The cheat sheet is a condensed format of the main facts that you need to know before taking the exam. We must learn the exam concepts and not just the answers to a bank of questions.
Malware
- Virus – replicates using port 1900
- Polymorphic virus – mutates, as does its hash value
- Ransomware – asks for money; could be subtle
- Worm – spreads using port 5000
- Trojan – could change .dll files
- Rootkit – upon reinstalling the OS, it is still there; in Linux, look for the bash shell as a path
- Keylogger – logs keystrokes
- Adware – uses popups
- Bots – infected machine used as an attack vector
- RAT – sends back passwords to the hacker, who then logs in
- Logic bomb – needs a trigger, such as time
Attacks – Social Engineering
- Phishing – uses email; targets one person
- Spear phishing – attacks a group; look for plurals in the question
- Whaling – attacks CEO or high‐level executives
- Vishing...