COMP40741: Ethical Hacking Overview

Questions and Answers

What is the first step to take after validating the country for penetration testing?

Gather information on Open-source intelligence

Start testing immediately

Register on Immersive Labs

Review the laws of the specific country (correct)

Which tool or platform is suggested for practicing penetration testing topics outside of local virtual machines?

Immersive Labs (correct)

Kali Linux

Burp Suite

Metasploit Framework

What should be completed during the Week 1 lab exercises?

Advanced penetration testing techniques

Setup physical network infrastructure

Complete system penetration assessments on client systems

Command Line tutorials in an Ubuntu Virtual Machine (correct)

Which aspect of penetration testing will be the focus for the next week?

Information Gathering and Footprinting (B)

What registration code is provided for creating an account on Immersive Labs?

CYBER-MILLION (D)

What type of hacker is primarily motivated by financial gain through cyber crimes?

Black Hats (C)

Which of the following motivations is primarily associated with vandals in hacking?

Anger directed at individuals or organizations (C)

Which group of hackers operates in a morally ambiguous territory, sometimes working as security professionals?

Grey Hats (B)

What ethical consideration is essential for ethical hackers to remember when performing hacking activities?

They must obtain permission before hacking. (D)

In terms of motivations, which of the following describes someone who hacks out of anger towards perceived injustices?

Anger (retaliatory) (B)

What type of hacker is known to identify security flaws but shares the findings with vendors to improve safety?

White Hats (D)

Which of the following describes the motivation of hackers who engage in activities like cyberstalking?

Power assurance (D)

What is a common misconception about obtaining permission for ethical hacking?

It gives hackers the right to do anything they want. (B)

What is the primary ethical consideration in penetration testing?

Obtaining informed consent before testing systems (C)

Which stage of penetration testing involves identifying and assessing vulnerabilities?

Vulnerability Assessment (B)

What kind of intelligence gathering is conducted during the reconnaissance phase?

Open-source intelligence (OSINT) gathering (B)

During exploitation, what is a common method used for privilege escalation?

Identifying unpatched vulnerabilities (D)

What is the purpose of threat modeling techniques in penetration testing?

To identify potential threats and their impacts on systems (C)

What are common vulnerabilities and exposures (CVE) primarily used for?

Standardizing vulnerability reporting (C)

Which of the following is a vital component of penetration testing documentation?

Risk Assessment and Mitigation strategies (D)

Which of the following best describes the primary aim of the module COMP40741?

To develop skills for identifying and addressing computer system vulnerabilities. (C)

What is one of the expected learning outcomes regarding knowledge and understanding?

Demonstrate an understanding of penetration testing methodologies. (B)

What critical thinking aspect is emphasized in risk assessment during penetration testing?

Analyzing the probability and impact of threats (C)

Which of the following skills should students develop upon completing the module?

Apply penetration testing techniques on virtual environments. (A)

In ethical hacking, what is a critical aspect that students must assess?

Ethical and legal considerations surrounding penetration testing. (D)

Which component is NOT typically included in the module specification?

Job placement opportunities (D)

What is one of the practical skills students are expected to develop in this module?

Identifying and exploiting vulnerabilities in computer systems. (B)

The module is part of which area of study?

Computer Science (D)

Which email address belongs to the module leader?

[email protected] (A)

What is responsible disclosure in the context of cybersecurity?

Notifying an organization about a security weakness and allowing time to fix it before publicizing. (C)

Why is confidentiality important when dealing with cybersecurity?

It prevents unauthorized sharing of sensitive information, like personal details and passwords. (C)

Which of the following best describes penetration testing?

A legal attempt to find and exploit vulnerabilities to strengthen security. (B)

What is a common requirement before conducting security tests in a professional setting?

Signing confidentiality and non-disclosure agreements. (D)

What is the purpose of a 'proof of concept' attack in penetration testing?

To show that a vulnerability exists and can be exploited. (C)

What determines the duration given for a company to patch a security vulnerability during responsible disclosure?

The complexity of the vulnerability and the risk it poses. (B)

Which of the following is NOT a law related to unauthorized access of computer systems?

Electronic Communications Privacy Act (D)

What is a key aspect of ethical hacking or penetration testing?

Using the same tools and techniques as malicious hackers to find weaknesses. (D)

What is the main purpose of the pre-engagement phase in penetration testing?

To establish the objectives and expectations with the client (D)

Which type of penetration testing involves the client providing no information before testing begins?

