SANS SEC504 Tools Exam Questions With 100% Correct Answers

SANS SEC504 Tools Exam Questions With 100% Correct Answers 12Whois - answerWeb service for retrieving historical whois information. Costs $1/lookup Acunetix Web Vulnerability Scanner - answerAcunetix Web Vulnerability Scanner is a complete web application security testing solution that can be used both standalone and as part of complex environments. It offers built-in vulnerability assessment and vulnerability management. (Remember these in LR logs...) Aircrack-ng - answerAircrack-ng is a Wi-Fi network attack tool, targeting WEP and WPA- PSK/WPA2-PSK networks. Airdecap-ng - answerPart of Aircrack-ng, decrypt the packets from a Wi-Fi WEP or WPA- PSK/WPA2-PSK packet capture following key recovery. Anki - answerAnki is a flexible flash card system that applies spaced repetition theory for improved long-term retention development. BCDedit - answerBCDEdit is a Windows command line tool for managing Boot Configuration Data (BCD). BCD files provide a store that is used to describe boot applications and boot application settings. BCDEdit can be used for a variety of purposes, including creating new stores, modifying existing stores, adding boot menu options, and so on. Beats - answerServer-side tools for ingesting and shipping data to identified sources (commonly Elasticsearch; faster and less complex than Logstash but less functional). Includes Filebeat, Packetbeat, Winlogbeat, and others. BeEF - answerThe Browser Exploitation Framework is a suite of tools for exploiting vulnerabilities in browsers delivered through several attack vectors. Modular XSS hook. Browser exploitation framework Bettercap - answerBettercap is a multi-functional attack took that targets Wi-Fi, Bluetooth Low Energy, wireless keyboards, and Ethernet networks through reconnaissance, injection, and MITM attacks. Automatically discovers targets and ARP poisons + extras. Bloodhound - answerBloodhound graphically maps the relationships to systems, permissions on those systems, and the permissions of the users logged onto those systems to help an attacker identify the most direct route to elevating the permissions of the system they have access to into a domain admin account. Burp Proxy - answerCross-platform web proxy for inspecting and attacking web sites and clients. Web App Attack Proxies, auto regex alteration of HTTP Certificate Transparency Search - answerExamine certificate registration data for host and system discovery. Certutil - answerCertutil is a utility that ships with Windows for managing certificates. Certutil can also download content from an arbitrary URL, can encode and decode base64 data, and can calculate hashes. Crazyradio PA - answerHardware tool for wireless keyboard and mouse keystroke sniffing and injection attacks. Curl - answercURL is a library and command line tool for transferring data using various network protocols, including HTTP, HTTPS, FTP, and more. Cyber Chef - answerThe Cyber Swiss Army Knife; a web app for encryption, encoding, compression and data analysis. CyberCPR - answerCyberCPR is an incident response and case management built with a focus on security and need-to-know information disclosure enforcement by SANS instructor Steve Armstrong. Incident Tracking. Web app that tracks incidents, systems, and evidence DeepBlueCLI - answerPowerShell script that parses Windows event logs for threat hunting. DefenderCheck - answerAssess an executable file to identify the location where Windows Defender characterizes it as malware. dig - answerDNS interrogation tool (the UNIX/Linux/macOS version of nslookup). DNSCat2 - answerDNSCat2 is a command and control framework operating over DNS. Communicates data with DNS quaries. DNS tunneling tool using netcat DNSStuff - answerVarious tools for interrogating internet-connected systems including DNS information, IP address information, and various network configuration settings. Domain Password Audit Tool (DAPT) - answerReport on the results of Windows domain password cracking results. BHIS sponsored DuckyScript - answerScripting language to automate keyboard attacks (over USB or wireless keyboard/mouse peripherals). Elastic Stack - answerCollection of tools including Elasticsearch, Kibana, Logstash, Beats for data collection, interrogation, reporting. Suitable for log analysis for multiple log sources. Elasticsearch - answerElasticsearch is a distributed, RESTful search and analytics engine.