Why would you consider sending an email to an address that you know does not exist within the company you are
Why would you consider sending an email to an address that you know does not exist within the
company you are performing a Penetration Test for?
What kind of Denial of Service attack was best illustrated in the scenario above?
Bob was frustrated with his competitor, Brownies Inc., and decided to launch an attack that would
result in serious financial losses. He planned the attack carefully and carried out the attack at the
appropriate moment.
Meanwhile, Trent, an administrator at Brownies Inc., realized that their main financial transaction
server had been attacked. As a result of the attack, the server crashed and Trent needed to reboot
the system, as no one was able to access the resources of the company. This process involves
human interaction to fix it.
What kind of Denial of Service attack was best illustrated in the scenario above?
What tool can crack Windows SMB passwords simply by listening to network traffic?
What tool can crack Windows SMB passwords simply by listening to network traffic?
Select the best answer.
What tool would be best used to accomplish this?
Johnny is a member of the hacking group Orpheus1. He is currently working on breaking into the
Department of Defense’s front end Exchange Server. He was able to get into the server, located in
a DMZ, by using an unused service account that had a very weak password that he was able to
guess. Johnny wants to crack the administrator password, but does not have a lot of time to crack
it. He wants to use a tool that already has the LM hashes computed for all possible permutations
of the administrator password.
What tool would be best used to accomplish this?
What are some things he can do to prevent it?
A network admin contacts you. He is concerned that ARP spoofing or poisoning might occur on his
network. What are some things he can do to prevent it?
Select the best answers.
In this type of Man-in-the-Middle attack, packets and authentication tokens are captured using a sniffer
In this type of Man-in-the-Middle attack, packets and authentication tokens are captured using a
sniffer. Once the relevant information is extracted, the tokens are placed back on the network to
gain access.
However, host A can continue to receive data as long as the SYN sequence numbers of transmitted packets from h
The FIN flag is set and sent from host A to host B when host A has no more data to transmit
(Closing a TCP connection). This flag releases the connection resources. However, host A can
continue to receive data as long as the SYN sequence numbers of transmitted packets from host
B are lower than the packet segment containing the set FIN flag.
Which of these tools would do the SNMP enumeration he is looking for?
Peter, a Network Administrator, has come to you looking for advice on a tool that would help him
perform SNMP enquires over the network. Which of these tools would do the SNMP enumeration
he is looking for?
Select the best answers.
Which of the following hping2 command is responsible for the above snort alert?
Jason is the network administrator of Spears Technology. He has enabled SNORT IDS to detect
attacks going through his network. He receives Snort SMS alerts on his iPhone whenever there is
an attempted intrusion to his network.
He receives the following SMS message during the weekend.
An attacker Chew Siew sitting in Beijing, China had just launched a remote scan on Jason’s
network with the hping command.
Which of the following hping2 command is responsible for the above snort alert?
what type of attack is possible?
If a token and 4-digit personal identification number (PIN) are used to access a computer system
and the token performs off-line checking for the correct PIN, what type of attack is possible?