1. What enables a threat actor to impersonate the default gateway and receive all traffic that is sent to hosts that are not on the local LAN segment?
- DNS tunneling
- cross-site scripting
- ARP cache poisoning
- iFrame attacks
2. What should a cybersecurity analyst look for to detect DNS tunneling?
- longer than average DNS queries
- incorrect MAC to IP address mappings
- gratuitous ARP requests
- rogue DHCP servers
3. A threat actor accesses a list of user email addresses by sending database commands through an insecure login page. What type of attack is this?
- cross-site scripting
- client-side scripting
- iFrame attack
- SQL injection
4. In what type of attack are HTTP redirect messages used to send users to malicious websites?
- HTTP 302 cushioning
- domain shadowing
- iFrame attacks
- cross-site scripting