- (Topic 2)
This kind of password cracking method uses word lists in combination with numbers and special characters:

1. A. Hybrid
2. B. Linear
3. C. Symmetric
4. D. Brute Force

Correct Answer: A

- (Topic 2)
An attacker redirects the victim to malicious websites by sending them a malicious link by email. The link appears authentic but redirects the victim to a malicious web page, which allows the attacker to steal the victim's data. What type of attack is this?

1. A. Phishing
2. B. Vlishing
3. C. Spoofing
4. D. DDoS

Correct Answer: A
https://en.wikipedia.org/wiki/Phishing
Phishing is a type of social engineering attack often used to steal user data, including login credentials and credit card numbers. It occurs when an attacker, masquerading as a trusted entity, dupes a victim into opening an email, instant message, or text message. The recipient is then tricked into clicking a malicious link, which can lead to the installation of malware, the freezing of the system as part of a ransomware attack, or the revealing of sensitive information.
An attack can have devastating results. For individuals, this includes unauthorized purchases, the stealing of funds, or identify theft.
Moreover, phishing is often used to gain a foothold in corporate or governmental networks as a part of a larger attack, such as an advanced persistent threat (APT) event. In this latter
scenario, employees are compromised in order to bypass security perimeters, distribute malware inside a closed environment, or gain privileged access to secured data.
An organization succumbing to such an attack typically sustains severe financial losses in addition to declining market share, reputation, and consumer trust. Depending on the scope, a phishing attempt might escalate into a security incident from which a business will have a difficult time recovering.

- (Topic 2)
You are programming a buffer overflow exploit and you want to create a NOP sled of 200 bytes in the program exploit.c

What is the hexadecimal value of NOP instruction?

1. A. 0x60
2. B. 0x80
3. C. 0x70
4. D. 0x90

Correct Answer: D

- (Topic 1)
Which address translation scheme would allow a single public IP address to always correspond to a single machine on an internal network, allowing "server publishing"?

1. A. Overloading Port Address Translation
2. B. Dynamic Port Address Translation
3. C. Dynamic Network Address Translation
4. D. Static Network Address Translation

Correct Answer: D

- (Topic 3)
Richard, an attacker, targets an MNC In this process, he uses a footprinting technique to gather as much information as possible. Using this technique, he gathers domain information such as the target domain name, contact details of its owner, expiry date, and creation date. With this information, he creates a map of the organization's network and misleads domain owners with social engineering to obtain internal details of its network. What type of footprinting technique is employed by Richard?

1. A. VPN footprinting
2. B. Email footprinting
3. C. VoIP footprinting
4. D. Whois footprinting

Correct Answer: B