 33

What is Static Code Analysis?

Answer 33

A method to detect code issues by analyzing code without running it.

Question 34

What is a Manual Code Review?

Answer 34

A person reviewing code to catch errors or vulnerabilities.

Question 35

What is Dynamic Code Analysis?

Answer 35

Evaluating software for issues while its running.

Question 36

What is Fuzzing?

Answer 36

A method that bombards software with unexpected inputs to find security flaws.

Question 37

What is Sandboxing?

Answer 37

A security method that isolates programs in a controlled environment to prevent them from harming the system or accessing sensitive data.

Question 38

What is Package Monitoring?

Answer 38

Watching software dependencies for updates and vulnerabilities.

Question 39

What is Software Version Control?

Answer 39

A system that tracks and manages changes to source code over time.

Question 40

What is a Secure Development Environment?

Answer 40

A coding setup hardened with security measures to reduce vulnerabilities during development.

Question 41

What are the multiple stages of a good secure development environment?

Answer 41

Development, Test, Staging, Production, Quality Assurance (QA) (the process can look different across different organizations).

Question 42

What is a database?

Answer 42

A structured system for storing, managing, and retrieving data electronically.

Question 43

What is SQL?

Answer 43

A language for querying and managing data in relational databases.

Question 44

What is an SQL Query?

Answer 44

A command used to interact with and manipulate data in a database (e.g. SELECT * FROM users).

Question 45

What are Stored Procedures?

Answer 45

Precompiled SQL statements stored in a database to perform tasks and improve performance and security.

Question 46

What is an SQL Injection?

Answer 46

An attack where malicious SQL is inserted into a query to manipulate or access database data.

Question 47

What is a Memory Leak?

Answer 47

When a program doesn't release unused memory, leading to performance issues. Can cause a system to crash.

Question 48

What is Buffer Overflow?

Answer 48

Writing more data to a buffer than it can hold, potentially causing crashes or code execution.

Question 49

What is Memory Injection?

Answer 49

A technique where malicious code is injected directly into a program's memory to execute stealthy attacks without touching the disk.

Question 50

What is Integer Overflow?

Answer 50

When a calculation exceeds an integer's maximum value, leading to errors and vulnerabilities.

Question 51

What are Dynamic Link Library (DLL) Injections?

Answer 51

Injecting a malicious DLL into a process to run unauthorized code.

Question 52

What is an LDAP Injection?

Answer 52

Manipulating LDAP queries to gain unauthorized access to directory services.

Question 53

What is an Extensible Markup Language (XML) Injection?

Answer 53

Injecting malicious XML into an application to change logic or access data.

Question 54

What is Directory Traversal?

Answer 54

An attack that exploits file path manipulation to access unauthorized directories or files.

Question 55

What is Cross-site Scripting?

Answer 55

A web attack where malicious scripts are injected into trusted websites.

Question 56

What is Reflected XSS/non-persistent?

Answer 56

XSS where a script is immediately reflected in a response, often via a URL. The injected script is only temporarily present.

Question 57

What is Stored XSS/persistent?

Answer 57

XSS where malicious scripts are saved on a server and executed later by other users.

Question 58

What is Script Automation?

Answer 58

Using scripts to automate tasks, often leveraged for efficiency or large-scale attacks.

Question 59

What are some common use cases for Script Automation?

Answer 59

User provisioning, Resource Provisioning, Guardrails, Ticket Creation, Escalation, Enabling/disabling services and access, Continuous integration and testing, Integration and Application Programming Interfaces (APIs).

Question 60

What are some of the benefits of Script Automation?

Answer 60

Efficiency/Saves Time, Enforces Security Baselines, Standard Infrastructure Configuration, Employee Retention, Reaction Time, And Workforce Multiplier.

Question 61

What are some considerations that should be taken when implementing Script Automation?

Answer 61

Complexity, Cost, Single Point of Failure, Technical Debt, and Ongoing Supportability.