CEH | Questions and Answers with complete solution
A Certified Ethical Hacker follows a specific methodology for testing a system. Which step comes after footprinting in the CEH methodology? - Scanning You've been hired as part of a pen test team. During the in brief, you learn the client wants the pen test attack to simulate a normal user who finds ways to elevate privileges and create attacks. Which test type does the client want? - Gray box Which of the following is true regarding an ethical hacker? - The ethical hacker has authorization to proceed from the target owner. You begin your first pen-test assignment by checking out IP address ranges owned by the target as well as details of their domain name registration. Additionally, you visit job boards and financial websites to gather any technical information online. What activity are you performing? - Passive footprinting You send a message across a network and are primarily concerned that it is not altered during transit. Which security element ensures a message arrives at its destination with no alteration? - Integrity An ethical hacker is given no prior knowledge of the network and has a specific framework in which to work. The agreement specifies boundaries, nondisclosure agreements, and a completion date definition. Which of the following statements are true? - A white hat is attempting a black box test. Which of the following attacks is considered an integrity attack, where the attacker is not concerned with deciphering the entirety of a plaintext message? - Bit flipping As part of a pen test on a U.S. Government system, you discover files containing social security numbers and other PII (Personally Identifiable Information) sensitive information. You are asked about controls placed on dissemination of this information. Which of the following acts should you check? - Privacy Act Joe has spent a large amount of time learning hacking tools and techniques, and has even passed certification exams to promote himself in the ethical hacking field. Joe uses his talents during theelection season to deface websites and launch denial of service attacks against opponents of his candidate. Which answer most closely correlates with Joe's actions? - Hactivism
Written for
- Institution
- CEH
- Course
- CEH
Document information
- Uploaded on
- June 28, 2023
- Number of pages
- 19
- Written in
- 2022/2023
- Type
- Exam (elaborations)
- Contains
- Questions & answers
Subjects
Also available in package deal
