Unit 2 - Practice Quiz

INT245 50 Questions
0 Correct 0 Wrong 50 Left
0/50

1 Which of the following best describes the primary objective of the footprinting phase in penetration testing?

A. To launch a Denial of Service (DoS) attack
B. To gain administrative access to the system
C. To gather as much information as possible about the target system or network
D. To install a backdoor for future access

2 What is the key difference between Passive and Active footprinting?

A. Active footprinting generates log entries on the target system, while passive usually does not.
B. Passive footprinting is illegal, while active is legal.
C. Active footprinting uses open-source tools, while passive uses proprietary tools.
D. Passive footprinting involves direct interaction with the target, while active does not.

3 Which of the following is considered an OSINT (Open Source Intelligence) source?

A. Packet sniffing on a local LAN
B. Public social media profiles and WHOIS records
C. Intercepted internal company emails
D. Configuration files obtained via an exploit

4 In the context of 'Google Hacking', what does the search operator filetype:pdf accomplish?

A. It searches for websites hosted on a PDF server.
B. It restricts search results to files with the .pdf extension.
C. It converts HTML pages to PDF.
D. It searches for the text 'pdf' in the URL.

5 Which DNS record type would a penetration tester query to identify the mail servers of a target organization?

A. MX Record
B. CNAME Record
C. A Record
D. PTR Record

6 What is the purpose of the archive.org 'Wayback Machine' in the context of information gathering?

A. To crack password hashes
B. To view historical versions of a website to find removed information
C. To conduct SQL injection attacks
D. To scan for open ports on a server

7 Which tool is specifically designed to visualize relationships between people, groups, and companies using open-source intelligence?

A. Wireshark
B. Maltego
C. Metasploit
D. John the Ripper

8 A penetration tester uses the search engine Shodan. What is Shodan primarily used for?

A. Reverse image searching
B. Searching for academic papers
C. Locating Internet-connected devices (IoT, SCADA, Servers)
D. Finding people on social media

9 Which of the following activities is an example of Social Engineering?

A. Scanning a firewall for open ports
B. Manipulating an employee into revealing their password via a phone call
C. Performing a buffer overflow attack
D. Cracking a WiFi WPA2 handshake

10 What is Dumpster Diving in the context of physical security vulnerabilities?

A. Jumping over a physical security turnstile
B. Deleting files from the trash bin
C. Searching through trash to find discarded sensitive documents
D. Hiding malware in the recycle bin

11 Which term describes a social engineering attack where the attacker follows an authorized person through a secure door without using a badge?

A. Spoofing
B. Tailgating
C. Phishing
D. Whaling

12 In website information gathering, what file is checked to see which parts of the website the administrator wants to hide from search engine crawlers?

A. robots.txt
B. config.php
C. sitemap.xml
D. index.html

13 Which psychological principle of persuasion (defined by Robert Cialdini) relies on the target's tendency to obey figures such as police officers or executives?

A. Authority
B. Liking
C. Consistency
D. Scarcity

14 What is Phishing?

A. Sending fraudulent emails to induce individuals to reveal personal information
B. A physical attack on server hardware
C. Guessing passwords using a dictionary
D. Listening to network traffic

15 Which social engineering technique specifically targets high-profile executives like CEOs or CFOs?

A. Dumpster Diving
B. Baiting
C. Vishing
D. Whaling

16 What is Vishing?

A. Visual Hacking
B. Virtual Phishing
C. Video Phishing
D. Voice Phishing (using the telephone)

17 An attacker drops a USB drive labeled 'Payroll 2024' in the company parking lot, hoping an employee plugs it in. What type of attack is this?

A. Quid Pro Quo
B. Baiting
C. Tailgating
D. Pretexting

18 Which tool is commonly used to harvest email addresses and subdomains from public sources like search engines and PGP servers?

A. Wireshark
B. Aircrack-ng
C. Nmap
D. theHarvester

19 What information does the command nslookup primarily provide?

A. List of open ports
B. DNS records and IP address mapping
C. MAC addresses of local machines
D. Operating System version

20 In the context of physical security, what is Shoulder Surfing?

A. Browsing the internet on someone else's computer
B. Sharing a WiFi connection
C. Looking over a user's shoulder to view passwords or sensitive data
D. Using a ladder to climb over a wall

21 Which social engineering attack involves creating a fabricated scenario to persuade a victim to release information?

A. Port Scanning
B. Sniffing
C. War Driving
D. Pretexting

22 What is the primary purpose of Competitive Intelligence gathering in footprinting?

A. To shut down a competitor's website
B. To install ransomware
C. To understand the target organization's market position, partners, and technologies
D. To steal physical assets from a competitor

23 When performing website mirroring (e.g., using HTTrack), what is the attacker attempting to do?

A. Inject SQL commands
B. Download a local copy of the website for offline analysis
C. Deface the website
D. Crash the web server

