Unit 3 - Practice Quiz

INT244 50 Questions
0 Correct 0 Wrong 50 Left
0/50

1 What is the primary goal of Enumeration in the ethical hacking process?

A. To gather specific information like user names, shares, and services from a system
B. To encrypt the target's data
C. To physically access the server room
D. To crash the target system

2 Which phase of hacking immediately precedes Enumeration?

A. System Hacking
B. Maintaining Access
C. Scanning
D. Clearing Tracks

3 In Windows Enumeration, what is a 'Null Session'?

A. A session with administrator privileges
B. A connection using an encrypted VPN
C. A session that has been timed out
D. An unauthenticated connection to the IPC$ share

4 Which port is primarily associated with NetBIOS Name Service?

A. Port 443
B. Port 80
C. Port 137
D. Port 21

5 What command-line tool is used to display NetBIOS over TCP/IP statistics and current connections?

A. tracert
B. ping
C. nbtstat
D. ipconfig

6 What does SNMP stand for?

A. System Node Maintenance Protocol
B. Secure Network Monitoring Protocol
C. Standard Network Mapping Procedure
D. Simple Network Management Protocol

7 In SNMP, what is the 'MIB'?

A. Malware Infection Block
B. Main Interface Bridge
C. Management Information Base
D. Master IP Block

8 What are the two default community strings often used in SNMP?

A. public and private
B. root and guest
C. admin and user
D. default and secure

9 Which protocol is targeted during Directory Service Enumeration to query Active Directory?

A. LDAP
B. FTP
C. HTTP
D. SSH

10 What is the default TCP port for LDAP?

A. 25
B. 389
C. 3389
D. 53

11 Which SMTP command is used to verify if a user exists on the mail server?

A. DATA
B. QUIT
C. HELO
D. VRFY

12 Which SMTP command expands a mailing list to show its members?

A. EXPN
B. MAIL
C. RCPT
D. RSET

13 What is the definition of System Hacking?

A. Developing security policies
B. The process of gaining access, escalating privileges, and hiding files
C. Monitoring network traffic for anomalies
D. Scanning a network for live hosts

14 Which password attack involves trying every possible combination of characters?

A. Brute Force Attack
B. Dictionary Attack
C. Social Engineering
D. Shoulder Surfing

15 What is a 'Rainbow Table' used for?

A. Encrypting email communications
B. Visualizing network traffic
C. Looking up pre-computed password hashes
D. Storing firewall rules

16 Adding random bits of data to a password before hashing it to defeat Rainbow Tables is called:

A. Spiceing
B. Salting
C. Masking
D. Peppering

17 In Microsoft Windows, where are local user account passwords stored (in hashed form)?

A. In the boot.ini file
B. In the kernel32.dll
C. In the Registry SAM file
D. In the My Documents folder

18 What is the legacy authentication protocol used by older Windows systems, known for vulnerabilities?

A. OAUTH
B. RADIUS
C. Kerberos
D. NTLM

19 What is the primary authentication protocol used in Active Directory environments?

A. SSL
B. Kerberos
C. WEP
D. CHAP

20 What entity issues tickets in the Kerberos protocol?

A. The Key Distribution Center (KDC)
B. The File Server
C. The Client
D. The Gateway

21 What is 'Privilege Escalation'?

A. Moving laterally to another computer with same rights
B. Resetting a password
C. Gaining higher-level access (e.g., Administrator) from a standard user account
D. Downgrading user rights to Guest

22 Which tool allows an attacker to execute processes on a remote system, often used in Windows environments?

A. Paint
B. PsExec
C. Calc
D. Notepad

23 Software designed to infiltrate or damage a computer system without the owner's informed consent is collectively known as:

A. Firmware
B. Freeware
C. Shareware
D. Malware

24 What distinguishes a Computer Virus from a Worm?

A. There is no difference
B. A virus requires a host program to replicate, while a worm is standalone
C. A virus encrypts data, a worm deletes it
D. A virus travels over networks, a worm stays local

25 Which type of malware disguises itself as legitimate software to trick the user into installing it?

A. Logic Bomb
B. Worm
C. Trojan Horse
D. Virus

26 What is the primary function of Ransomware?

A. To turn the computer into a bot
B. To display advertisements
C. To steal credit card numbers quietly
D. To encrypt user files and demand payment for the decryption key

