Unit 2 - Practice Quiz

INT244 50 Questions
0 Correct 0 Wrong 50 Left
0/50

1 What is the primary definition of 'Footprinting' in the context of ethical hacking?

A. The act of exploiting a vulnerability in a web application
B. The process of creating a backup of a system
C. The physical tracking of a target user
D. The technique of gathering information about a target computer system

2 Which of the following best describes 'Passive Footprinting'?

A. Running a denial of service attack
B. Collecting information without direct interaction with the target
C. Scanning ports on the target server
D. Interacting directly with the target system

3 Which of the following is a major threat introduced by footprinting?

A. Automatic installation of malware
B. Immediate hardware failure
C. Social Engineering attacks
D. Slow internet connection

4 In the footprinting process, what is the 'intitle' Google search operator used for?

A. To limit results to a specific domain
B. To search for a specific file type
C. To search for a string within the URL
D. To search for pages containing a specific string in the page title

5 Which Google search operator would a hacker use to find specific file types, such as PDF or XLS, potentially containing sensitive data?

A. related:
B. filetype:
C. site:
D. link:

6 What is the 'Google Hacking Database' (GHDB)?

A. A repository of search queries (dorks) used to find sensitive data publicly available
B. A software that blocks Google tracking
C. A database of Google employee passwords
D. A tool to hack Google servers

7 How can job search sites be used for information gathering?

A. To shut down the company's recruitment portal
B. To modify job descriptions
C. To steal employee bank accounts
D. To identify the technologies and hardware used by the target organization

8 Which financial service database in the US is often used to gather financial information about public companies?

A. NVD database
B. EDGAR database
C. Whois database
D. Exploit-DB

9 What is the primary purpose of 'Scanning' in the hacking methodology?

A. To install a backdoor
B. To identify live hosts, open ports, and services on a network
C. To gain administrative access to the system
D. To gather preliminary information from public sources

10 Which of the following is NOT a typical phase of the scanning methodology?

A. Checking for vulnerability
B. Checking for live systems
C. Checking for open ports
D. Checking for social media profiles

11 Which type of scan is known as a 'Half-open' scan?

A. Xmas Scan
B. Null Scan
C. TCP Connect Scan
D. Stealth / SYN Scan

12 What distinguishes a 'TCP Connect' scan from a 'SYN' scan?

A. TCP Connect is more stealthy
B. TCP Connect completes the full 3-way handshake
C. TCP Connect requires root privileges
D. TCP Connect uses UDP packets

13 In an 'Xmas Scan', which flags are set in the TCP packet?

A. SYN, ACK, RST
B. No flags set
C. SYN only
D. FIN, URG, PSH

14 What is the defining characteristic of a 'Null Scan'?

A. It sends a ping request only
B. It sends a packet with no flags set
C. It sends a packet with all flags set
D. It sends an empty UDP payload

15 Which scan type relies on a 'Zombie' machine to hide the attacker's identity?

A. Ping Sweep
B. TCP Connect Scan
C. UDP Scan
D. IDLE Scan

16 What is the main challenge associated with 'UDP Scanning'?

A. It requires authentication
B. It is often slow and unreliable because UDP is connectionless
C. It is too fast
D. It is connection-oriented

17 What is 'Banner Grabbing'?

A. Capturing the welcome message or header sent by a service upon connection
B. Stealing physical banners from a company
C. Copying the website logo
D. Intercepting Wi-Fi signals

18 What is 'OS Fingerprinting'?

A. Determining the operating system of a target host
B. Cracking the OS password
C. Finding the owner of the operating system
D. Scanning for fingerprints on a laptop

19 Which parameter is commonly analyzed in Passive OS Fingerprinting?

A. Login Username
B. CPU Temperature
C. Hard drive serial number
D. Time to Live (TTL) values

20 What is 'Active OS Fingerprinting'?

A. Checking the website HTML source code
B. Sending specially crafted packets to the target and analyzing the response
C. Sniffing traffic without sending packets
D. Asking the admin for the OS version

21 Which tool is the industry standard for network scanning and OS fingerprinting?

A. Wireshark
B. Nmap
C. Aircrack-ng
D. John the Ripper

22 What is a 'Ping Sweep' used for?

A. To clean up temporary files
B. To crash a server
C. To identify which IP addresses in a range are live hosts
D. To measure internet speed

23 Which of the following is a countermeasure against Google Hacking?

A. Removing the robots.txt file
B. Using a shorter domain name
C. Ensuring sensitive directories are disallowed in robots.txt and not indexed
D. Registering the site with more search engines

24 What is 'Split DNS' used for as a countermeasure?

A. To speed up internet access
B. To hide internal network information from external users
C. To increase the number of available IP addresses
D. To split the internet bill

25 How can an ACK scan help an attacker?

A. It crashes the system
B. It retrieves the admin password
C. It determines if the firewall is stateful and which ports are filtered
D. It opens a backdoor

