Ethical Hacking Essentials (EHE) EXAM
Questions and Correct Solutions 2024
Availability - Answer -Assurance that the systems responsible for delivering, storing, and processing
information are accessible when required by authorized users.
Authenticity - Answer -Refers to the characteristic of communication, documents, or any data that
ensures the quality of being genuine or uncorrupted.
Active Attacks - Answer -Tamper with the data in transit or disrupt the communication or services
between the systems to bypass or break into secured systems.
Advanced Persistent Threats (APT) - Answer -An attack that is focused on stealing information from the
victim machine without the user being aware of it.
Active Reconnaissance - Answer -Active reconnaissance techniques involves acquiring information
directly interacting with the target by any means.
Adware - Answer -Adware refers to software or a program that supports advertisements and generates
unsolicited ads and pop-ups.
Active Assessment - Answer -A type of vulnerability assessment that uses network scanners to identify
the hosts, services, and vulnerabilities present in a network.
Application Assessment - Answer -An application assessment focuses on transactional web applications,
traditional client-server applications, and hybrid systems.
Automated Assessment - Answer -In this type of assessment, the ethical hacker employs various
vulnerability assessment tools, such as Nessus, Qualys, GFI LanGuard, etc.
Active Online Attacks - Answer -The attacker performs password cracking by directly communicating with
the victim's machine.
Active Sniffing - Answer -Active sniffing searches for traffic on a switched LAN by actively injecting traffic
into it.
ARP Spoofing Attack - Answer -ARP spoofing/poisoning involves sending a large number of forged entries
to the target machine's ARP cache.
Active Session Hijacking - Answer -In an active attack, an attacker takes over an existing session either by
breaking the connection on one side of the conversation or by actively participating.
,Application Level Hijacking - Answer -Application level hijacking involves gaining control over the
Hypertext Transfer Protocol (HTTP) user session by obtaining the session IDs.
Access Point (AP) - Answer -An AP is used to connect wireless devices to a wireless/wired network.
Association - Answer -It refers to the process of connecting a wireless device to an AP.
AES - Answer -It is a symmetric-key encryption used in WPA2 as a replacement for TKIP.
App Sandboxing - Answer -App sandboxing is a security mechanism that helps protect systems and users
by limiting the resources that an app can access to its intended functionality on the mobile platform.
Agent Smith Attack - Answer -An Agent smith attack is carried out by persuading the victim to install a
malicious app designed and published by an attacker.
Brute-Force Attack - Answer -In a brute-force attack, attackers try every combination of characters until
the password is broken.
Botnet - Answer -A botnet is a huge network of compromised systems used by attackers to perform a
distributed task.
Black Hats - Answer -Black hats are individuals who use their extraordinary computing skills for illegal or
malicious purposes.
Broken Access Control - Answer -Broken access control is a method in which an attacker identifies a flaw
related to access control and bypasses the authentication, which allows them to compromise the
network.
Bandwidth - Answer -It describes the amount of information that may be broadcast over a connection.
Basic Service Set Identifier (BSSID) - Answer -It is the media access control (MAC) address of an access
point (AP) or base station that has set up a basic service set (BSS).
Bluetooth - Answer -Bluetooth is a short-range wireless communication technology that replaces cables
connecting portable or fixed devices while maintaining high levels of security.
Bluetooth Hacking - Answer -Bluetooth hacking refers to the exploitation of Bluetooth stack
implementation vulnerabilities to compromise sensitive data in Bluetooth-enabled devices and
networks.
Bluesmacking - Answer -A Bluesmacking attack occurs when an attacker sends an oversized ping packet
to a victim's device, causing a buffer overflow.
Bluejacking - Answer -Bluejacking is the use of Bluetooth to send messages to users without the
recipient's consent, similar to email spamming.
,Bluesnarfing - Answer -Bluesnarfing is a method of gaining access to sensitive data in a Bluetooth-
enabled device.
BlueSniff - Answer -BlueSniff is a proof-of-concept code for a Bluetooth wardriving utility.
