module 1

Question 1

What are the regulations in Ethical Hacking ?

Answer 1

• use information learned only for educational purposes.
• never use tools for malicious purposes or for fun.
• do not misuse the information for gaining unauthorized access.
• inform loophole

Question 2

What are the basic terminology of hacking ?

Answer 2

• Vulnerability
• Threat
• Intrusion
• Breach

Question 3

What is vulnerability?

Answer 3

Weakness in the network and/or its protocol.

Question 4

What is threat?

Answer 4

Set of circumstances that has the potential to cause harm.

Question 5

What is intrusion?

Answer 5

Any act or event that compromises the information on a network.

Question 6

What is breach?

Answer 6

Breakdown of security of the network.

Question 7

What is white hat hacker?

Answer 7

• ethical hacker
• non-malicious reasons
• clear code of ethics
• work together to improve security

Question 8

What is black hat hacker?

Answer 8

• get information without authorization

- for crime purposes

Question 9

What is grey hat hacker?

Answer 9

• ambiguous ethics borderline.

Question 10

What are the 5 generic intrusion types?

Answer 10

• interruption
• interception
• modification
• fabrication
• invasion

Question 11

What is interruption?

Answer 11

• making access to a resource become unavailable

DOS attack.

Question 12

What is interception?

Answer 12

• Gaining unauthorized access to information

eavesdrops
sniffing: active/ passive

Question 13

What is modification?

Answer 13

• change the information of a resource

Man-in-the-middle

Question 14

What is fabrication?

Answer 14

• insertion of malicious objects into a system

malware

Question 15

What is invasion?

Answer 15

• Taking control of a resource and stealing information

Session Hijacking

Question 16

Five/six levels of intrusion ?

Answer 16

0: Normal System User- no intrusion
1: Intrusion occurs, but no evidence of damage and no trail is left. Example: Passive Sniffing
2: Intrusion occurs, there is no evidence of damage but a trail is left. Example: Active Sniffing
3: Files are damaged, programs and data are altered. Example: Malware
4: Services are disrupted. Example: Denial of Service
5: Cyber-espionage/Cyber-felony is committed – valuable information is stolen. Example: Session Hijacking

Question 17

what are the anatomy of a Cyber Attack?

4 steps.

Answer 17

• Gather information
• Look for vulnerabilities
• Get access to the network
• Launch the attack

Question 18

What are the tools for gather information?

Answer 18

• nslookup/dig IP address finder
• netcraft web server information gather
• traceroute IP address tracers
• Nmap port scan hosts finder
• wireshark traffic monitoring tools

Question 19

What are the Techniques for Gaining Access to the Network?

Answer 19

• Password Crackers
• Keyloggers
• Address Spoofers

Question 20

What is Denial of service Dos?

Answer 20

• Bring down a network so that legiBmate users cannot access it.

Question 21

What is Man-in-the-middle attack?

Answer 21

• Traffic will now flow through the attacker’s machine without the knowledge of the client or the server

Question 22

What is Data Modification ?

Answer 22

• Man-in-the-middle attack can be extended to perform data modification – insert/drop/alter packets in transit

Question 23

What is Session Hijacking ?

Answer 23

watching an ongoing communication between a client and a server and recording session numbers, IP addresses

The aFacker then “zaps” the client with a DoS attack and then takes over the existing connection by spoofing the client to the server using the same addresses, session numbers,

Question 24

What is Replay Attack ?

Answer 24

Watch an ongoing communication and record transaction and replay the recorded packets to the server later.
• Works when server does not save the state information.

Question 25

What are the seven security goals ?

Answer 25

Confidentiality
Integrity
Authentication
Non-repudiation
Certification
Access Control
Availability

Question 26

Confidentiality 保密

Answer 26

no eavesdropping

Question 27

Integrity 完整

Answer 27

message sent = message received

Question 28

Authentication 验证

Answer 28

sender validation

Question 29

Non-repudiation (rejection)

Answer 29

non denial of a transaction

Question 30

Certification 鉴定

Answer 30

third party validation

Question 31

Access Control

Answer 31

who can access what and when

Question 32

Availability 可获得性

Answer 32

resource are always available to legitimate users