CEPT Exam 2 (2024) – All Questions & Answers (100% Correct)
CEPT Exam 2 (2024) – All Questions & Answers (100% Correct)
What protocol does Moon bouncing use? - ANSWER - ICMP
What format string specifier is used to overwrite an address? - ANSWER - %n
Where can buffer overflows occur? -...
CEPT Exam 2 (2024) – All Questions &
Answers (100% Correct)
What protocol does Moon bouncing use? - ANSWER - ICMP
What format string specifier is used to overwrite an address? - ANSWER - %n
Where can buffer overflows occur? - ANSWER - heap, stack, kernel memory
Why are fuzzers popular? - ANSWER - They are adept at finding buffer overrun possibilities.
Why are format string vulnerabilities not as widely exploited? - ANSWER - They are newer, less-known
What does the EBP contain - ANSWER - The Electronic Base Pointer
What does the POP instruction do? - ANSWER - Takes the value pointed to by the ESP
and places it in a specific location.
What does the GetDriveA API do? - ANSWER - Returns the drive currently inserted into
the computer.
What does bind shell shellcode do? - ANSWER - Opens a socket and connects back to the attacker.
How can an IPS be attacked? - ANSWER - By creating a flood of false alerts.
Fuzzers can find what? - ANSWER - Vulnerabilities you were not looking for.
How does passive traffic observation recon work? - ANSWER - Observing network traffic and determining OS versions.
How can you fill the EAX with nulls? - ANSWER - XOR EAX, EAX
What tool can be used to attack IPS systems? - ANSWER - Sneeze
Why is the CALL instruction important? - ANSWER - It saves the EIP onto the stack.
Is attaching a memory resident debugger part of the three stages of software cracking? - ANSWER - No.
What does the %s format string do? - ANSWER - Allows you to write memory to an arbitrary location. What does the EIP register point to? - ANSWER - The next instruction to be executed.
What do Off-by-one overflows overwrite? - ANSWER - The saved EBP.
How do stack overflows work? - ANSWER - Overwriting the saved EIP on the stack with
one that points to an address with shellcode.
What is IDA Pro? - ANSWER - A popular disassembler.
Can DLL's be executable modules? - ANSWER - Yes
How can yo write shellcode that will evade an IDS? - ANSWER - Obsucring the NOP sled.
Are Fault Injection and Fuzzing essentially the same thing? - ANSWER - Yes
What do debuggers do? - ANSWER - Allow you to modify the runtime nature of a program.
What are software breakpoints set with? - ANSWER - 0xCC
What is the best way to to fill a register with nulls when writing shellcode? - ANSWER - Add a non-null value to the regsiter, then subtract the same value from the register.
Can PSExec execute programs remotely? - ANSWER - Yes
What is the hex representation for the ASCII characer A? - ANSWER - 41
What do application breakpointing API calls allow you to do when reverse engineering a
Windows application? - ANSWER - Halt a program when user input is received.
What does IDA Pro use to determine which compiler created a program? - ANSWER - Start Code
What is an encrypted version of netcat - ANSWER - cryptcat
What is Metasploit - ANSWER - An exploitation framework
What are one of the big problems with IDS? - ANSWER - False positivies
Theopcode for NOP is: - ANSWER - x90
Why can you overwrite subsequent blocks in heap memory? - ANSWER - It is contiguous, if one block does not do proper bounds checking.
Voordelen van het kopen van samenvattingen bij Stuvia op een rij:
√ Verzekerd van kwaliteit door reviews
Stuvia-klanten hebben meer dan 700.000 samenvattingen beoordeeld. Zo weet je zeker dat je de beste documenten koopt!
Snel en makkelijk kopen
Je betaalt supersnel en eenmalig met iDeal, Bancontact of creditcard voor de samenvatting. Zonder lidmaatschap.
Focus op de essentie
Samenvattingen worden geschreven voor en door anderen. Daarom zijn de samenvattingen altijd betrouwbaar en actueel. Zo kom je snel tot de kern!
Veelgestelde vragen
Wat krijg ik als ik dit document koop?
Je krijgt een PDF, die direct beschikbaar is na je aankoop. Het gekochte document is altijd, overal en oneindig toegankelijk via je profiel.
Tevredenheidsgarantie: hoe werkt dat?
Onze tevredenheidsgarantie zorgt ervoor dat je altijd een studiedocument vindt dat goed bij je past. Je vult een formulier in en onze klantenservice regelt de rest.
Van wie koop ik deze samenvatting?
Stuvia is een marktplaats, je koop dit document dus niet van ons, maar van verkoper conceptialresearchers. Stuvia faciliteert de betaling aan de verkoper.
Zit ik meteen vast aan een abonnement?
Nee, je koopt alleen deze samenvatting voor €8,52. Je zit daarna nergens aan vast.