Student Text

Question 1

What is aimed to improve understanding of attackers TTPs?

Answer 1

Lockheed Martin’s Cyber Kill Chain

Question 2

What are the categories in Lockheed Martins Cyber Kill Chain

Answer 2

• Reconnaissance
• Weaponization
• Delivery
• Exploitation
• Installation
• Command & Control
• Actions on Objectives

Question 3

What describes the actions an adversary would take against a target, is designed for network defenders, and has the later stages broken into 11 tactic categories?

Answer 3

MITRE ATT&CK Matrix

Question 4

What are the methods for footprinting?

Answer 4

• whois
• dig
• nslookup
• google
• social networking sites

Question 4

The Hacker Methodology

Answer 4

• Footprinting
• Scanning
• Enumeration
• Gaining access
• Escalating privileges
• Pilfering data
• Covering tracks
• Creating backdoors
• Actions on objectives

Question 4

What is passive collection of data about a target?

Answer 4

Footprinting

Question 5

What is bulk assessment and identification of target and includes direct interaction?

Answer 5

Scanning

Question 6

What are the methods for scanning?

Question 7

What is aggressively probing and looking for vulnerabilities?

Answer 7

Enumeration

Question 8

What are the methods of enumeration?

Answer 8

• Service version detection
• Operating system detection
• Banner grabbing

Question 9

What is establishing a foothold on the target system?

Answer 9

Gaining access

Question 10

What are the methods for gaining access?

Answer 10

• Username/passwords
• Brute force password guessing
• Remote code execution (metasploit/phishing)

Question 11

What is taking full control of a system?

Answer 11

Escalating privileges

Question 12

What are the methods for escalating privileges?

Answer 12

• Hashdump
• Password cracking
• Phishing

Question 13

What is gathering information for a target system?

Answer 13

Pilfering data

Question 14

What are the methods for pilfering data?

Answer 14

• Copy data don’t move
• System configs
• Shares
• ARP tables

Question 15

What is making sure users and admins don’t know we were there?

Answer 15

Covering tracks

Question 16

What are the methods for covering tracks?

Answer 16

• Log removal
• Restarting crashed services
• Timestomping
• Removing uploaded/installed software

Question 17

What is persisting on the system called?

Answer 17

Creating backdoors?

Question 18

What are the methods for creating backdoors?

Question 19

What is performing the end goal on the target called?

Answer 19

Actions on objectives

Question 20

What are the methods ofactions on objectives?

Question 21

Title 10

Answer 21

War

Question 22

Title 50

Answer 22

Intelligence

Question 23

AF Policy

Answer 23

17-212 Cyber Operations - CWO (Cyber Warfare Operations)

Question 24

JP 3-12

Answer 24

Joint Policy for Cyber - CWO called CO (Cyber Operations)

Question 25

OCO

Answer 25

Project power in foreign cyberspace

Question 26

DCO

Answer 26

Protect DoDIN from threats

Question 27

Buffer

Answer 27

A region of memory while its moving

Question 28

Buffer Overflow Attack

Answer 28

Data entered that exceeds the size of the buffer and spills into other memory space

Question 29

Rootkits

Answer 29

The goal is to hide it's presence from users/OS - Can attach itself to security software to remain hidden - Can be different types (hardware/firmware, bootloader, memory, application, kernel mode)

Question 30

Man in the Middle

Answer 30

Attacker inserts himself into the communication between two devices

Question 31

Triggering

Answer 31

Goal: Interact w/ a target to have a program perform a defined function for an attacker - Could be accomplished through sending packets - Functions could include running a command, starting a listener, starting a reverse connection

Question 32

Obfuscation

Answer 32

Goal: alter code of malware to evade anti-virus software - makes it look new - packers (compress malware, hides from av and makes it difficult to RE) - crypters...

Question 33

Types of Ofuscation

Answer 33

- Network traffic - Executables - Text - Steganographyq

Question 34

WEP

Answer 34

- First - Uses RC4 - Replaced by WPA...

Question 34

Social Engineering

Answer 34

Goal: Convince a target to take actions they normally would not - pretexting - baiting - tailgating - phishing

Question 34

WPA

Answer 34

- Uses TKIP - Replaced by WPA2...

Question 35

WPA2

Answer 35

Deprecated WEP - Uses AES-CCMP - Prevents frame forgeries and replay attacks - Never re-uses encryption keys

Question 36

WPS

Answer 36

- 2 mandatory connection modes (push button, pin connect) - 2 optional connection modes (Near field communication, USB transfer)

Question 37

WPA3

Answer 37

- Newest - Uses Simultaneous Authentication Equals (SAE) replaces WPA2 pre-shared key - Uses forward secrecy (minimal data is exposed) - Easy connect, enhanced open

Question 38

Wireless hacking methodology

Answer 38

- Need to know SSID of WiFi Network - Need to be in the footprint of the access - Need a client...