











































































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Ethical Hacking Common Exam Questions| Ethical Hacking Common Exam Questions|
Typology: Exams
1 / 83
This page cannot be seen from the preview
Don't miss anything!












































































The assurance that the systems responsible for delivering, storing, and processing information are accessible when required by authorized users is referred to by which of the following elements of information security? A. non-repudiation B. integrity C. confidentiality
Identify the element of information security that refers to the quality of being genuine or uncorrupted as a characteristic of any communication, documents, or any data. A. integrity B. authenticity C. availability
Mark, a professional hacker, targets his opponent's website. He finds susceptible user inputs, injects malicious SQL code into the database, and tampers with critical information. Which of the following types of attack did Mark perform in the above scenario? A. close-in attack B. passive attack C. insider attack
Ruby, a hacker, visited her target company disguised as an aspiring candidate seeking a job. She noticed that certain sensitive documents were thrown in the trash near an employee's desk. She collected these documents, which included critical information that helped her to perform further attacks. Identify the type of attack performed by Ruby in the above scenario. A. close-in attack B. passive attack
C. insider attack
James, a malware programmer, intruded into a manufacturing plant that produces computer peripheral devices. James tampered with the software inside devices ready to be delivered to clients. The tampered program creates a backdoor that allows unauthorized access to the systems. Identify the type of attack performed by James in the above scenario to gain unauthorized access to the delivered systems. A. directory traversal attack B. distribution attack C. phishing attack
Williams, an employee, was using his personal laptop within the organization's premises. He connected his laptop to the organization's internal network and began eavesdropping on the communication between other devices connected to the internal network. He sniffed critical information such as login credentials and other confidential data passing through the network. Identify the type of attack performed by Williams in the above scenario. A. phishing attack B. SQL injection attack C. insider attack
Jack is working as a malware analyst in an organization. He was assigned to inspect an attack performed against the organization. Jack determined that the attacker had restricted access to the main computer's files and folders and was demanding an online payment to remove these restrictions. Which of the following type of attack has Jack identified in the above scenario? A. phishing B. sniffing C. ransomware
A. accuracy B. purpose limitation C. lawfulness, fairness, and transparency
Which of the following titles in The Digital Millennium Copyright Act (DMCA) allows the owner of a copy of a program to make reproductions or adaptations when these are necessary to use the program in conjunction with a system? A. title II: online copyright infringement liability limitation B. title I: WIPO treaty implementation C. title V: protection of certain original designs
maintenance and repar Which of the following titles of the Sarbanes Oxley Act (SOX) mandates that only senior executives should take individual responsibility for the accuracy and completeness of corporate financial reports? A. title VIII: corporate and criminal fraud accountability B. title V: analyst conflicts of interest C. title III: corporate responsibility
Which of the following countries has implemented the cyber law "Regulation of Investigatory Powers Act 2000"? A. Germany B. India C. Australia
Adele, a professional hacker, initiated an attack on an organization. During the course of this attack, he established a two-way communication channel between the target system and his server to communicate and pass data back and forth. Additionally, he employed encryption to hide the communication channel. Which of the following phases of cyber kill chain methodology was Adele performing in the above scenario? A. command and control B. weaponization
C. delivery
Don, a professional hacker, initiated an attack on a target organization. During the course of this attack, he employed automated tools to collect maximum weak points, vulnerabilities, and other sensitive information across the target network. Which of the following phases of cyber kill chain methodology is Don currently executing in the above scenario? A. delivery B. exploitation C. command and control
John, a professional hacker, targeted a newly joined employee of an organization. He sent a malicious payload via a phishing email that insisted that the user reset his official account's password on a priority basis and warned that his account would be blocked if the email were ignored. Identify the phase of cyber kill chain methodology John has performed in the above scenario. A. reconnaissance B. delivery C. exploitation
Clara, a security professional, while checking the data feeds of the domains, detects downloaded malicious files and unsolicited communication with the outside network based on the domains. Which of the following adversary behaviors was detected by Clara? A. internal reconnaissance B. unspecified proxy activities C. HTTP user agent
James, a professional hacker, successfully penetrated the target's network and now wants to gather as much information as possible. To achieve this, he uses a technique that can collect and combine as much information as possible, including business tactics of the organization, financial information, and network infrastructure information.
