Deck D Prt. 2

Question 1

Man In The Middle

Answer 1

In Order to mitigate, Man-In-The-Middle (MITM) Attack, Make sure that Legitimate Network Routers are Configured to run Routing Protocols with Authentication

Question 2

Meet In The Middle Attack

Answer 2

Meet In the Middle Attack Is KNOWN Plaintext Attack Used Against DES Which Gives the Result that Encrypting Plaintext With ONE DES Key followed by Encrypting It with a Second DES Key is no more Secure THAN using a Single Key

Question 3

Multi-Homed Firewall

Answer 3

The Minimum Number of Network Connections in a Multihomed Firewall is 3

Question 4

NIDS

Answer 4

Is The (Network Intrusion Detection System) Best Applicable for Large Environments Where Critical Assets on the Network need Extra Scrutiny and is Ideal for Observing Sensitive Network Segments

Question 5

Nmap -oX Flag

Answer 5

In an Nmap Scan the -oX flag outputs the results in XML format to a file

Question 6

Nmap Command

Answer 6

nmap -sT -O -T0 is the Command that would Result in a Scan of Common Ports with the Least Amount of NOISE in Order to Evade IDS

Question 6

Nmap Command

Answer 6

nmap -T4 -F 10.68.3.10/24 Command allows you to Enumerate all Machines in the IP Address of 10.68.3.10

Question 7

OSINT

Answer 7

Is the Collection of Potentially Actionable, Overt, & Publicly Available Information

Question 8

PCI Compliance

Answer 8

Is the Standard Set by the CREDIT CARD Companies. It does not Recommend Rotating Employees handling Credit Card Transactions on a yearly Basis to Different Departments

Question 9

Penetration Test

Answer 9

A Penetration Test Actively Exploits Vulnerabilities in the Targeted Infrastructure, while a Vulnerability Scan Does Not Typically Involve Active Explication

Question 10

Printer Ports

Answer 10

Port 515 Is where PRINTERS Listen for Connection, Port 631 is for the IPP i.e Internet Printing Protocol and port 9100 is used for Printing as well

Question 11

RECON

Answer 11

Is the Time A Hacker Spends Performing Research to locate the Information about a Company

Question 12

Risk Acceptance

Answer 12

Is a GOOD Strategy if the risk is only 10% and Risk Threshold is 20%

Question 13

Rubber Hose Attack

Answer 13

A Rubber Hose Attack Allows Extraction of Cryptographic Secrets through coercion or torture such as beating that person with a rubber hose

Question 14

Rules Of Engagement

Answer 14

The Rules Of Engagement Describe the specifics of the Penetration Testing, The Associated Violations, and Essentially protects both the Organization’s Interest and your liabilities as a Tester

Question 15

STARTTLS

Answer 15

Is The Name of the Command USED by SMTP Transmit Email OVER TLS

Question 16

ShellShock Bash Vulnerability

Answer 16

env x=’(){:;}echo explit’ bash ‘“c ‘~cat/etc/passwd’ is an example of Shellshock Bash Vulnerability in LINUX that will Display Passwd content to the Command Prompt.

Question 17

Social Engineering

Answer 17

Is a Low Tech Way of Gaining Unauthorized Access to Systems

Question 18

Tunneling/Stealth/Encrypted Virus

Answer 18

Tunnelling Virus is a Virus that Attempts to Intercept Anti-Virus Software before it can detect Malicious Code. A Tunneling Virus Launches itself under anti virus Programs and then works by going to the Operating System’s Interruption Handlers and intercepting them, Thus avoiding Detection. Tunneling Virus Hides from anti Virus Program’s by actively altering and corrupting the chosen service all Interruptions when they are being run.
Stealth Virus is a Very tricky Virus as it changes the code that can be Used to Detect it. Hence, the Detection of Viruses becomes very difficult. Encryption Virus Exists in encrypted form to avoid detection. it Carries a DECRYPTION Algorithm along with it. So the Virus First Decrypts and Then Executes.

Question 19

Two Factor Authenticatoin

Answer 19

2FA is a Camera Capturing People Walking (GAIT-Something you Are) Combined with RFID Badges (Something You Have)

Question 20

UDP Port 53

Answer 20

UDP Port 53 is DNS is not Available, and Therefor websites will no longer be Accesssible.

Question 21

WHOIS

Answer 21

Is a system that consist of a PUBLICLY Available set of Databases that Contain Domain name Registration contact Informatoin

Question 22

Whisker

Answer 22

Is the Tool Used to Perform Session Splicing Attacks. Sessions Splicing is an IDS Evasion Technique in Which an Attacker Delivers Data in multiple small Sized PACKETS to the Target Computer, making it very Difficult for and IDS to detect the Attack Signatures. Hydra is a Password

Question 23

Whisker Tool

Answer 23

Is A EVASION TOOL for Session Splicing. One Basic Technique is to split the Attack Payload into Multiple Small Packets so that the IDS Must Reassemble the Packet Stream to Detect the Attack. A Simple Way of Splitting Packets is by Fragmenting them. The “Whisker” Evasion TOOL calls Crafting Packets with small Payloads ‘Session Splicing’

Question 24

HTTP-Methods

Answer 24

Is THE NMAP Script Engine that will help you detect HTTP Methods (GET, POST, HEAD, PUT, DELTE, TRACE)