Quiz: CEH v10

Which of the following does an ethical hacker require to penetrate a system?

What is Gray box Pentesting?

If you have been hired to perform an attack against a target system to find and exploit
vulnerabilities, what type of hacker you are?

Which of the following describes an attacker who goes after a target to draw attention
to a cause?

What is the level of knowledge does a script kiddie have?

A white-box test requires?

Which of the following describes a hacker who attacks without regard for being
caught or punished?

A penetration test is required for which of the following reason?

Hacker using their skills for both benign and malicious goals at different times are?

Vulnerability analysis is basically:

What is Black-box testing?

What does TOE stand for?

The term Vulnerability refers to:

What are the basic ways to perform footprinting?

Which one of the following the best meaning of Footprinting?

What is the purpose of Social Engineering?

Which feature is used to make search more appropriate?

Wayback Machine is used for

Manage a Website

Which record type will reveal the information about Host IP address.

Which record type will reveal the information about Domain’s Mail Server (MX)

Following is the most popular Web Reconnaissance framework used for information
gathering purpose as well as network detection.

Which tool can be used to view web server information?

To extract information regarding domain name registration, which of the following is
most appropriate?

Which of the following statement below is correct?

Is three-way handshaking the process of?

Which of the following tool is used for Banner grabbing?

SNMPv3 supports

Which server anonymizes the web traffic to provide anonymity.

Which of the following tool is capable of performing a customized scan?

Which of the following is not a TCP Flag?

Successful three-way handshaking is consisting of

Method of pinging a range of IP address is called as:

Scanning technique in which TCP Three-way handshaking session is initiated and
completed is called:

Xmas Scan is a type of Inverse TCP Flag scanning in which:

What is true about Enumeration:

NetBIOS is basically

Which port does not belong to NetBIOS over TCP (NetBT):

Which of the following does not belong to NetBIOS Enumeration?

The command nbstat with the option “-a” extract the information of:

The command nbstat with the option “-A” extract the information of:

Following is not an example of SNMP Manager software

Which of the following is correct about SNMP?

Which of the following statement is true about NTP authentication?

The process of finding weaknesses, design flaws and security concerns in a network,
operating system, applications or website is called

Which of the following is a Pre-Assessment phase of Vulnerability Assessment Life-
Cycle?

Vulnerability Post Assessment phase includes

Vulnerability assessment process in which auditor follows different strategies for each
network component is called:

Approach to assist depending on the inventory of protocols in an environment is
called

CVSS Stands for

Vulnerability Database launched by NIST is:

Which of the following is not a Vulnerability Scanning tool?

Which of the following is not an example of Non-Electronic / Non-Technical Password
Attacks?

Bob is cracking a password using the list of known and common phrases until the
password is accepted. Which type of attack is this?

An attacker is cracking the password by trying every possible combination of alpha-
numeric characters, which of the following type of Password Cracking is this?

Addition of characters in the password to make it one-way function is called

Which of the following statement is the appropriate definition of malware?

Which of the following is a framework that can perform automated attacks on
services, applications, port & unpatched software?

Cracking password with precomputed hashes is

How can you mitigate Rainbow table attack?

Which of the following does not belongs to the virus?

Malware Static Analysis is

Malware Dynamic Analysis

Which of the following does not belongs to Trojan deployment?

Following is used to hide malicious program while creating Trojan

Following is used to bind malicious program while creating Trojan

Following is used to drop malicious program at the target

Sniffing is performed over

Sniffing without interfering is known as

The port which allows you to send a copy of packet over another port at layer 2 is
called

Wiretapping with legal authorization is called

Which is the best option to defend against ARP poisoning

A phishing attack is performed over

Basic Purpose of Social Engineering attacks are

Which of the following is not a type of Human-based Social Engineering?

Attack performed by a disgruntled employee of an organization is called

To defend against phishing attack, the necessary step is

The technique of passing restricted area of an unauthorized person with an authorized
person is called

The technique of passing restricted area of an unauthorized person by following an
authorized person is called

Which of the following Wireshark filter displays packet from 10.0.0.1?

An attack, which denied the services, and resources become unavailable for legitimate
users is known as

DoS attack in which flooding of the request overloads web application or web server is
known as

DoS Attack focused on hardware sabotage is known as

DoS attack in which intermediary and Secondary victims are also involved in the
process of launching a DoS attack is known as:

Scanning technique with a list of potentially vulnerable machines is known as

Scanning any IP address from IP address Space for vulnerabilities is called

When an attacker directly exploits and Copy the malicious code to the victim’s
machine, the propagation is:

When an attacker exploits the vulnerable system, and open a connection to transfer
malicious code, the propagation is called

An automated process of detecting DoS/DDoS attacks by analysis of input signals is
called

Sequential Change-Point detection algorithm uses the following technique to detect
DoS/DDoS attack

Following Filtering Standard is designed for Ingress filtering for multi-homed
networks to limit the DDoS attacks.

