11.6 12
Question: Which of the following is the term used to describe what happens when an attacker sends falsified messages to link their MAC address with the IP address of a legitimate computer or server on a network?
Answer: ARP poisoning
Question: Which of the following attacks tries to associate an incorrect MAC address with a known IP address?
Answer: ARP poisoning
Question: Which type of denial-of-service (DoS) attack occurs when a name server receives malicious or misleading data that incorrectly maps host names and IP addresses?
Answer: DNS poisoning
Question: While using the internet, you type the URL of one of your favorite sites in the browser. Instead of going to the correct site, the browser displays a completely different website. When you use the IP address of the web server, the correct site is displayed.
Which type of attack has likely occurred?
Answer: DNS poisoning
Question: An attacker uses an exploit to push a modified hosts file to client systems. This hosts file redirects traffic from legitimate tax preparation sites to malicious sites to gather personal and financial information.
Which kind of exploit has been used in this scenario?
Answer: DNS poisoning
Question: Which of the following describes a man-in-the-middle attack?
Answer: A false server intercepts communications from a client by impersonating the intended server.
Question: Capturing packets as they travel from one host to another with the intent of altering the contents of the packets is a form of which type of attack?
Answer: Man-in-the-middle attack
Question: Which type of activity changes or falsifies information in order to mislead or re-direct traffic?
Answer: Spoofing
Question: A router on the border of your network detects a packet with a source address that is from an internal client, but the packet was received on the internet-facing interface. This is an example of which form of attack?
Answer: Spoofing
Question: Which of the following are network-sniffing tools?
Answer: Cain and Abel, Ettercap, and TCPDump