Unit 2 - Practice Quiz

INT244 50 Questions
0 Correct 0 Wrong 50 Left
0/50

1 What is the primary definition of 'Footprinting' in the context of ethical hacking?

A. The physical tracking of a target user
B. The technique of gathering information about a target computer system
C. The act of exploiting a vulnerability in a web application
D. The process of creating a backup of a system

2 Which of the following best describes 'Passive Footprinting'?

A. Running a denial of service attack
B. Interacting directly with the target system
C. Collecting information without direct interaction with the target
D. Scanning ports on the target server

3 Which of the following is a major threat introduced by footprinting?

A. Slow internet connection
B. Immediate hardware failure
C. Automatic installation of malware
D. Social Engineering attacks

4 In the footprinting process, what is the 'intitle' Google search operator used for?

A. To search for a specific file type
B. To search for pages containing a specific string in the page title
C. To limit results to a specific domain
D. To search for a string within the URL

5 Which Google search operator would a hacker use to find specific file types, such as PDF or XLS, potentially containing sensitive data?

A. link:
B. site:
C. related:
D. filetype:

6 What is the 'Google Hacking Database' (GHDB)?

A. A tool to hack Google servers
B. A repository of search queries (dorks) used to find sensitive data publicly available
C. A software that blocks Google tracking
D. A database of Google employee passwords

7 How can job search sites be used for information gathering?

A. To modify job descriptions
B. To identify the technologies and hardware used by the target organization
C. To steal employee bank accounts
D. To shut down the company's recruitment portal

8 Which financial service database in the US is often used to gather financial information about public companies?

A. EDGAR database
B. Whois database
C. Exploit-DB
D. NVD database

9 What is the primary purpose of 'Scanning' in the hacking methodology?

A. To identify live hosts, open ports, and services on a network
B. To gather preliminary information from public sources
C. To gain administrative access to the system
D. To install a backdoor

10 Which of the following is NOT a typical phase of the scanning methodology?

A. Checking for vulnerability
B. Checking for open ports
C. Checking for live systems
D. Checking for social media profiles

11 Which type of scan is known as a 'Half-open' scan?

A. Null Scan
B. Stealth / SYN Scan
C. Xmas Scan
D. TCP Connect Scan

12 What distinguishes a 'TCP Connect' scan from a 'SYN' scan?

A. TCP Connect is more stealthy
B. TCP Connect completes the full 3-way handshake
C. TCP Connect uses UDP packets
D. TCP Connect requires root privileges

13 In an 'Xmas Scan', which flags are set in the TCP packet?

A. SYN, ACK, RST
B. No flags set
C. FIN, URG, PSH
D. SYN only

14 What is the defining characteristic of a 'Null Scan'?

A. It sends an empty UDP payload
B. It sends a packet with all flags set
C. It sends a packet with no flags set
D. It sends a ping request only

15 Which scan type relies on a 'Zombie' machine to hide the attacker's identity?

A. TCP Connect Scan
B. IDLE Scan
C. Ping Sweep
D. UDP Scan

16 What is the main challenge associated with 'UDP Scanning'?

A. It is often slow and unreliable because UDP is connectionless
B. It is too fast
C. It requires authentication
D. It is connection-oriented

17 What is 'Banner Grabbing'?

A. Stealing physical banners from a company
B. Capturing the welcome message or header sent by a service upon connection
C. Copying the website logo
D. Intercepting Wi-Fi signals

18 What is 'OS Fingerprinting'?

A. Determining the operating system of a target host
B. Finding the owner of the operating system
C. Scanning for fingerprints on a laptop
D. Cracking the OS password

19 Which parameter is commonly analyzed in Passive OS Fingerprinting?

A. CPU Temperature
B. Hard drive serial number
C. Login Username
D. Time to Live (TTL) values

20 What is 'Active OS Fingerprinting'?

A. Sending specially crafted packets to the target and analyzing the response
B. Sniffing traffic without sending packets
C. Checking the website HTML source code
D. Asking the admin for the OS version

21 Which tool is the industry standard for network scanning and OS fingerprinting?

A. Nmap
B. Aircrack-ng
C. John the Ripper
D. Wireshark

22 What is a 'Ping Sweep' used for?

A. To measure internet speed
B. To identify which IP addresses in a range are live hosts
C. To crash a server
D. To clean up temporary files

23 Which of the following is a countermeasure against Google Hacking?

A. Removing the robots.txt file
B. Using a shorter domain name
C. Registering the site with more search engines
D. Ensuring sensitive directories are disallowed in robots.txt and not indexed

24 What is 'Split DNS' used for as a countermeasure?

A. To increase the number of available IP addresses
B. To hide internal network information from external users
C. To split the internet bill
D. To speed up internet access

25 How can an ACK scan help an attacker?

A. It determines if the firewall is stateful and which ports are filtered
B. It opens a backdoor
C. It crashes the system
D. It retrieves the admin password

