Nmap and Snort Command Line Quiz

Questions and Answers

Who are the primary victims of SMURF attacks on the Internet?

Mail servers

IRC servers (correct)

IDS devices

SPAM filters

What type of attacks target DNS servers directly?

DNS cache poisoning attacks (correct)

DNS reverse connection attacks

DNS reflector and amplification attack

DNS forward lookup attacks

TCP/IP session hijacking is carried out in which OSI layer?

Transport layer (correct)

Datalink layer

Physical layer

Network layer

What is the term used in serving different types of web pages based on the user’s IP address?

Website cloaking

True or False: Data is sent over the network as cleartext (unencrypted) when Basic Authentication is configured on web servers.

True

What is the countermeasure against XSS scripting?

Replace < and > characters with < and > using server scripts

What is the main reason provided in the text for disabling LM authentication in Windows XP?

To enhance security as it is weaker and vulnerable to attacks

If you want to view only packets sent from 10.0.0.22 in Ethereal, what filter should you apply?

ip.src == 10.0.0.22

What does the FIN in a TCP flag define?

Used to close a TCP connection

What does ICMP (type 11, code 0) denote?

Time Exceeded

Which of the following statements best describes a white-hat hacker?

Security professional

What is the first phase of hacking?

Reconnaissance

What is the purpose of the 'nmap' command with the flags '-sX -p 22,53,110,143,4564 198.116.*.1-127'?

Scan for open ports on specific IP addresses

Which C/C++ function is notorious for not performing bound checks and is a common source of buffer overflow vulnerabilities?

gets()

How can SMB hijacking be prevented in Windows operating systems?

Disable NetBIOS over TCP/IP in Windows NT and 2000

Who represents the highest risk to your network among the following types of hackers?

Black-hat hackers

Which command-line switch would you use for OS detection in Nmap?

-O

How can you compromise a system that relies on cookie-based security?

Intercept the communication between the client and the server and change the cookie to make the server believe there is a user with higher privileges.

What action should be taken before using Windows to enhance security?

Make sure a new installation of Windows is patched by installing the latest service packs.

What should be done to enhance Windows security immediately upon installation?

Create a non-admin user with a complex password and log onto this account.

How could you bypass standard authentication on a VPN?

Implement biometric authentication instead of standard authentication for VPN access.

How can an attacker gain higher-level privileges in a system protected by cookies?

Delete the cookie, reestablish connection to the server, and access higher-level privileges.

What action would significantly enhance VPN security?

Enable a 25-character complex password policy for VPN access.

Who poses the most threat to an organization's security?

Black-hat hacker

Which of the following should be included in an ethical hacking report?

Findings of the test

What are the four regional Internet registries?

APNIC, PICNIC, NANIC, ARIN

Which tool is used for performing footprinting undetected?

Whois search

What is the next immediate step after footprinting?

Scanning

How does traceroute work?

It sends a specially crafted IP packet to a router to locate the number of hops from the sender to the destination network.