SEC Common Attacks (N10-008) | Notes | Exam Prep
Denial of Service (DoS) *** - is an attack meant to shut down a machine or network, making it
inaccessible to its intended users
- accomplish this by flooding the target with traffic, or sending it information that triggers a
crash.
Distributed Denial of Service (DDoS) *** - occurs when multiple machines are operating
together to attack one target
- attackers often leverage the use of a botnet—a group of hijacked internet-connected devices to
carry out large scale attacks
On-path attack (Man-in-the-middle) *** - is a type of cyber attack in which the attacker
secretly intercepts and relays messages between two parties who believe they are communicating
directly with each other
- a type of eavesdropping in which the attacker intercepts and then controls the entire
conversation.
DNS Poisoining *** - An attack that substitutes DNS addresses so that the computer is
automatically redirected to another device.
VLAN hopping *** - The act of gaining access to traffic on other VLANs that would not
normally be accessible by jumping from one VLAN to another.
ARP spoofing *** - More commonly known as ARP poisoning, this involves the MAC (Media
Access Control) address of the data being faked.
Rouge DHCP *** - a DHCP server that is not under the control of network administrators and
is therefore unauthorized
Denial of Service (DoS) *** - is an attack meant to shut down a machine or network, making it
inaccessible to its intended users
- accomplish this by flooding the target with traffic, or sending it information that triggers a
crash.
Distributed Denial of Service (DDoS) *** - occurs when multiple machines are operating
together to attack one target
- attackers often leverage the use of a botnet—a group of hijacked internet-connected devices to
carry out large scale attacks
On-path attack (Man-in-the-middle) *** - is a type of cyber attack in which the attacker
secretly intercepts and relays messages between two parties who believe they are communicating
directly with each other
- a type of eavesdropping in which the attacker intercepts and then controls the entire
conversation.
DNS Poisoining *** - An attack that substitutes DNS addresses so that the computer is
automatically redirected to another device.
VLAN hopping *** - The act of gaining access to traffic on other VLANs that would not
normally be accessible by jumping from one VLAN to another.
ARP spoofing *** - More commonly known as ARP poisoning, this involves the MAC (Media
Access Control) address of the data being faked.
Rouge DHCP *** - a DHCP server that is not under the control of network administrators and
is therefore unauthorized
