Homework answers / question archive / Hacking Wireless Networks and MobilePplatform Practice: Knowledge Check I GOT 20/25 on this practice but I would like to know which answer I GOT WRONG    Question 1 In which of the following attacks does an attacker eavesdrop on loudspeaker voice conversations between remote mobile users by exploiting the hardware-based motion sensor (i

Hacking Wireless Networks and MobilePplatform Practice: Knowledge Check I GOT 20/25 on this practice but I would like to know which answer I GOT WRONG    Question 1 In which of the following attacks does an attacker eavesdrop on loudspeaker voice conversations between remote mobile users by exploiting the hardware-based motion sensor (i

Physics

Share With

---

Hacking Wireless Networks and MobilePplatform Practice: Knowledge Check

I GOT 20/25 on this practice but I would like to know which answer I GOT WRONG 

 

Question 1

In which of the following attacks does an attacker eavesdrop on loudspeaker voice conversations between remote mobile users by exploiting the hardware-based motion sensor (i.e., the accelerometer)?

 

1. Simjacker Attack
2. SMiShing Attack
3. Agent Smith Attack
4. Spearphone Attack

 

 

Question 2

Which of the following attacks uses the USB or wireless card to connect the host to an unsecured client?

 

1. Promiscuous client
2. Ad hoc associations
3. Unauthorized association
4. Rogue access points

 

 

Question 3

Which of the following wireless attack uses nonce reuse technique to exploit the four-way handshake of the WPA2 protocol?

 

1. Bit-Flipping Attack
2. Power Saving Attack
3. Domain Login Cracking
4. Key Reinstallation Attack

 

 

Question 4

Identify the wireless attacks in which WLANs are detected either by sending probe requests over a connection or by listening to web beacons.

 

1. WarDriving
2. MAC spoofing
3. Client mis-association
4. WEP Injection

 

 

Question 5

Identify the drozer tool command that lists out various exported activities on Android devices and apps.

 

1. dz> run app.package.list -f <string_name>
2. dz> run app.package.attacksurface <package_name>
3. dz> run app.package.list
4. dz> run app.package.info -a <package_name>

 

 

Question 6

OWASP would classify the misuse of Touch ID, Keychain, or other mobile OS misuse as which of these Top 10 Mobile Risks - 2016? 

 

1. M1—Improper platform usage
2. M10—Extraneous Functionality
3. M8—Code Tampering
4. M4—Insecure Authentication 

 

 

Question 7

In which layer of wireless security might the users of wireless devices maintain the most responsibility for security? 

 

1. Network protection: Users ensuring strong passwords are used to ensure that only authorized users gain access to a network.
2. Connection security: Users communicate with each other, thereby securing the connection.
3. End-user protection: Users must ensure that even if the attacker has associated with APs, personal firewalls installed on the end user systems on the WLAN prevents the attacker from accessing files.
4. Device security: Users must be sure to install any vulnerability and patch management updates, important to the security infrastructure.

 

 

Question 8

Which of the following might your employer use to help secure mobile devices that access the enterprise's apps, such as email clients?

 

• Mobile Antivirus
• Online APK Analyzer
• Device Administration API
• X-Ray

 

 

Question 9

You cannot secure against which type of iOS jailbreaking because nothing can cause a recovery mode loop?

 

1. Bootroom exploit 
2. Untethered jailbreaking
3. iBoot exploit
4. Userland exploit

 

 

Question 10

Which of these is also known as the Dragonfly handshake?

 

1. Simultaneous Authentication of Equals Protocol
2. Opportunistic Wireless Encryption
3. Wi-Fi Device Provisioning Protocol
4. Galois/Counter Mode Protocol