Black-box testing (A)

During which phase of the penetration testing framework do testers perform vulnerability assessment and targeting scanning?

Execution (B)

What is included in the scope of a penetration test?

The specific network configurations of the test (C)

Which of the following is NOT a type of penetration test?

Automated pentest (A)

What is the term for gaining access to a system after exploiting a vulnerability?

Post Exploitation (C)

What should be included in the written agreement before conducting a penetration test?

Written and signed permission from the client (C)

Which of the following phases follows the exploitation of weaknesses in a penetration test?

Post Exploitation (D)

Flashcards

Ethical Hacking

The practice of intentionally probing systems for vulnerabilities while adhering to legal standards.

Penetration Testing

A simulated cyber attack to identify security weaknesses in systems or networks.

Information Gathering

The process of collecting data to inform security assessments, often the first step in penetration testing.

Google Dorks

Advanced search techniques used to find vulnerabilities and sensitive data using Google search.

Open-source Intelligence (OSINT)

Information collected from publicly available sources, often used for gathering data in penetration testing.

Module Aims

Goals of the course, focusing on skills and knowledge in ethical hacking and penetration testing.

Learning Outcomes

Specific skills and understanding students should achieve by the end of the module.

Vulnerabilities

Weaknesses in a system that can be exploited by attackers.

Risk Assessment

Process of identifying and analyzing potential risks to minimize and mitigate threats.

Ethics in Testing

Moral principles guiding the conduct of penetration testing, ensuring legality and responsibility.

Practical Skills

Hands-on abilities developed to apply theoretical knowledge in real scenarios of penetration testing.

Malicious Hacker

A hacker who exploits vulnerabilities for criminal activities.

Motivation for Hacking

Reasons hackers engage in cyber crimes, such as profit, fun, or revenge.

Black Hats

Hackers who violate security to exploit systems or data for malicious purposes.

White Hats

Ethical hackers who help identify and fix security flaws.

Grey Hats

Hackers who operate in a morally ambiguous space, sometimes hacking for fun or alongside security jobs.

Cyber Stalking

Using technology to harass or threaten someone, linking self-worth to power over others.

Hacktivists

Hackers motivated by political or ideological beliefs to promote a cause or agenda.

Vulnerability Assessment

The process of identifying and evaluating security weaknesses in a system.

Exploitation Techniques

Methods used to take advantage of discovered vulnerabilities.

Legal and Ethical Considerations

Guidelines addressing the legality and morality of penetration testing practices.

Social Engineering

Manipulating people into revealing confidential information.

Penetration Testing Framework

A structured approach to conducting penetration tests, including planning, execution, and reporting.

Pre-engagement

The initial conversation with the client to understand their needs and expectations for the penetration test.

Types of Penetration Testing

Different categories of penetration tests including network, web, and physical tests.

Black-box Testing

A type of penetration test where the tester has no prior knowledge about the system.

White-box Testing

A type of penetration test where the tester is given full access to the system details.

Defining Scope

Establishing the boundaries and objectives of a penetration test.

Reporting

The final phase of penetration testing where findings and recommendations are documented and shared with the client.

Confidential Information

Data that must be kept secret, such as passwords or personal details.

Responsible Disclosure

Notifying an organization about a vulnerability with time to fix it before public knowledge.

Non-Disclosure Agreements

Legal contracts ensuring confidentiality of information shared during professional work.

Computer Misuse Act 1990

A UK law aimed at preventing unauthorized access to computer systems.

Exploit

A method used to take advantage of a vulnerability in a system.

Proof of Concept

Demonstrating that a security vulnerability can be exploited effectively.

Legislation on Cybersecurity

Laws worldwide preventing misuse and unauthorized access in computing.

Study Notes

Module Overview

• Module name: COMP40741: Ethical Hacking and Penetration Testing
• Lecture 1: Module overview and introduction to penetration testing
• Module leader: Dr. Nemitari Ajienka
• Module team: Dr. Kwame Assa-Agyei

Module Aims

• Equip students with knowledge, skills and ethical considerations for identifying and addressing vulnerabilities in computer systems.
• Develop comprehensive understanding of ethical hacking and penetration testing methods.
• Introduce students to principles, methodologies and tools of ethical hacking and penetration testing.
• Develop practical skills in identifying and exploiting vulnerabilities in computer systems.
• Assess the ethical and legal considerations surrounding penetration testing.
• Understand the importance of risk assessment and mitigation in cybersecurity.