A. industrial spies B. black hats C. insiders
Which of the following type of hackers are unskilled individuals who compromise systems by running tools or software developed by other professional hackers? A. suicide hackers B. script kiddies C. hacktivists
Given below are the various phases of hacking.
In which of the following phases of hacking does an attacker employ steganography and tunneling techniques to retain access to the victim's system, remain unnoticed, and remove evidence that might lead to prosecution? A. reconnaissance B. preparatory C. scanning
In which of the following hacking phases do attackers extract information such as live machines, port, port status, OS details, device type, and system uptime to launch further attacks? A. scanning
B. reconnaissance C. gaining access
Lopez, a penetration tester, executes different phases of the hacking cycle in her organization. She detects that the network is susceptible to password cracking, buffer overflows, denial of service, and session hijacking attacks. Identify the hacking phase Lopez was executing in the above scenario. A. gaining access B. clearing tracks C. scanning
Peter, a professional hacker, managed to gain total control of his target system and was able to execute scripts in the trojan. He then used techniques such as steganography and tunneling to remain undetected and to avoid legal trouble. Which of the following hacking phase was Peter currently performing in the above scenario? A. scanning B. clearing tracks C. maintaining access
John, a security specialist, was requested by a client organization to check whether the security testing process was performed according to standard. He implemented a security audit on the organization's network to ensure that the performed test was well- organized, efficient, and ethical. John has conducted the audit following the steps given below.
C. allinurl
Which of the following tools includes scanners such as comprehensive security scanners and port scanners and provides information such as NetBIOS names, configuration info, open TCP and UDP ports, transports, and shares? A. TorBrowser B. Netcraft C. MegaPIng
Identify the Nbtstat parameter that displays a count of all names resolved by a broadcast or WINS server. A. -r B. -c C. -R
Given below is the syntax of the nbtstat command. nbtstat [-a RemoteName] [-A IP Address] [-c] [-n] [-r] [-R] [-RR] [-s] [-S] [Interval] Which of the following Nbtstat parameters in the above syntax purges the name cache and reloads all #PRE-tagged entries from the Lmhosts file? A. -R B. -r C. -s
Identify the Nbtstat parameter that lists the contents of the NetBIOS name cache, the table of NetBIOS names, and their resolved IP addresses. A. -R B. -r C. -S
Jack, a professional hacker, was recruited by an agency to steal sensitive data from a rival company. From a remote location, he discovered vulnerabilities in the target
company's network using a vulnerability scanner. He exploited them to intrude into the network and steal confidential data. Identify the threat source exploited by Jack in the above scenario. A. unintentional threats B. natural threats C. external threats
Elon, a disgruntled employee with access to sensitive data, intends to damage the organization's reputation. He shares all the critical information and blueprints with the competitor and benefits financially. Identify the threat source in the above scenario. A. external threat B. natural threat C. internal threat
Sam, a new employee at an organization, received a phishing mail from an unauthorized source on his official email ID. As Sam was not trained on email security, he opened the email and clicked on the malicious link within the email, allowing the attacker to gain backdoor access to the office network. Identify the threat source in the above scenario. A. structured external threats B. natural threats C. unintentional threats
James, a student, was curious about hacking. Although he does not possess much knowledge about the subject, he initiated a DoS attack on a website using freely available tools on the Internet. As the website already has some sort of security controls, it detected unusual traffic and blocked James's IP address. Which of the following types of threat sources is discussed in the above scenario? A. structured external threats B. natural threats C. unstructured external threats
Identify the technique employed by Jack to distribute malware in the above scenario. A. malvertising B. black hat search engine optimization C. social engineered click-jacking
Anisha, a shopping freak, frequently uses many online websites for purchasing products without checking their legitimacy. While doing so, she unknowingly clicked on one of the shopping commercials expecting it to be authentic. However, this activity made her lose a huge amount of money from her account. Identify the technique employed to distribute malware in the above scenario. A. black hat search engine optimization B. malvertising C. drive-by downloads
Which of the following malware distribution techniques involves mimicking legitimate institutions in an attempt to steal login credentials? A. drive-by downloads B. spear-phishing sites C. spam emails
Which of the following malware distribution techniques involves exploiting flaws in browser software to install malware by merely visiting a web page? A. drive-by downloads B. malvertising C. black hat search engine optimization
Identify the technique used by the attacker that involves keyword stuffing, inserting doorway pages, page swapping, and adding unrelated keywords to get higher rankings for malware pages. A. social engineered click-jacking B. drive-by downloads C. black hat search engine optimization
Benson, a professional hacker, uses a technique that can exploit browser vulnerabilities. Using this technique, he is able to install malware simply by visiting a web page, and the victim system gets exploited whenever the webpage is being explored. Which of the following technique was mentioned in the above scenario? A. social engineered click-jacking B. malvertising C. spear-phishing sites
Identify the malware component that compresses the malware file by using compression techniques to convert the code and data of the malware into an unreadable format. A. obfuscator B. injector C. dropper
Which of the following malware components performs the desired activity when activated and is used to delete or modify files to compromise system security? A. dropper B. payload C. downloader
Eyan, a professional hacker, developed malicious code that contains a sequence of commands that can take advantage of a bug or vulnerability in a digital system or device. He used the malicious code to spy on information, install malware, and compromise system security. Identify the component of the malware developed by Eyan in the above scenario. A. droppery B. crypter C. downloader
Serin, a professional hacker, injected a backdoor into a target system that specifically attacked the root or system OS. When the backdoor is executed, he will obtain administrator-level access to the target system. Identify the type of malware utilized by Serin in the above scenario. A. point-of-sale trojans B. service protocol trojans C. e-banking trojans
Which of the following types of trojan uses port number 445 to infect the target system entry and exit points for application traffic? A. shamoon B. WannaCry C. hackers paradise
Given below are various stages involved in the virus lifecycle.
