Clark, a professional hacker, attempted to perform a Btlejacking attack using an automated tool, Btlejack, and hardware tool, micro:bit. This attack allowed Clark to hijack, read, and export sensitive information shared between connected devices. To perform this attack, Clark executed various btlejack commands. Which of the following commands was used by Clark to hijack the connections?
Correct Answer: A
Btlejack is a tool used for attacking Bluetooth Low Energy (BLE) connections, including sniffing, jamming, and hijacking. * The -f option specifies the access address of the BLE connection. * The -j option is used to hijack an active BLE connection. Therefore, the correct syntax to hijack a BLE connection is: btlejack -f [access_address] -j This matches Option A: btlejack -f 0x129f3244 -j Incorrect Options: * B. -c any is used for sniffing any advertising packet but not for hijacking. * C. -d specifies device paths; -s starts a scan but does not hijack. * D. This is likely a malformed or unrelated command in the context of hijacking. Reference - CEH v13 Official Courseware: Module 18: IoT and OT Hacking Section: "Bluetooth Low Energy (BLE) Attacks" Tool Focus: "Btlejack Command Usage" CEH iLab: Btlejacking with micro:bit
312-50v13 Exam Question 167
Steve, a scientist who works in a governmental security agency, developed a technological solution to identify people based on walking patterns and implemented this approach to a physical control access. A camera captures people walking and identifies the individuals using Steve's approach. After that, people must approximate their RFID badges. Both the identifications are required to open the door. In this case, we can say:
Correct Answer: B
In authentication, Multi-Factor Authentication (MFA) involves using more than one category of authentication factors: Something you know (e.g., password) Something you have (e.g., RFID badge, token) Something you are (e.g., biometrics like fingerprints, facial recognition, gait) In this scenario: The RFID badge is "something you have" (a physical object). The gait recognition (walking pattern) captured by the camera is a biometric-"something you are" (a physical characteristic). Together, these two methods represent two distinct authentication factors, thereby implementing true multi- factor authentication. Reference - CEH v13 Official Study Guide: Module 5: System Hacking Topic: Authentication Mechanisms Quote: "Examples of multi-factor authentication include combining biometrics (something you are) with a smart card or badge (something you have). Gait recognition is considered a behavioral biometric and falls under 'something you are'." Incorrect Options Explained: A). Incorrect - gait and RFID represent two separate factor types, not one. C). No evidence in the scenario supports high false positives. D). Gait analysis is a recognized biometric method and can be used for identification.
312-50v13 Exam Question 168
Which of the following commands checks for valid users on an SMTP server?
Correct Answer: C
The VRFY commands enables SMTP clients to send an invitation to an SMTP server to verify that mail for a selected user name resides on the server. The VRFY command is defined in RFC 821. The server sends a response indicating whether the user is local or not, whether mail are going to be forwarded, and so on. A response of 250 indicates that the user name is local; a response of 251 indicates that the user name isn't local, but the server can forward the message. The server response includes the mailbox name.
312-50v13 Exam Question 169
Sam, a professional hacker. targeted an organization with intention of compromising AWS IAM credentials. He attempted to lure one of the employees of the organization by initiating fake calls while posing as a legitimate employee. Moreover, he sent phishing emails to steal the AWS 1AM credentials and further compromise the employee's account. What is the technique used by Sam to compromise the AWS IAM credentials?
Correct Answer: A
Just like any other service that accepts usernames and passwords for logging in, AWS users are vulnerable to social engineering attacks from attackers. fake emails, calls, or any other method of social engineering, may find yourself with an AWS users' credentials within the hands of an attacker. If a user only uses API keys for accessing AWS, general phishing techniques could still use to gain access to other accounts or their pc itself, where the attacker may then pull the API keys for aforementioned AWS user. With basic opensource intelligence (OSINT), it's usually simple to collect a list of workers of an organization that use AWS on a regular basis. This list will then be targeted with spear phishing to do and gather credentials. an easy technique may include an email that says your bill has spiked 500th within the past 24 hours, "click here for additional information", and when they click the link, they're forwarded to a malicious copy of the AWS login page designed to steal their credentials. An example of such an email will be seen within the screenshot below. it's exactly like an email that AWS would send to you if you were to exceed the free tier limits, except for a few little changes. If you clicked on any of the highlighted regions within the screenshot, you'd not be taken to the official AWS web site and you' d instead be forwarded to a pretend login page setup to steal your credentials. These emails will get even more specific by playing a touch bit additional OSINT before causing them out. If an attacker was ready to discover your AWS account ID on-line somewhere, they could use methods we at rhino have free previously to enumerate what users and roles exist in your account with none logs contact on your side. they could use this list to more refine their target list, further as their emails to reference services they will know that you often use. For reference, the journal post for using AWS account IDs for role enumeration will be found here and the journal post for using AWS account IDs for user enumeration will be found here. During engagements at rhino, we find that phishing is one in all the fastest ways for us to achieve access to an AWS environment.
312-50v13 Exam Question 170
A technician is resolving an issue where a computer is unable to connect to the Internet using a wireless access point. The computer is able to transfer files locally to other machines, but cannot successfully reach the Internet. When the technician examines the IP address and default gateway they are both on the 192.168.1.0 /24. Which of the following has occurred?
Correct Answer: B
https://en.wikipedia.org/wiki/Private_network In IP networking, a private network is a computer network that uses private IP address space. Both the IPv4 and the IPv6 specifications define private IP address ranges. These addresses are commonly used for local area networks (LANs) in residential, office, and enterprise environments. Private network addresses are not allocated to any specific organization. Anyone may use these addresses without approval from regional or local Internet registries. Private IP address spaces were originally defined to assist in delaying IPv4 address exhaustion. IP packets originating from or addressed to a private IP address cannot be routed through the public Internet. The Internet Engineering Task Force (IETF) has directed the Internet Assigned Numbers Authority (IANA) to reserve the following IPv4 address ranges for private networks: 10.0.0.0 - 10.255.255.255 172.16.0.0 - 172.31.255.255 192.168.0.0 - 192.168.255.255 Backbone routers do not allow packets from or to internal IP addresses. That is, intranet machines, if no measures are taken, are isolated from the Internet. However, several technologies allow such machines to connect to the Internet. Mediation servers like IRC, Usenet, SMTP and Proxy server Network address translation (NAT) Tunneling protocol NOTE: So, the problem is just one of these technologies.
