Untitled Quiz

Questions and Answers

Which of the following is an example of passive reconnaissance?

Attacker as a fake person for Help Desk support

Telephonic calls to target victim

Talk to the target user in person

Search about target records in online people database (correct)

What is the primary purpose of Google Dorks in reconnaissance?

To narrow down search results (correct)

To perform port scanning

To scan network vulnerabilities

To sweep ports logically

Which of the following is NOT a scanning methodology?

Sweeping

Port Scanning

Vulnerability scanning

Google Dorks (correct)

What is the primary function of Maltego in ethical hacking?

To acquire information about target user

Which phase comes after scanning in ethical hacking?

Gaining access

In which phase does the hacker exploit the network or system vulnerabilities?

Gaining access

What is the risk if a system is not properly tested in scanning and gaining access phase?

A hacker can gain access illegally

What is the primary goal of reconnaissance in ethical hacking?

To acquire information about target user

What is the primary goal of the reconnaissance phase in ethical hacking?

To gather information about the target user or system

Which of the following tools is used for scanning the network for vulnerabilities?

Nexpose

What is the difference between active and passive reconnaissance?

Active reconnaissance is done directly, while passive reconnaissance is done indirectly

Which of the following is an example of passive reconnaissance?

Searching public records

What is the purpose of using Google Dorks in reconnaissance?

To gather information about the target user or system

How many subtypes of reconnaissance are there?

2

What is the primary difference between active and passive reconnaissance in terms of interaction?

Active reconnaissance involves direct interaction, while passive reconnaissance involves indirect interaction

Which of the following is NOT a characteristic of passive reconnaissance?

Using social engineering tactics

What is the primary focus of forensic science in the context of digital investigations?

Application of science to investigation and prosecution of crime or to the just resolution of conflict

What is the primary goal of reconnaissance in digital investigations?

To conduct a reconnaissance probe of the target website

What is the purpose of preservation of digital evidence?

To analyze digital evidence

What is the next step after seizing digital evidence in an investigation?

Examination of digital evidence

What type of analysis is used to establish relationships between different pieces of digital evidence?

Relational analysis

What is the purpose of hashing in digital investigations?

To authenticate digital evidence

What is the primary goal of digital investigations?

To gather evidence for legal action

What is the purpose of experimentation in digital investigations?

To analyze digital evidence

Study Notes

Information Gathering in Ethical Hacking

• Reconnaissance is the phase where ethical hackers gather information about the target user or system.
• It involves tools and techniques such as Hping, NMAP, and Google Dorks.

Types of Reconnaissance

• There are two subtypes of reconnaissance: Active and Passive Reconnaissance.
• Active Reconnaissance involves interacting with the target user or system directly to gain information.
• Examples of Active Reconnaissance include telephone calls as a help desk or fake customer care person.
• Passive Reconnaissance involves gathering information indirectly without interacting with the target user or system.
• Examples of Passive Reconnaissance include searching public records, searching online people databases, or looking for target details in paper files.

Scanning Methodologies

• Scanning is a phase that comes after reconnaissance and involves using tools to identify vulnerabilities in a system.
• Scanning methodologies include Vulnerability Scanning, Sweeping, and Port Scanning.
• Google Dorks is not a scanning tool, but rather a reconnaissance tool used for gathering information about a target user.

Ethical Hacking Phases

• The phases of ethical hacking are: Reconnaissance, Scanning, Gaining Access, and Maintaining Access.
• Gaining access is the phase where ethical hackers exploit vulnerabilities in a system or network.
• Maintaining access is the phase where access is maintained to ensure continued control over the system or network.

Forensic Science and Digital Investigations

• Forensic science is the application of science to investigation and prosecution of crime or to the just resolution of conflict.
• Digital investigations can involve principles of forensic science.
• Preservation of digital evidence involves collecting computer hardware, making a forensic image of storage media, and copying necessary files.
• Examination of digital evidence includes activities such as seizure, preservation, and documentation, as well as recovery, harvesting, and reduction.
• Analysis of digital evidence includes activities such as experimentation, fusion, and correlation.

Digital Evidence Analysis

• Analysis of digital evidence involves relating evidence to its source using IP addresses, MD5 values, filenames, and date-time stamps.
• Different types of analysis include relational (e.g., link analysis) and temporal (e.g., timeline analysis).
• When investigating a website, it is necessary to determine the location of the web servers before obtaining authorization to seize the systems.