A threat actor uses a program to launch an attack by sending a flood of UDP packets to a server on the network. The program sweeps through all of the known ports trying to find closed ports. It causes the server to reply with an ICMP port unreachable message and is similar to a DoS attack. Which two programs could be used by the threat actor to launch the attack? (Choose two.)
- Low Orbit Ion Cannon
- UDP Unicorn
Explanation: A threat actor can use a tool like UDP Unicorn or Low Orbit Ion Cannon to send a flood of UDP packets to launch a UDP flood attack that causes all the resources on a network to become consumed. These types of programs will sweep through all the known ports trying to find closed ports. This causes the server to reply with an ICMP port unreachable message. Because of the many closed ports on the server, there is so much traffic on the segment that almost all the bandwidth gets used. The end result is very similar to a DoS attack.
Exam with this question: CyberOps Associate (Version 1.0) - Module 16: Attacking the Foundation Quiz Answers
Exam with this question: IoT Security 1.1 Chapter 4 Quiz Answers
Exam with this question: 3.4.2 Attacking the Foundation Quiz
Exam with this question: Endpoint Security: My Knowledge Check Answers