Certified Ethical Hacker | Questions and Answers | Grade A|
100% Correct (Verified Elaborations)
Question:
During a recent review of the events on your company's network, you discover that an attacker
used Nmap to perform a ping sweep on your company's network. Which
statement is true regarding this type of scan?
Answer:
It detects which computers are online
Question:
As an ethical hacker, you are using Nmap port scanning and must try to evade a certain type of
device. You are using the following techniques:
1. Break the network scans up into smaller ranges, with delays in between each scan.
2. Break up IP packets into fragments.
Which type of device are you most likely attempting to evade?
Answer:
IDS
Question:
An attacker is using the traceroute tool to carry out network footprinting. Which of the following
may NOT be discovered using this tool?
Answer:
FQDNs of all intermediary devices
,Question:
Which of the following action does vulnerability scanning NOT perform?
Answer:
Notifies of threats based on active attack signatures
Question:
You are running a high-level vulnerability scan using the Nmap utility. The network systems
include Windows machines running Internet Information Service (IIS).
Which switch should you use to automate and customize vulnerability scanning for different
Windows OS and SSL vulnerabilities?
Answer:
-sC
Question:
Your company has a monthly requirement to test corporate compliance with host application
usage and security policies. You need to use the appropriate tool to fulfill
this requirement.
Which tool should you use?
Answer:
Nessus
Question:
Your company's web site is updated on a regular basis. Over the past three years, the web site
has undergone four major updates in response to security issues. One
, of those major updates was to address a JavaScript vulnerability that allowed SQL injection
attacks to occur.
A new developer has requested to go back and see the code for the JavaScript vulnerability.
However, he discovers that there is retention of the code for the previous
web site versions. How can the developer go back and review the code?
Answer:
Go to archive.org
Question:
Your company wants to implement a three-factor access control system. Which of the following
would qualify for this implementation?
Answer:
Password, smart card, retina scan
Question:
What is the broadcast address for the subnet 191.43.164.0/22?
Answer:
191.43.167.255
Question:
You run the following command on a Windows computer:
FOR /L %H IN (1 1 10) DO ping -n 1 192.168.1.%H | FIND /I "reply"
What is the result?
Answer:
Enumeration of the alive systems in first ten IP addresses in the 192.168.1.0 network via ICMP