General Cyber Security
Cyber Security: A Beginner's guide
Scenario:
A skilled hacker has breached a corporate network, leaving behind digital footprints that hint at their activities. The attack appears well-planned, targeting sensitive data and system vulnerabilities. As an investigator, your mission is to trace the hacker’s movements, analyze logs, and uncover how access was gained. Identifying compromised accounts, unauthorized file transfers, and malware implants is crucial. Was confidential data exfiltrated or system settings manipulated? By piecing together forensic evidence, tracking IP addresses, and studying attack patterns, you must determine the full extent of the breach. Stopping further damage and strengthening security measures is now a top priority.
Question1.
You analyze the logs and see multiple failed login attempts before a successful login. What attack technique is being used?
Question 2.
The attacker used a tool to capture network traffic and extract passwords. What is this type of attack called?
Question 3.
The organization had weak password policies. The attacker cracked hashed passwords using a precomputed table. What is this technique called?
Question 4.
The attacker injected malicious SQL queries to gain access to the database. What is this attack called?
Question 5.
The hacker sent an email disguised as a trusted entity to steal login credentials. What is this technique called?
Question 6.
The attacker exploited an unpatched vulnerability in a web server. What is this type of weakness called?
Question 7.
The hacker used a hidden script on a webpage to steal session cookies. What is this attack called?
Question 8.
The forensic team found a suspicious binary running with SYSTEM privileges. What is the technique used to escalate privileges?
Question 9.
The attacker covered their tracks by modifying system logs. What is this process called?
Question 10.
The compromised system was sending encrypted data to an unknown external server. What is this type of malicious communication called?