Learning Outcomes

• Knowledge and understanding:
  • Demonstrate understanding of penetration testing methodologies.
  • Demonstrate understanding of ethical hacking principles and methodologies.
  • Evaluate the legal and ethical implications of penetration testing.
  • Identify, analyse and assess vulnerabilities and threats in computer systems.
• Skills, qualities and attributes:
  • Apply penetration testing techniques to identify and exploit vulnerabilities.
  • Develop effective strategies for securing computer systems and networks.
  • Communicate security findings and recommendations through comprehensive reports.
  • Demonstrate critical thinking in risk assessment and mitigation.

Assessment

• Online in-class test (Individual): 30%, covering K1, K2, and K3
• Report (Individual): 70%, covering K1, K4, S1 to S4. This involves a hands-on penetration testing project, demonstrating vulnerability identification, exploitation, risk mitigation, and reporting.

Module Specification

• Module overview and aims included in the Learning Room on NOW.
• Module content, delivery methods, schedule, indicative reading, learning outcomes and assessment details also found on NOW.

Provisional Module Content

• Week 1-3: Introduction to Ethical Hacking and Pentesting, Overview of penetration testing methodologies, Information Gathering and Footprinting, Scanning and Enumeration
• Week 4-5: Vulnerability Assessment, Exploitation techniques and tools, Legal and ethical considerations
• Week 6-8: Risk assessment and mitigation, Exploits
• Week 9: Penetration testing, reporting standards
• Week 10: Social engineering techniques, Support Sessions

Resources/Reference Texts

• Graham, D. G. (2021). Ethical hacking: a hands-on introduction.
• Oriyano, S-P. (2017). Penetration testing essentials.
• Khawaja, G. (2021). Kali Linux penetration testing bible.
• Sabih, Z. (2018). Learn ethical hacking from scratch.
• Baloch, R. (2015). Ethical Hacking and Penetration Testing Guide

Web-based Resources and Tools

• Specific URLs for various platforms and tools, including Immersive Labs, Digital Cyber Academy, VMWare, Kali Linux, Metasploitable, SeedUbuntu, and Ubuntu.

Ethics Discussion

• Course is for educational purposes only.
• Lab exercises must be performed on provided testbed systems, not university or other equipment.

Permission and Privacy

• Permission required for penetration testing engagements.
• Sensitive information (user details, encryption keys, passwords) must be kept confidential.
• Confidentiality and non-disclosure agreements may be required for professional penetration testing.

Responsible Disclosure

• Responsible disclosure process for notifying companies or organizations of security vulnerabilities.
• Timeframe for patching before public disclosure to minimize risks.

Legislations

• Laws related to computer misuse, unauthorized access, and activities like penetration testing.
• References to UK Computer Misuse Act 1990, US Computer Fraud and Abuse Act 1986, and Australian Criminal Code.

What is Ethical Hacking/Penetration Testing?

• Legal and authorised attempt to locate and successfully exploit vulnerabilities in computer systems to strengthen security.
• "Proof of concept" attacks and specific recommendations for identified issues.

Importance of Studying Ethical Hacking/Penetration Testing

• EC-Council cyber career path options, and Vulnerability Assessment and Penetration Testing (VAPT) career pathways.

Penetration Testing Framework

• Various phases (Pre-engagement, Information Gathering, Target Scanning, Vulnerability Assessment, Exploitation, Post Exploitation, and Reporting).

Types of Penetration Testing

• Network, Infrastructure, Database, Web, Wireless, Social Engineering, and Physical penetration testing.

Types of Penetration Tests

• Black-Box (no prior information).
• White-Box (full details).
• Grey-Box (partial details).

Pre-engagement

• Defining Scope: Important for legal compliance.
• Questions: to clarify objectives, requirements, and boundaries.

Topics for Pre-engagement

• Scope, Documentation, Rules of Engagement, Third-Party-Hosted Environments, Success Criteria, Review of Past Threats, Avoid scan interference on security appliances

Scope Creep

• Efficient way to negatively impact penetration testing projects.
• Importance of clear documentation and validation of scope.

ISP (Internet Service Provider)

• Service provider verification and notification (if applicable).
• Location of servers needs to be verified.

Description

This quiz covers the foundational concepts of COMP40741: Ethical Hacking and Penetration Testing. It introduces students to the principles, methodologies, tools, and ethical considerations pertinent to identifying and addressing vulnerabilities in computer systems. Assess your understanding of penetration testing methods and the legal aspects surrounding them.