CompTIA Security+ Exam Notes

CompTIA Security+ Exam Notes
Let Us Help You Pass

Thursday, April 11, 2024

Pass the Hash Attack

 PtH (Pass the Hash Attack)

Attackers and penetration testers use the pass-the-hash attack. This allows them to achieve lateral movement or pivot to other systems in the network.

You do not have to crack the password, as the hash is the password.

One way to prevent this attack is to use group policy to prevent the caching of administrator passwords.

The other is to use the password-salting method. That way, the hashes will be completely different even if the admin uses the same local password for each system.


Posted by at No comments:
Labels: , , ,

SSL Stripping Attack & Prevention

 SSL Stripping - SSL/TLS Downgrade

This type of attack can be called either of the above names. Pay attention to the question. The question may have stated that the user went to his financial organization's website, https://www.bank.com, but when you look at the logs, the user actually went to http://www.bank.com. 

HTTPS would have used port 443, whereas HTTP will use port 80. That could be another hint that the attack was SSL Stripping or an SSL/TLS downgrade attack.

The ways of preventing these attacks (has to be configured on the server):
  • HSTS (HTTP Strict Transport Security)
  • HTTP security header
Posted by at No comments:
Labels: , , ,

CVE & CVSS the differences

 CVE and CVSS

CVE (Common Vulnerabilities and Exposures)
CVE deals with the platform, which is known to have a vulnerability.
Operating System
Applications
Hardware such as a switch, router, firewall, etc.
IoT (Internet of Things)

CVSS (Common Vulnerability Scoring System)
This lets us know the criticality of the vulnerability.
This is a calculated value based on several elements.
Posted by at No comments:
Labels: , , ,

Tuesday, April 9, 2024

Percent Encoding and the Attacks they are Associated

 PERCENT ENCODING


Character            Percent Encoding        Attack
space                   %20                              SQLi
'                            %27                              SQLi
Examples: 
%27%20or%20%27
'%20or%20"


.                            %2E                            Directory Traversal
/                            %2F                            Directory Traversal
Examples:
%2E%2E%2F%2E%2E%2F
..%2E..%2E
..2F..2F

<                           %3C                           XSS (Cross-site Scripting)
>                           %3E                           XSS (Cross-site Scripting)
<script>
Also, look for .js at the end of a URL
Posted by at No comments:
Labels: , ,

Sunday, April 7, 2024

New Blog for CompTIA Network+ (Link)

 

Below is the link for the blog for CompTIA Network+. This is a work in progress, and we will attempt to add posts daily.

These posts will mainly contain exam-driven material. However, there will also be real-world videos on how to use certain tools.

CompTIA Network+ Exam Prep Blog Link



Posted by at No comments:
Labels: ,

Wednesday, April 3, 2024

CompTIA Security+ SY0-701 Acronyms Flashcards

Acronyms needed to know for the SY0-701 exam


CompTIA Security+ SY0 701 Acronym Flashcards 
Posted by at No comments:
Labels:

Thursday, March 28, 2024

CompTIA Network+ (N10-008) Acronyms

  Network+ Acronyms Video

These are the acronyms on the exam, either as part of the question or the answers. 

We are considering using a voice-over to read out the acronyms. Let us know if that is something you would like us to do in the future. 

We are currently working to put out the same thing with all the other flashcards we currently have. 

Posted by at No comments:
Labels: ,
Subscribe to: Posts (Atom)