Which of the following rootkits is able to load the original operating system as a virtual machine, thereby enabling it to intercept all hardware calls made by the original operating system?

• A.Kernel level rootkit
• B.Boot loader rootkit
• C.Library rootkit
• D.Hypervisor rootkit

Comment: *

Name: *

Email: *

Verification: *

Adam, a malicious hacker purposely sends fragmented ICMP packets to a remote target. The total size of this ICMP packet once reconstructed is over 65,536 bytes. On the basis of above information, which of the following types of attack is Adam attempting to perform?

• A.SYN Flood attack
• B.Fraggle attack
• C.Ping of death attack
• D.Land attack

Comment: *

Name: *

Email: *

Verification: *

SIMULATION
Fill in the blank with the appropriate name of the rootkit.
A _______ rootkit uses device or platform firmware to create a persistent malware image.

Comment: *

Name: *

Email: *

Verification: *

Which of the following statements are true about session hijacking?
Each correct answer represents a complete solution. Choose all that apply.

• A.It is the exploitation of a valid computer session to gain unauthorized access to information or services in a computer system.
• B.Use of a long random number or string as the session key reduces session hijacking.
• C.It is used to slow the working of victim's network resources.
• D.TCP session hijacking is when a hacker takes over a TCP session between two machines.

Comment: *

Name: *

Email: *

Verification: *

Buffer overflows are one of the major errors used for exploitation on the Internet today. A buffer overflow occurs when a particular operation/function writes more data into a variable than the variable was designed to hold.
Which of the following are the two popular types of buffer overflows?
Each correct answer represents a complete solution. Choose two.

• A.Dynamic buffer overflows
• B.Static buffer overflows
• C.Stack based buffer overflow
• D.Heap based buffer overflow

Comment: *

Name: *

Email: *

Verification: *