Bluebugging - Answer -Bluebugging is an attack in which an attacker gains remote access to a target
Bluetooth-enabled device without the victim's awareness.
BluePrinting - Answer -BluePrinting is a footprinting technique performed by an attacker to determine
the make and model of a target Bluetooth-enabled device.
Btlejacking - Answer -Detrimental to BLE devices, it is used to bypass security mechanisms and listen to
information being shared.
Bring Your Own Device (BYOD) - Answer -Bring your own device (BYOD) refers to a policy that allows an
employee to bring their personal devices, such as laptops, smartphones, and tablets, to their workplace
and use them to access the organization's resources by following the access privileges.
Business Network - Answer -It comprises of a network of systems that offer information infrastructure to
the business.
Confidentiality - Answer -Confidentiality is the assurance that the information is accessible only to those
authorized to have access.
Close-in Attacks - Answer -Close-in attacks are performed when the attacker is in close physical proximity
with the target system or network.
Cyber Kill Chain Methodology - Answer -The cyber kill chain methodology is a component of intelligence-
driven defense for the identification and prevention of malicious intrusion activities.
Cyber Terrorists - Answer -Cyber terrorists are individuals with a wide range of skills who are motivated
by religious or political beliefs to create the fear of large-scale disruption of computer networks.
Criminal Syndicates - Answer -Criminal syndicates are groups of individuals or communities that are
involved in organized, planned, and prolonged criminal activities.
Clearing Tracks - Answer -Clearing tracks refers to the activities carried out by an attacker to hide
malicious acts.
Crypter - Answer -It is a software program that can conceal the existence of malware.
Computer Worms - Answer -Computer worms are standalone malicious programs that replicate,
execute, and spread across network connections independently without human intervention.
Credentialed Assessment - Answer -Assesses the network by obtaining the credentials of all machines
present in the network.
, Computer-based Social Engineering - Answer -Computer-based social engineering relies on computers
and Internet systems to carry out the targeted action.
Chain Letters - Answer -A chain letter is a message offering free gifts, such as money and software, on
the condition that the user forwards the email to a predetermined number of recipients.
Compromised Insider - Answer -An insider with access to critical assets of an organization who is
compromised by an outside threat actor.
Cross-Site Scripting (XSS) Attacks - Answer -Cross-site scripting ('XSS' or 'CSS') attacks exploit
vulnerabilities in dynamically generated web pages, enabling malicious attackers to inject client-side
scripts into web pages viewed by other users.
CCMP - Answer -It is an encryption protocol used in WPA2 for strong encryption and authentication.
Client Mis-Association - Answer -Mis-association is a security flaw that can occur when a network client
connects with a neighboring AP.
Critical Infrastructure - Answer -Critical infrastructure refers to a collection of physical or logical systems
and assets, the failure or destruction of which will severely impact security, safety, the economy, or
public health.
Command Injection - Answer -Attackers alter RF packets or inject their own packets employing reverse
engineering techniques to gain complete access over the target machine.
Cloud Computing - Answer -Cloud computing is an on-demand delivery of IT capabilities where IT
infrastructure and applications are provided to subscribers as a metered service over a network.
Container-as-a-Service (CaaS) - Answer -It offers virtualization of container engines, and management of
containers, applications, and clusters, through a web portal or API.
Community Cloud - Answer -Shared infrastructure between several organizations from a specific
community with common concerns (security, compliance, jurisdiction, etc.).
Cloud Consumer - Answer -A cloud consumer is a person or organization that maintains a business
relationship with the cloud service providers (CSPs) and utilizes the cloud computing services.
Cloud Provider - Answer -A cloud provider is a person or organization who acquires and manages the
computing infrastructure intended for providing services to interested parties via network access.
Cloud Carrier - Answer -A cloud carrier acts as an intermediary that provides connectivity and transport
services between CSPs and cloud consumers.
Cloud Auditor - Answer -A cloud auditor is a party that performs an independent examination of cloud
service controls to express an opinion thereon.