26 What is 'Vulnerability Scanning'?

A. Scanning a document to PDF
B. The automated process of identifying known security weaknesses in systems
C. Scanning for viruses on a USB drive
D. Monitoring network traffic for speed

27 Which of the following is a common vulnerability scanning tool?

A. Outlook
B. Photoshop
C. Nessus
D. FileZilla

28 What is a 'False Positive' in vulnerability scanning?

A. The scanner reports a vulnerability that does not actually exist
B. The scanner crashes during the scan
C. The scanner finds a critical vulnerability
D. The scanner fails to find an existing vulnerability

29 Why would an attacker use a 'Proxy' during scanning?

A. To bypass antivirus software on their own machine
B. To encrypt the target hard drive
C. To hide their actual IP address and identity
D. To speed up the scan

30 What is 'Proxy Chaining'?

A. Connecting multiple computers with a physical chain
B. Linking a proxy to a firewall
C. Using multiple proxy servers in a sequence to increase anonymity
D. Blocking all proxies

31 What is the 'TOR' network primarily used for in the context of security?

A. Hosting websites
B. Filtering spam emails
C. Providing anonymity by routing traffic through a distributed network of relays
D. Downloading movies faster

32 In the context of the 'Family tree of Scans', which category does a SYN scan belong to?

A. Port Scanning
B. Social Engineering
C. Vulnerability Scanning
D. Network Scanning

33 What information does 'WHOIS' lookup provide?

A. The root password of the server
B. The list of open ports
C. The current GPS location of the server
D. Domain registration details like owner, contact info, and expiry

34 Which Google operator limits the search to a specific domain?

A. domain:
B. host:
C. url:
D. site:

35 What is a potential risk of using public proxies?

A. The proxy owner may sniff/steal the data passing through it
B. They are too expensive
C. They always block HTTPS traffic
D. They cannot access Google

36 Which of the following is a countermeasure against Port Scanning?

A. Publishing all IP addresses online
B. Configuring a firewall to block unsolicited connection attempts
C. Using Telnet instead of SSH
D. Disabling the firewall

37 What does the Google operator 'cache:' do?

A. Deletes the browser cache
B. Speeds up the search
C. Displays Google's cached version of a web page
D. Hides the page from Google

38 Social networking sites are primarily used in which phase of hacking?

A. Clearing Tracks
B. Maintaining Access
C. Gaining Access
D. Footprinting/Reconnaissance

39 What is the purpose of 'archive.org' (Wayback Machine) in footprinting?

A. To archive email logs
B. To store stolen data
C. To hack into government archives
D. To view previous versions of websites to find old info

40 In a 'Full Open' scan, what happens when a port is open?

A. The scanner waits for a timeout
B. The scanner sends RST immediately
C. The scanner sends a FIN packet
D. The scanner completes the 3-way handshake (SYN, SYN-ACK, ACK)

41 Which of the following describes 'Competitive Intelligence' in the context of footprinting?

A. Spying on employees via webcam
B. Bribing competitor employees
C. Gathering publicly available information about competitors
D. Stealing trade secrets via malware

42 What is 'Traceroute' used for in footprinting?

A. To map the network path and routers between the attacker and the target
B. To crack the Wi-Fi password
C. To find the physical location of the server
D. To scan for viruses

43 Which scan is designed to be invisible to legacy logging systems?

A. Stealth Scan
B. Ping Sweep
C. List Scan
D. TCP Connect Scan

44 What is the primary function of an 'Anonymizer'?

A. To delete cookies
B. To encrypt emails
C. To mask the user's identity while browsing the web
D. To scan for malware

45 If a target system responds with an RST packet to a SYN packet, what does it usually mean?

A. The system is offline
B. The port is open
C. The port is closed
D. The port is filtered

46 What is the main benefit of 'Passive' footprinting over 'Active'?

A. It allows modifying data
B. It avoids alerting the target
C. It is faster
D. It provides more detailed technical info

47 Which tool allows you to visualize the path of a packet across the internet geographically?

A. Netcat
B. Ping
C. Visual Traceroute
D. Telnet

48 What is 'DNS Interrogation'?

A. Probing DNS servers to extract DNS records (A, MX, CNAME, etc.)
B. Redirecting DNS traffic
C. Asking the admin for the DNS password
D. Deleting DNS records

49 Which of the following is a countermeasure against OS Fingerprinting?

A. Using the default OS settings
B. Modifying the default TTL values and TCP window sizes
C. Disabling antivirus
D. Using an open Wi-Fi network

50 What is the relationship between Footprinting and Scanning?

A. Scanning precedes Footprinting
B. Footprinting gathers broad info, while Scanning actively probes the identified targets
C. Scanning is passive, Footprinting is active
D. They are the same thing