Ethical Hacking Exam with Correct Solutions 2024

Ethical Hacking Exam with Correct Solutions 2024 In a wireless environment, where do we (the attacker) need to be positioned to perform a MITM attack? - Answer -Within wireless range of the wireless network What are the On-Path execution Steps in order? - Answer -1. Attacker places their system between computers that communicate with each other 2. Ideally, victim should not be aware their traffic is being intercepted 3. The attacker collects and potentially modifies data 4. The attacker analyzes and potentially weaponizes collected data. In a wired environment, where do we (the attacker) need to be positioned to perform a MITM attack? - Answer -Physically connected to the network ARP poisoning forges what? - Answer -ARP Packets True or false? DNS poisoning can occur without the attacker being on-path - Answer -False What tool did we use to perform BOTH ARP spoofing and DNS poisoning? - Answer -Bettercap What is SSL Stripping? - Answer -When the attacker removes encryption communications to read data. What occurs during network scanning? - Answer -You map the network structure, collect critical information about the network, and identify devices on the network What can you identify with a network scan? - Answer -Running services, live hosts, fingerprints, open ports What tool can you use to perform network scanning? - Answer -nmap What's a fingerprint? - Answer -Version information for running services What does ARP translate? - Answer -L2 to L3 addresses What does DNS translate? - Answer -Hostnames to L3 addresses How do you secure HTTP traffic? - Answer -With a digital certificate What's an example hash? - Answer -MD5, SHA256, SHA1How can you identify a password? - Answer -Password guessing, default passwords, cracking and phishing True or false? You can crack a password if it has a weak hash. - Answer -True True or false? A mutated dictionary attack uses a standard password list