2230 Final

Questions and Answers

What is the potential outcome of compromising any SNMP community strings on the target PC?

• Denial of Service (DoS) attack
• Compromise of the target server
• Disclosure of information about the device (correct)
• Remote access to the target PC

What is the potential outcome of launching a phishing attack using the Social-Engineer Toolkit (SET)?

• Remote access to the target system
• Denial of Service (DoS) attack
• Disclosure of sensitive information (correct)
• Malware infection on the target system

What is the main purpose of reverse engineering in mobile app security?

• To bypass access control mechanisms implemented by mobile app developers
• To understand the underlying architecture of a mobile application and potentially manipulate the mobile device (correct)
• To present users with links to redirect them to malicious sites
• To test mobile applications and determine how they communicate with web services and APIs

What is the primary purpose of sandbox analysis in mobile app security?

To understand the behavior of a mobile application in a controlled environment (C)

What is the primary function of the Needle tool?

To test the security of iOS applications (D)

What type of SQL injection attack involves entering a string to display all records in a database table?

Boolean SQL injection (B)

What is a common vulnerability in BLE-enabled devices?

Lack of cryptographic functions (D)

What is the purpose of using immutable queries as a mitigation for SQL injection vulnerabilities?

To reduce the attack surface (D)

What is a characteristic of insecure APIs?

They have weak authentication measures (D)

What is the purpose of a C2 utility?

To create multiple reverse shells (C)

What is a consequence of hard-coded credentials?

It can be leveraged by an attacker to completely compromise an application (B)

What is the primary purpose of a watering hole attack?

To infect a group of users who visit a compromised website (C)

Which measure should the tester recommend to the company to prevent SQL injection and cross-site scripting attacks?

User input sanitization (D)

What is a good operational control implemented in the access policy for a datacenter?

Time-of-day restrictions (C)

Which solution would achieve the goal of implementing multifactor authentication for the datacenter access?

Biometric controls (D)

What is the purpose of a security audit?

To identify vulnerabilities in the system (D)

What is the benefit of implementing multifactor authentication for the datacenter access?

It provides an additional layer of security (D)

What is the purpose of a penetration tester's post-engagement cleanup process?

To remove any traces of the testing activity (B)

What is the primary goal of penetration testing?

To identify vulnerabilities and weaknesses, and test defenses and response strategies (A)

Which type of vulnerability assessment involves scanning for open ports, services, and OS detection?

Network-based (B)

What is the process of taking advantage of vulnerabilities in a network to gain unauthorized access or control?

Network exploitation (C)

Which social engineering technique involves creating a fake scenario to gain trust and access?

Pretexting (C)

What is the first step in the incident response process?

Contain the incident to prevent further damage (C)

What is the goal of a network penetration test?

To identify vulnerabilities and weaknesses in a system (A)

What is the purpose of enumeration in network exploitation?

To gather information about network devices, services, and users (A)

What is the goal of social engineering?

To exploit human psychology to gain unauthorized access or control (A)

What is the purpose of post-exploitation in network exploitation?

To maintain access, escalate privileges, and cover tracks (B)

What is the goal of incident response?

To respond to and manage a security incident or data breach (D)

What is the primary goal of the reporting and remediation phase in ethical hacking?

To provide a report of findings and recommendations to the system owner (D)

What type of tool is Burp Suite?

Web application scanning tool (B)

What is a benefit of ethical hacking in an organization?

It provides a cost-effective way to identify and fix security vulnerabilities (D)

What is the purpose of using network scanning tools in ethical hacking?

To identify open ports and services on a network (C)

What is the purpose of ethical hacking in an organization?

To identify and remediate vulnerabilities before malicious hackers can exploit them (D)

What is the primary goal of ethical hacking?

To identify vulnerabilities and weaknesses to improve security (A)

What is the characteristic of a white-hat hacker?

Works to improve security and protect against threats (D)

What is the first step in the ethical hacking process?

Reconnaissance (D)

What is a characteristic of a bug bounty hunter?

Earns rewards for discovering and reporting vulnerabilities (C)

What is the primary responsibility of an ethical hacker?

To report all identified vulnerabilities to the system owner (B)

What is the primary goal of penetration testing?

To identify vulnerabilities and test defenses (D)

What is the second step in the vulnerability assessment process?

Vulnerability identification (B)

What type of penetration testing is used to test the security of a Wi-Fi network?

Wireless penetration testing (A)

What is the primary goal of incident response?

To respond to a real-world attack (A)

What is the goal of social engineering penetration testing?

To test human vulnerability to phishing and pretexting (A)

What is the primary goal of network exploitation in penetration testing?

To use identified vulnerabilities to gain unauthorized access (A)

What is the purpose of vulnerability scanning in penetration testing?

To identify potential vulnerabilities in a network (C)

What is the first step in the incident response process?

Identification (C)

What is the primary goal of social engineering in penetration testing?

To use psychological manipulation to deceive individuals (C)

What is the purpose of Nmap in penetration testing?

To perform network exploration and security auditing (C)

What is the purpose of the incident response team (IRT) in incident response?

To respond to incidents (A)