27 Software that gathers information about a person or organization without their knowledge is called:

A. Spyware
B. Logic Bomb
C. Ransomware
D. Adware

28 Malware that automatically delivers advertisements is known as:

A. Botnet
B. Virus
C. Adware
D. Rootkit

29 What is 'Scareware'?

A. Malware that tricks users into buying unnecessary software by claiming their computer is infected
B. Software that screams when opened
C. A virus that deletes system 32
D. A worm that spreads via email

30 A type of malicious code that remains dormant until a specific event or date triggers it is called:

A. Spyware
B. Logic Bomb
C. Backdoor
D. Adware

31 What is a 'Rootkit'?

A. A database scanning tool
B. A kit for rooting Android phones
C. Software designed to hide the existence of other malware and maintain privileged access
D. A password cracking tool

32 A 'Polymorphic Virus' is difficult to detect because:

A. It is written in Python
B. It changes its code or signature each time it infects a new file
C. It is invisible to the user
D. It only runs on Linux

33 What is a 'Macro Virus'?

A. A virus written in the macro language of applications like Microsoft Word or Excel
B. A virus that infects the boot sector
C. A virus that is very large in file size
D. A virus that attacks Mac computers

34 A network of compromised computers controlled by an attacker is called a:

A. Botnet
B. Darknet
C. Intranet
D. Subnet

35 What is a 'Wrapper' or 'Binder' in the context of Trojans?

A. A firewall rule
B. A tool used to combine a malicious executable with a legitimate file
C. A method of encrypting emails
D. A type of antivirus

36 Which of the following describes a 'Drive-by Download'?

A. Downloading drivers for a printer
B. Manually downloading a virus for research
C. Unintended download of malware by visiting a compromised website
D. Downloading files to a USB drive

37 Under U.S. law, which act is primarily used to prosecute computer hacking and malware distribution?

A. CFAA (Computer Fraud and Abuse Act)
B. SOX
C. GDPR
D. HIPAA

38 In the context of malware and the law, what does 'Intent' typically determine?

A. The programming language used
B. The speed of the internet connection
C. The cost of the hardware
D. The difference between accidental damage and criminal liability

39 What is an 'Overt Channel'?

A. A hidden communication path
B. A legitimate, authorized communication path for transferring data
C. An encrypted VPN
D. A channel used only by spies

40 What is a 'Covert Channel'?

A. A standard FTP connection
B. A public chat room
C. A mechanism used to transfer information in a way that violates the system's security policy
D. A TV channel for hackers

41 Hiding data within the headers of TCP/IP packets is an example of:

A. Social Engineering
B. Overt Channel
C. Covert Storage Channel
D. Phishing

42 Manipulating system resources to signal information (e.g., CPU usage patterns) is an example of:

A. Covert Storage Channel
B. Multiplexing
C. Covert Timing Channel
D. Overt Channel

43 Steganography is best described as:

A. Cracking passwords
B. Hiding the existence of a message within another medium (like an image)
C. Scrambling text so it is unreadable
D. Scanning ports

44 Which tool is commonly used to extract password hashes from Windows memory (LSASS)?

A. Ping
B. Wireshark
C. Mimikatz
D. Nmap

45 What is a 'Zero-Day' exploit?

A. An attack that occurs at midnight
B. An attack that exploits a vulnerability unknown to the software vendor
C. A virus that lasts for zero days
D. An exploit that takes zero days to fix

46 What is the purpose of a 'Keylogger'?

A. To record every keystroke made by a user
B. To lock the keyboard
C. To log into a website
D. To generate encryption keys

47 Which Windows service is the 'Local Security Authority' responsible for validating users?

A. LSASS.EXE
B. EXPLORER.EXE
C. WINLOGON.EXE
D. SVCHOST.EXE

48 A malware that restricts access to the computer system until a fee is paid is specifically targeting which aspect of the CIA triad?

A. Integrity
B. Confidentiality
C. Availability
D. Non-repudiation

49 In Windows, what does the command net user do?

A. Displays network statistics
B. Connects to a shared folder
C. Starts a service
D. Adds, removes, or modifies user accounts

50 Which of the following is an example of a Multipartite Virus?

A. A virus that uses multiple encryption keys
B. A virus that has multiple parts
C. A virus that attacks both the boot sector and executable files
D. A virus that attacks multiple people