Q. Where is ARP spoofing effective, and what tool in Kali Linux can be used to conduct this attack?

View solution

Q. What is the primary purpose of MAC address spoofing for a penetration tester?

View solution

Q. What is a common use for replay attacks?

View solution

Q. What is a specific type of replay attack that penetration testers commonly use?

View solution

Q. What is the primary focus of relay attacks compared to other on-path attacks?

View solution

Q. What is the primary purpose of NAC (Network Access Control) systems in organizational networks?

View solution

Q. How do NAC systems typically detect new devices connecting to a network?

View solution

Q. What approach might a penetration tester take to bypass NAC?

View solution

Q. How can systems relying on MAC addresses for security controls be bypassed?

View solution

Q. Which tool in Kali Linux can be used to change the MAC address of a system, making it useful for attempting to bypass systems relying on MAC addresses for security controls?

View solution

Q. What are the three major types of denial-of-service (DoS) attacks?

View solution

Q. Why might unintentional DoS conditions occur during a penetration test?

View solution

Q. What are some common tools for creating DoS conditions in a penetration test?

View solution

Q. What is the purpose of HTTP Unbearable Load King (HULK) and Low Orbit Ion Cannon (LOIC)?

View solution

Q. Why is it important to verify the correct target and obtain permission before using common DoS tools?

View solution

Q. What is exploit chaining in the context of penetration testing?

View solution

Q. What is NetBIOS commonly used for in a Windows network?

View solution

Q. In Windows systems, what is the order of lookup methods when resolving the IP address for a hostname?

View solution

Q. Why is targeting the NetBIOS name service considered an effective attack?

View solution

Q. How can captured hashes from SMB spoofing be reused for pass-the-hash–style attacks?

View solution