Certified Ethical Hacker Exam Prep Questions with 100% Correct Answers

Robert hopes to start a career in computer security. As a new college-level student, he has just learned the term ethical hacking, which is a key part of secure information systems. Of the below options, choose which will be key areas of expertise for Robert's future career. Answer is complete. Select more than one answer if applicable. a. Robert needs to gain a large body of knowledge about how computers function, with special regard to networking and programming. b. Operating systems are very important to Robert's career. Because companies utilize varying operating systems, including Windows (multiple versions), Mac (multiple versions), UNIX, and Linux, he must develop an advanced understanding of each of the major operating systems. c. Robert should gain familiarity with computing and hardware platforms, which are key to software development. d. Robert should be able to write reports related to his field and have great expertise in communication relating to computer security. Correct Answer All of the above are correct Which type of hacker uses their computer knowledge to invade the privacy of others, thereby breaking security laws and rendering the security of information systems weak? a. Security Providing Organization b. Gray Hat c. Black Hat d. White Hat Correct Answer c. Black Hat What is true about vulnerability in computer security? a. This security weak spot is discovered and possibly exploited in a Target of Evaluation and results from failed analysis, design and implementation, or an operation. b. It is caused by the incompetence of humans, natural disasters, or other indefensible situations. c. This agent can take advantage of a weakness in an information system or network. d. It is the threat or potential threat of a security violation and occurs only where there is a situation, action, or event that has the potential to break through security and damage a network or information system. Correct Answer a. This security weak spot is discovered and possibly exploited in a Target of Evaluation and results from failed analysis, design and implementation, or an operation. Which of the policies listed below is a valid set of rules regarding connecting a system to an internal network while physically in a different location? a. Computer Security Policy b. User Account Policy c. Remote Access Policy d. Network Security Policy Correct Answer c. Remote Access Policy