Questions and Correct Solutions 2024
Availability - Answer -Assurance that the systems responsible for delivering, storing, and processing
information are accessible when required by authorized users.
Authenticity - Answer -Refers to the characteristic of communication, documents, or any data that
ensures the quality of being genuine or uncorrupted.
Active Attacks - Answer -Tamper with the data in transit or disrupt the communication or services
between the systems to bypass or break into secured systems.
Advanced Persistent Threats (APT) - Answer -An attack that is focused on stealing information from the
victim machine without the user being aware of it.
Active Reconnaissance - Answer -Active reconnaissance techniques involves acquiring information
directly interacting with the target by any means.
Adware - Answer -Adware refers to software or a program that supports advertisements and generates
unsolicited ads and pop-ups.
Active Assessment - Answer -A type of vulnerability assessment that uses network scanners to identify
the hosts, services, and vulnerabilities present in a network.
Application Assessment - Answer -An application assessment focuses on transactional web applications,
traditional client-server applications, and hybrid systems.
Automated Assessment - Answer -In this type of assessment, the ethical hacker employs various
vulnerability assessment tools, such as Nessus, Qualys, GFI LanGuard, etc.
Active Online Attacks - Answer -The attacker performs password cracking by directly communicating with
the victim's machine.
Active Sniffing - Answer -Active sniffing searches for traffic on a switched LAN by actively injecting traffic
into it.
ARP Spoofing Attack - Answer -ARP spoofing/poisoning involves sending a large number of forged entries
to the target machine's ARP cache.
Active Session Hijacking - Answer -In an active attack, an attacker takes over an existing session either by
breaking the connection on one side of the conversation or by actively participating.
,Application Level Hijacking - Answer -Application level hijacking involves gaining control over the
Hypertext Transfer Protocol (HTTP) user session by obtaining the session IDs.
Access Point (AP) - Answer -An AP is used to connect wireless devices to a wireless/wired network.
Association - Answer -It refers to the process of connecting a wireless device to an AP.
AES - Answer -It is a symmetric-key encryption used in WPA2 as a replacement for TKIP.
App Sandboxing - Answer -App sandboxing is a security mechanism that helps protect systems and users
by limiting the resources that an app can access to its intended functionality on the mobile platform.
Agent Smith Attack - Answer -An Agent smith attack is carried out by persuading the victim to install a
malicious app designed and published by an attacker.
Brute-Force Attack - Answer -In a brute-force attack, attackers try every combination of characters until
the password is broken.
Botnet - Answer -A botnet is a huge network of compromised systems used by attackers to perform a
distributed task.
Black Hats - Answer -Black hats are individuals who use their extraordinary computing skills for illegal or
malicious purposes.
Broken Access Control - Answer -Broken access control is a method in which an attacker identifies a flaw
related to access control and bypasses the authentication, which allows them to compromise the
network.
Bandwidth - Answer -It describes the amount of information that may be broadcast over a connection.
Basic Service Set Identifier (BSSID) - Answer -It is the media access control (MAC) address of an access
point (AP) or base station that has set up a basic service set (BSS).
Bluetooth - Answer -Bluetooth is a short-range wireless communication technology that replaces cables
connecting portable or fixed devices while maintaining high levels of security.
Bluetooth Hacking - Answer -Bluetooth hacking refers to the exploitation of Bluetooth stack
implementation vulnerabilities to compromise sensitive data in Bluetooth-enabled devices and
networks.
Bluesmacking - Answer -A Bluesmacking attack occurs when an attacker sends an oversized ping packet
to a victim's device, causing a buffer overflow.
Bluejacking - Answer -Bluejacking is the use of Bluetooth to send messages to users without the
recipient's consent, similar to email spamming.
,Bluesnarfing - Answer -Bluesnarfing is a method of gaining access to sensitive data in a Bluetooth-
enabled device.
BlueSniff - Answer -BlueSniff is a proof-of-concept code for a Bluetooth wardriving utility.