26 What is 'Vulnerability Scanning'?

A. Scanning a document to PDF
B. Monitoring network traffic for speed
C. The automated process of identifying known security weaknesses in systems
D. Scanning for viruses on a USB drive

27 Which of the following is a common vulnerability scanning tool?

A. Photoshop
B. Nessus
C. Outlook
D. FileZilla

28 What is a 'False Positive' in vulnerability scanning?

A. The scanner reports a vulnerability that does not actually exist
B. The scanner crashes during the scan
C. The scanner finds a critical vulnerability
D. The scanner fails to find an existing vulnerability

29 Why would an attacker use a 'Proxy' during scanning?

A. To bypass antivirus software on their own machine
B. To encrypt the target hard drive
C. To speed up the scan
D. To hide their actual IP address and identity

30 What is 'Proxy Chaining'?

A. Blocking all proxies
B. Linking a proxy to a firewall
C. Using multiple proxy servers in a sequence to increase anonymity
D. Connecting multiple computers with a physical chain

31 What is the 'TOR' network primarily used for in the context of security?

A. Hosting websites
B. Providing anonymity by routing traffic through a distributed network of relays
C. Downloading movies faster
D. Filtering spam emails

32 In the context of the 'Family tree of Scans', which category does a SYN scan belong to?

A. Network Scanning
B. Vulnerability Scanning
C. Social Engineering
D. Port Scanning

33 What information does 'WHOIS' lookup provide?

A. Domain registration details like owner, contact info, and expiry
B. The root password of the server
C. The list of open ports
D. The current GPS location of the server

34 Which Google operator limits the search to a specific domain?

A. domain:
B. host:
C. site:
D. url:

35 What is a potential risk of using public proxies?

A. The proxy owner may sniff/steal the data passing through it
B. They always block HTTPS traffic
C. They are too expensive
D. They cannot access Google

36 Which of the following is a countermeasure against Port Scanning?

A. Publishing all IP addresses online
B. Disabling the firewall
C. Configuring a firewall to block unsolicited connection attempts
D. Using Telnet instead of SSH

37 What does the Google operator 'cache:' do?

A. Speeds up the search
B. Displays Google's cached version of a web page
C. Hides the page from Google
D. Deletes the browser cache

38 Social networking sites are primarily used in which phase of hacking?

A. Clearing Tracks
B. Footprinting/Reconnaissance
C. Maintaining Access
D. Gaining Access

39 What is the purpose of 'archive.org' (Wayback Machine) in footprinting?

A. To store stolen data
B. To hack into government archives
C. To view previous versions of websites to find old info
D. To archive email logs

40 In a 'Full Open' scan, what happens when a port is open?

A. The scanner sends a FIN packet
B. The scanner completes the 3-way handshake (SYN, SYN-ACK, ACK)
C. The scanner sends RST immediately
D. The scanner waits for a timeout

41 Which of the following describes 'Competitive Intelligence' in the context of footprinting?

A. Bribing competitor employees
B. Gathering publicly available information about competitors
C. Stealing trade secrets via malware
D. Spying on employees via webcam

42 What is 'Traceroute' used for in footprinting?

A. To find the physical location of the server
B. To scan for viruses
C. To crack the Wi-Fi password
D. To map the network path and routers between the attacker and the target

43 Which scan is designed to be invisible to legacy logging systems?

A. List Scan
B. Ping Sweep
C. TCP Connect Scan
D. Stealth Scan

44 What is the primary function of an 'Anonymizer'?

A. To delete cookies
B. To scan for malware
C. To mask the user's identity while browsing the web
D. To encrypt emails

45 If a target system responds with an RST packet to a SYN packet, what does it usually mean?

A. The port is open
B. The port is closed
C. The port is filtered
D. The system is offline

46 What is the main benefit of 'Passive' footprinting over 'Active'?

A. It provides more detailed technical info
B. It allows modifying data
C. It avoids alerting the target
D. It is faster

47 Which tool allows you to visualize the path of a packet across the internet geographically?

A. Telnet
B. Ping
C. Visual Traceroute
D. Netcat

48 What is 'DNS Interrogation'?

A. Probing DNS servers to extract DNS records (A, MX, CNAME, etc.)
B. Asking the admin for the DNS password
C. Deleting DNS records
D. Redirecting DNS traffic

49 Which of the following is a countermeasure against OS Fingerprinting?

A. Disabling antivirus
B. Using an open Wi-Fi network
C. Modifying the default TTL values and TCP window sizes
D. Using the default OS settings

50 What is the relationship between Footprinting and Scanning?

A. They are the same thing
B. Footprinting gathers broad info, while Scanning actively probes the identified targets
C. Scanning precedes Footprinting
D. Scanning is passive, Footprinting is active