Our Blog

network
Attacker Rony installed a rogue access point within the organization’s perimeter and attempted to intrude into its internal network. Johnson, a security auditor, identified some unusual traffic in the internal network that is aimed at cracking the authentication mechanism. He immediately turned off the targeted network and tested for any weak and outdated security mechanism that are open to attack. What is type of vulnerability assessment performed by johnson in the above scenario? Option 1
DDOS attack
A DDOS attack is performed at layer 7 to take down web infrastructure. Partial HTTP requests are sent to the web infrastructure or applications. Upon receiving a partial request, the target servers opens multiple connections and keeps waiting for the requests to complete. Which attack is being described here? Option 1 : Slowloris attack Option 2 : Session splicing Option 3 : Phlashing Option 4 : Desynchronization 1. Slowloris attack Developed by Robert “RSnake” Hansen,
DNS protocol
John, a professional hacker, decided to use DNS to perform data exfilteration on a target network. In this process, he embedded malicious data into the DNS protocol packets that even DNSSEC cannot detect. Using this technique, John successfully injected malware to bypass a firewall and maintained communication with the victim machine and C&C server. What is the technique employed by John to bypass the firewall? Option 1 : DNS tunneling method Option 2 : DNS
John is investing web-application firewall logs and observers that someone is attempting to inject the following : char buff[10]; buff[10] = ‘a’; What type of attack is this ? Option 1 : Buffer overflow Option 2 : CSRF Option 3 : SQL injection Option 4 : XSS 1. Buffer overflow Buffer overflow this attack is an anomaly that happens when software writing data to a buffer overflows the buffer’s capacity, leading to adjacent memory locations
phase
Infecting a system with malware and using phishing to gain credentials to a system or web application are examples of which phase of the ethical hacking methodology? Option 1 : Scanning Option 2 : Gaining access Option 3 : Maintaining access Option 4 : Reconnaissance 1. Scanning The Scanning phase is another essential step, which is important , and it refers to the package of techniques and procedures wont to identify hosts, ports, and various
security protocol
This wireless security protocol allows 192-bit minimum-strength security protocols and cryptographic tools to protect sensitive data, such as GCMP-256, HMAC-SHA284, and ECDSA using a 384-bit elliptic curve. Which is the wireless security protocol? Option 1 : WPA3-Personal Option 2 : WPA3-Enterprise Option 3 : WPA2-Enterprise Option 4 : WPA2-Personal 1. WPA3-Personal WPA3-Personal brings better protections to individual users by providing more robust password-based authentication, even when users choose passwords that come short of typical complexity

Leave a Comment