24 Which Google Dork operator would you use to find pages specifically containing the phrase 'login' in the URL?

A. intext:login
B. inurl:login
C. site:login
D. filetype:login

25 What allows an attacker to obtain a complete copy of the DNS database for a domain?

A. DNS Reflection
B. DNS Zone Transfer
C. DNS Cache Poisoning
D. DNS Spoofing

26 Which of the following is an example of Passive Information Gathering?

A. Running a port scan with Nmap
B. Browsing the target's LinkedIn employee list
C. Attempting default passwords on a login page
D. Injecting XSS payloads

27 What is Smishing?

A. Phishing via Smart Mail
B. Phishing via Social Media
C. Phishing via SMTP
D. Phishing via SMS (Text Message)

28 In the context of the Human Psyche, 'Scarcity' creates a feeling of:

A. Urgency due to limited availability
B. Comfort in following the crowd
C. Obligation to return a favor
D. Trust in authority

29 What is the Quid Pro Quo social engineering technique?

A. Promising a benefit in exchange for information
B. Looking through trash
C. Threatening the victim
D. Pretending to be a CEO

30 Which tool can be used to extract Metadata (EXIF data) from images found on a target's website?

A. Ping
B. Traceroute
C. ExifTool
D. Netcat

31 What does the traceroute (or tracert) command help a penetration tester identify?

A. The content of the database
B. The passwords of users
C. The path packets take and intermediate routers (network topology)
D. The web server software version

32 What is Lock Picking classified as?

A. A physical security attack
B. A cryptographic attack
C. A network-based attack
D. A social engineering attack

33 Which online database allows users to look up the ownership and contact details of a domain name?

A. NAT
B. WHOIS
C. ARP
D. DHCP

34 What does the acronym OSINT stand for?

A. Open Source Intelligence
B. Official Security Intelligence
C. Operating System Integration
D. Open Source Internal Network Technology

35 A hacker calls a receptionist claiming to be from the IT department and asks for the WiFi password to 'fix the network'. This is an example of:

A. Dumpster Diving
B. Buffer Overflow
C. SQL Injection
D. Impersonation

36 Which Google search operator restricts results to a specific domain (e.g., only showing results from example.com)?

A. site:example.com
B. domain:example.com
C. host:example.com
D. link:example.com

37 Why is Social Media scrubbing (gathering data from Facebook, LinkedIn, Twitter) valuable to a penetration tester?

A. It helps build a profile of employees for password guessing and social engineering.
B. It allows for physical access to the building.
C. It directly provides root access to servers.
D. It crashes the target's network.

38 What is the best countermeasure against Dumpster Diving?

A. Using strong passwords
B. Shredding sensitive documents before disposal
C. Installing a firewall
D. Encrypting email

39 In the context of Human Vulnerabilities, what does FOMO (Fear Of Missing Out) relate to?

A. Wireless encryption cracking
B. Physical bypassing of locks
C. Social engineering leveraging Urgency/Scarcity
D. Technical exploitations

40 What is Piggybacking in physical security?

A. An unauthorized person enters a secure area with the consent/knowledge of an authorized person.
B. Copying a hard drive.
C. Intercepting WiFi signals.
D. Using a brute force attack.

41 Which tool would you use to identify the technologies (CMS, Web Server, Frameworks) used by a website?

A. BuiltWith
B. Ping
C. Calculator
D. Notepad

42 What is the risk of Reverse Image Searching an employee's profile picture?

A. It changes the employee's password.
B. It infects the computer with a virus.
C. It can reveal other social media profiles using the same image.
D. It deletes the image from the server.

43 Which DNS record type maps an IP address back to a hostname (Reverse DNS)?

A. MX
B. A
C. NS
D. PTR

44 Which of the following describes Insider Threat?

A. A threat from a disgruntled or compromised employee within the organization.
B. An attack originating from outside the firewall.
C. A virus downloaded from the internet.
D. A denial of service attack from a botnet.

45 What type of information is found in the EDGAR database?

A. DNS records
B. Financial reports of publicly traded US companies
C. Criminal records
D. Email passwords

46 The command ping is used primarily to test:

A. The speed of the CPU
B. The type of web server software
C. The strength of a password
D. Reachability of a host on an IP network

47 Which social engineering tactic relies on the principle of 'Social Proof' (Consensus)?

A. 'I will give you a gift card if you help me.'
B. 'Do this because the CEO said so.'
C. 'This offer expires in 5 minutes.'
D. 'Everyone else in the department has already updated their password.'

48 What is RFID Cloning?

A. Duplicating an email
B. Copying the data from an RFID badge to a blank card to gain physical access
C. Cloning a website
D. Copying a biological fingerprint

49 In the context of footprinting, what is the 'target address range'?

A. The physical distance between the hacker and the server
B. The list of email addresses
C. The range of WiFi signal
D. The set of IP addresses owned or used by the target organization

50 If a penetration tester finds a document with the extension .xls via Google Dorking, what kind of data are they likely looking at?

A. An Excel spreadsheet
B. A PDF document
C. A database backup
D. An executable program