Network Attacks

As opposed to simple DoS attacks that usually are performed from a single system, a DDoS attack uses multiple compromised computer systems to perform the attack against its target. The intermediary systems that are used as a platform for the attack (often referred to as zombies, and collectively as a botnet) are the secondary victims of the DDoS attack.

True

A type of DDoS attack where an attacker exploits vulnerabilities in certain services or protocols to generate responses that are much larger than the original request is referred to as:

Amplified DDoS attack

What defines a reflected DDoS attack?

Utilizing third-party servers to reflect and amplify attack traffic towards the target

 A DNS amplification attack is a type of DDoS attack wherein an attacker sends a small, specially crafted DNS query containing a spoofed IP address (the victim’s IP) to a compromised DNS server. Upon receiving the query, the DNS server generates a much larger response packet, which is then sent to the victim's IP address, causing potential disruption due to overwhelming traffic.

True

Which of the answers listed below refers to a cyberattack technique that relies on providing false DNS information to a DNS resolver for the purpose of redirecting or manipulating the resolution of domain names to malicious IP addresses?

DNS spoofing 

Remapping a domain name to a rogue IP address is an example of what kind of exploit?

DNS cache poisoning 

When domain registrants due to unlawful actions of third parties lose control over their domain names, they fall victim to:

Domain hijacking

The practice of gaining unauthorized access to a Bluetooth device is known as:

 Bluesnarfing

 A wireless disassociation attack is a type of: (Select 2 answers)

• Deauthentication attack

•  DoS attack

A wireless jamming attack is a type of:

 DoS attack

Which wireless attack focuses on exploiting vulnerabilities found in WEP?

IV attack

Which of the following statements can be used to describe the characteristics of an on-path attack?

• An on-path attack is also known as MITM attack

• Attackers place themselves on the communication route between two devices

• Attackers intercept or modify packets sent between two communicating devices

A network replay attack occurs when an attacker captures sensitive user data and resends it to the receiver with the intent of gaining unauthorized access or tricking the receiver into unauthorized operations.

True

What are the characteristic features of a session ID?

• A piece of data that can be stored in a cookie, or embedded as an URL parameter

• Typically stored on the client side (in the user's browser) rather than on the server 

• A unique identifier assigned by the website to a specific user

In a session replay attack, an attacker intercepts and steals a valid session ID of a user and resends it to the server with the intent of gaining unauthorized access to the user's session or tricking the server into unauthorized operations on behalf of the legitimate user.

 True

A technique that allows an attacker to authenticate to a remote server without extracting cleartext password from a digest is called:

Pass the hash