Certified Ethical Hacker Certification - CEH v10. Questions with Correct Answers

ARP poisoning Correct Answer ARP poisoning refers to flooding the target machine's ARP cache with forged entries. Grey box testing Correct Answer A combination of black box and white box testing that gives a full inspection of the system, simulating both outside and inside attacks NTP Enumeration Correct Answer NTP stands for Network Time Protocol and its role is to ensure that the networked computer clocks are synchronized. NTP enumeration provides hackers with information about the hosts that are connected to NTP server as well as IP addresses, system names, and operating systems of the clients. Active online attacks Correct Answer Active online attacks require the attacker to communicate with the target machine in order to crack the password. Static malware analysis Correct Answer Static analysis refers to analyzing malware without running or installing it. The malware's binary code is examined to determine if there are any data structures or function calls that have malicious behavior. Access control Correct Answer Access control attack is someone tries to penetrate a wireless network by avoiding access control measures, such as Access Point MAC filters or Wi-Fi port access control. Password guessing attack steps Correct Answer Find the target's username Create a password list Sort the passwords by the probability Try each password Sniffer Correct Answer Packet sniffing programs are called sniffers and they are designed to capture packets that contain information such as passwords, router configuration, traffic, and more. Data backup strategy steps Correct Answer Identify important data Choose the appropriate backup media Choose the appropriate backup technology Choose the appropriate RAID levels