Question 166
Maria works as a professional Ethical Hacker. She is assigned a project to test the security of www.we-are- secure.com. She wants to test a DoS attack on the We-are-secure server. She finds that the firewall of the server is blocking the ICMP messages, but it is not checking the UDP packets. Therefore, she sends a large amount of UDP echo request traffic to the IP broadcast addresses. These UDP requests have a spoofed source address of the We-are-secure server. Which of the following DoS attacks is Maria using to accomplish her task?
Question 167
You check performance logs and note that there has been a recent dramatic increase in the amount of broadcast traffic. What is this most likely to be an indicator of?
Question 168
Victor works as a professional Ethical Hacker for SecureEnet Inc. He wants to scan the wireless network of the
company. He uses a tool that is a free open-source utility for network exploration. The tool uses raw IP packets to
determine the following:
What ports are open on our network systems.
What hosts are available on the network.
Identify unauthorized wireless access points.
What services (application name and version) those hosts are offering.
What operating systems (and OS versions) they are running.
What type of packet filters/firewalls are in use.
Which of the following tools is Victor using?
Question 169
John works as a Network Administrator for We-are-secure Inc. He finds that TCP port 7597 of the Weare- secure server is open. He suspects that it may be open due to a Trojan installed on the server. He presents a report to the company describing the symptoms of the Trojan. A summary of the report is given below: Once this Trojan has been installed on the computer, it searches Notpad.exe, renames it Note.com, and then copies itself to the computer as Notepad.exe. Each time Notepad.exe is executed, the Trojan executes and calls the original Notepad to avoid being noticed.
Which of the following Trojans has the symptoms as the one described above?
Question 170
John, a part-time hacker, has accessed in unauthorized way to the www.yourbank.com banking Website and stolen
the bank account information of its users and their credit card numbers by using the SQL injection attack. Now, John
wants to sell this information to malicious person Mark and make a deal to get a good amount of money. Since, he
does not want to send the hacked information in the clear text format to Mark; he decides to send information in
hidden text. For this, he takes a steganography tool and hides the information in ASCII text by appending whitespace
to the end of lines and encrypts the hidden information by using the IDEA encryption algorithm. Which of the
following tools is John using for steganography?