In which of the following stages of the virus lifecycle does a user install antivirus updates and eliminate virus threats? A. launch B. execution of the damage routine C. detection
Joy, a professional hacker, targeted an organization's system using a special type of virus that hides its actual source of infection. The virus employed by Joy diverts the antivirus solutions by providing certain other random location even though it is residing in the system. Identify the type of virus employed by Joy in the above scenario. A. add-on virus B. logic bomb virus C. armored virus
Kevin, a professional hacker, was hired to break into an organization's network and gather sensitive information. Kevin installed a virus that will be triggered when a specific date/time is reached, using which he can gain remote access and retrieve sensitive information. Identify the type of virus used by Kevin in the above scenario. A. metaphoric virus B. logic bomb virus C. polymorphic virus
Freddy, a professional hacker, targets sensitive information stored in document files of programs like Microsoft word. For this purpose, he uses a virus program that is written using VBA, which infects the documents and converts the infected documents into template files while maintaining their appearance as standard document files. Identify the type of virus employed by Freddy in the above scenario. A. file virus B. multipartite virus C. web scripting virus
Which of the following viruses combines the approach of file infectors and boot record infectors and attempts to simultaneously attack both the boot sector and executable or program files? A. system or boot-sector viruses
B. marketing C. torrent
Which of the following fileless propagation techniques involves exploiting pre-installed tools in Windows OS such as PowerShell and Windows Management Instrumentation (WMI) to install and run malicious code? A. native applications B. phishing emails C. registry manipulation
Identify the type of vulnerabilities exploited by an attacker before they are identified and patched by the developers. A. open services B. zero-day vulnerabilities C. legacy platform vulnerabilities
Identify the type of software vulnerability that occurs due to coding errors and allows the attackers to gain access to the target system. A. unpatched servers B. open services C. misconfiguration
Steve, a forensic expert, was appointed to evaluate an attack initiated on the organization's network. He performed an overall assessment of the network to identify the cause. During this process, he identified outbound connections to Internet services and a few applications running with debugging enabled. Which following category of vulnerabilities did Steve identify in the above scenario? A. misconfiguration B. operating system flaws C. design flaws
Rogers, an administrator, has installed new software on an employee's system and forgot to change the credentials provided by the software vendor. Robert, an attacker,
on the other hand, browsed an online resource to obtain credentials provided by the software vendor and used those credentials to gain remote access to the employee's system to steal valuable data. Identify the type of vulnerability demonstrated in the above scenario. A. IP protocol vulnerabilities B. default password and settings C. TCP protocol vulnerabilities
A computer user was trying to read the latest news articles from a popular website, but the user was prevented from accessing the resources of the website as certain underlying vulnerabilities in the webpage allowed an attacker to inject fake requests into the network; as a result, the server stopped responding to legitimate user requests. What is the impact caused due to vulnerabilities in the above scenario? A. denial of service B. information disclosure C. privilege escalation
Identify the severity of CVSS v3.0 ratings with a base score range of 9.0-10. A. medium B. critical C. high
Identify the metric used in CVSS assessment that represents the features that continue to change during the lifetime of the vulnerability. A. environmental metric B. impact metric C. base metric
Which of the following is a U.S. government repository of standards-based vulnerability management data and enables the automation of vulnerability management, security measurement, and compliance? A. National Vulnerability Database (NVD)