The process of silently dropping the traffic (either incoming or outgoing traffic) so
that the source is not notified about discarding of the packet.

Which statement defines session hijacking most accurately?

Which of the following does not belongs to Session hijacking attack?

In Session hijacking, a technique is used to send packets via specific route, i.e.,
identical to victim’s path, this technique is known as

Session Fixation is vulnerable to

HIDS is deployed to monitor activities on the following

A computer system is placed in between public and private network, certain roles and
responsibilities are assigned to this computer to perform. This System is known as

Cisco ASA with FirePOWER Services is an example of

The devices or system that are deployed to trap attackers attempting to gain
unauthorized access to the system or network as they are deployed in an isolated
environment and being monitored are known as

Which of the following is not appropriate for IDS evasion?

Sending Split packet out-of-order with delay is an example of

Which of the following is not a type of Open Source Web Server architecture?

An attacker is attempting trial and error method to access restricted directories using
dots and slash sequences. Which type of Web server attack is this?

An attacker sends a request which allows him to add header response; now he
redirects the user to a malicious website. Which type of attack is this?

Update that is specially designed to fix the issue for a live production environment is
called

A piece of Software developed to fix an issue

Which of the following is Patch Management tool?

Individual who is responsible for the management and configuration required for the
web application is called

Which of the Following is not a Back-end Programming language?

Which of the Following is not a Front-end Programming language?

Web Applications working is categorized into the following three basic layers:

An attacker has accessed the web application. Now, he is escalating privileges to
access sensitive information. Which type of web application attack is this?

Which of the following is not appropriate for Data Connectivity attack between
application and its database?

Inferential Injection is also called as

An attack is using same communication channel to launch the injection attack and
gather information from the response. Which type of SQL injection is being
performed?

Which SQL statement is used to extract data from a database?

Which SQL statement is used to update data in a database?

What does SQL stand for?

Name of Access Point that is usually broadcasting for the identification of wireless
network is called

In a Wi-Fi Network with Open Authentication, how many frames are communicated
between client and AP to complete authentication process?

In a Wi-Fi Network with Shared Key Authentication, how many frames are
communicated between client and AP to complete authentication process?

Wi-Fi authentication with centralized authentication server deployed using

Doughnut Shaped Radiation pattern is obtained from

Which Wireless encryption uses 24-bit Initialization Vector to create RC4 with CRC?

Which of the following protocol ensures per packet key by dynamically generating a
128-bit key?

In Bluetooth network, target devices are overflowed by random packets. Which type of
Bluetooth attack is this?

The attacker is attempting to gain remote access to a Bluetooth device to compromise
its security, which type of attack is this?

Which of the following tool is appropriate for packet sniffing in a wireless network?

Which device can detect rogue wireless access point?

Jailbreaking refers to:

When an iOS device is rebooted, it will no longer have a patched kernel, may stick in a
partially started state. Which type of Jailbreaking is performed on it?

Official Application store for Blackberry platform is

Which is the most appropriate solution if an administrator is requires monitoring and
control over mobile devices running on a corporate network?

How many layers are there in an architecture of IoT?

Which layer in IoT architecture is responsible for device and information
management?

Which layer is responsible for Protocol translation and messaging?

Which SQL Query is correct to extract only “UserID” field from the “Employees” table in the database?

IoT device directly communicating with the application server is:

An eavesdropper records the transmission and replays it at a later time to cause the
receiver to ‘unlock’, this attack is known as:

IaaS Cloud Computing Service offers

Following is an example of SaaS

Cloud deployment model accessed by multiple parties having shared resources is a:

A person or organization that maintains a business relationship with, and uses service
from Cloud Providers is known as

A person who negotiates the relationship between Cloud Provider & Consumer is
called

Symmetric Key Cryptography requires

AES & DES are the examples of

The cipher that encrypts the plain text one by one is known as

64-bit Block Size, 56-bit Key size, & 16 number of rounds are the parameters of

Digital Certificate’s “Subject” field shows

RSA key length varies from

The message digest is used to ensure

MD5 produces hash value of

Cryptographic attack type where a cryptanalyst has access to a ciphertext but does not
have access to the corresponding plaintext is called

The most secure way to mitigate information theft from a laptop of an organization
left in a public place is