Bluebugging - Answer -Bluebugging is an attack in which an attacker gains remote access to a target
Bluetooth-enabled device without the victim's awareness.
BluePrinting - Answer -BluePrinting is a footprinting technique performed by an attacker to determine
the make and model of a target Bluetooth-enabled device.
Btlejacking - Answer -Detrimental to BLE devices, it is used to bypass security mechanisms and listen to
information being shared.
Bring Your Own Device (BYOD) - Answer -Bring your own device (BYOD) refers to a policy that allows an
employee to bring their personal devices, such as laptops, smartphones, and tablets, to their workplace
and use them to access the organization's resources by following the access privileges.
Business Network - Answer -It comprises of a network of systems that offer information infrastructure to
the business.
Confidentiality - Answer -Confidentiality is the assurance that the information is accessible only to those
authorized to have access.
Close-in Attacks - Answer -Close-in attacks are performed when the attacker is in close physical proximity
with the target system or network.
Cyber Kill Chain Methodology - Answer -The cyber kill chain methodology is a component of intelligence-
driven defense for the identification and prevention of malicious intrusion activities.
Cyber Terrorists - Answer -Cyber terrorists are individuals with a wide range of skills who are motivated
by religious or political beliefs to create the fear of large-scale disruption of computer networks.
Criminal Syndicates - Answer -Criminal syndicates are groups of individuals or communities that are
involved in organized, planned, and prolonged criminal activities.
Clearing Tracks - Answer -Clearing tracks refers to the activities carried out by an attacker to hide
malicious acts.
Crypter - Answer -It is a software program that can conceal the existence of malware.
Computer Worms - Answer -Computer worms are standalone malicious programs that replicate,
execute, and spread across network connections independently without human intervention.
Credentialed Assessment - Answer -Assesses the network by obtaining the credentials of all machines
present in the network.
, Computer-based Social Engineering - Answer -Computer-based social engineering relies on computers
and Internet systems to carry out the targeted action.
Chain Letters - Answer -A chain letter is a message offering free gifts, such as money and software, on
the condition that the user forwards the email to a predetermined number of recipients.
Compromised Insider - Answer -An insider with access to critical assets of an organization who is
compromised by an outside threat actor.
Cross-Site Scripting (XSS) Attacks - Answer -Cross-site scripting ('XSS' or 'CSS') attacks exploit
vulnerabilities in dynamically generated web pages, enabling malicious attackers to inject client-side
scripts into web pages viewed by other users.
CCMP - Answer -It is an encryption protocol used in WPA2 for strong encryption and authentication.
Client Mis-Association - Answer -Mis-association is a security flaw that can occur when a network client
connects with a neighboring AP.
Critical Infrastructure - Answer -Critical infrastructure refers to a collection of physical or logical systems
and assets, the failure or destruction of which will severely impact security, safety, the economy, or
public health.
Command Injection - Answer -Attackers alter RF packets or inject their own packets employing reverse
engineering techniques to gain complete access over the target machine.
Cloud Computing - Answer -Cloud computing is an on-demand delivery of IT capabilities where IT
infrastructure and applications are provided to subscribers as a metered service over a network.
Container-as-a-Service (CaaS) - Answer -It offers virtualization of container engines, and management of
containers, applications, and clusters, through a web portal or API.
Community Cloud - Answer -Shared infrastructure between several organizations from a specific
community with common concerns (security, compliance, jurisdiction, etc.).
Cloud Consumer - Answer -A cloud consumer is a person or organization that maintains a business
relationship with the cloud service providers (CSPs) and utilizes the cloud computing services.
Cloud Provider - Answer -A cloud provider is a person or organization who acquires and manages the
computing infrastructure intended for providing services to interested parties via network access.
Cloud Carrier - Answer -A cloud carrier acts as an intermediary that provides connectivity and transport
services between CSPs and cloud consumers.
Cloud Auditor - Answer -A cloud auditor is a party that performs an independent examination of cloud
service controls to express an opinion thereon.
