Ethical Hacking Common Exam Questions|, Exams of Computer Science

Ethical Hacking Common Exam Questions| Ethical Hacking Common Exam Questions|

Typology: Exams

2025/2026

Available from 04/03/2026

Prof.Henshall
Prof.Henshall 🇬🇧

1.1K documents

1 / 83

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Ethical Hacking Common Exam
Questions|
The assurance that the systems responsible for delivering, storing, and processing
information are accessible when required by authorized users is referred to by which of
the following elements of information security?
A. non-repudiation
B. integrity
C. confidentiality
D. availability - Answer-D. availability
Identify the element of information security that refers to the quality of being genuine or
uncorrupted as a characteristic of any communication, documents, or any data.
A. integrity
B. authenticity
C. availability
D. confidentiality - Answer-B. authenticity
Mark, a professional hacker, targets his opponent's website. He finds susceptible user
inputs, injects malicious SQL code into the database, and tampers with critical
information.
Which of the following types of attack did Mark perform in the above scenario?
A. close-in attack
B. passive attack
C. insider attack
D. active attack - Answer-D. active attack
Ruby, a hacker, visited her target company disguised as an aspiring candidate seeking
a job. She noticed that certain sensitive documents were thrown in the trash near an
employee's desk. She collected these documents, which included critical information
that helped her to perform further attacks.
Identify the type of attack performed by Ruby in the above scenario.
A. close-in attack
B. passive attack
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24
pf25
pf26
pf27
pf28
pf29
pf2a
pf2b
pf2c
pf2d
pf2e
pf2f
pf30
pf31
pf32
pf33
pf34
pf35
pf36
pf37
pf38
pf39
pf3a
pf3b
pf3c
pf3d
pf3e
pf3f
pf40
pf41
pf42
pf43
pf44
pf45
pf46
pf47
pf48
pf49
pf4a
pf4b
pf4c
pf4d
pf4e
pf4f
pf50
pf51
pf52
pf53

Partial preview of the text

Download Ethical Hacking Common Exam Questions| and more Exams Computer Science in PDF only on Docsity!

Ethical Hacking Common Exam

Questions|

The assurance that the systems responsible for delivering, storing, and processing information are accessible when required by authorized users is referred to by which of the following elements of information security? A. non-repudiation B. integrity C. confidentiality

D. availability - Answer -D. availability

Identify the element of information security that refers to the quality of being genuine or uncorrupted as a characteristic of any communication, documents, or any data. A. integrity B. authenticity C. availability

D. confidentiality - Answer -B. authenticity

Mark, a professional hacker, targets his opponent's website. He finds susceptible user inputs, injects malicious SQL code into the database, and tampers with critical information. Which of the following types of attack did Mark perform in the above scenario? A. close-in attack B. passive attack C. insider attack

D. active attack - Answer -D. active attack

Ruby, a hacker, visited her target company disguised as an aspiring candidate seeking a job. She noticed that certain sensitive documents were thrown in the trash near an employee's desk. She collected these documents, which included critical information that helped her to perform further attacks. Identify the type of attack performed by Ruby in the above scenario. A. close-in attack B. passive attack

C. insider attack

D. active attack - Answer -A. close-in attack

James, a malware programmer, intruded into a manufacturing plant that produces computer peripheral devices. James tampered with the software inside devices ready to be delivered to clients. The tampered program creates a backdoor that allows unauthorized access to the systems. Identify the type of attack performed by James in the above scenario to gain unauthorized access to the delivered systems. A. directory traversal attack B. distribution attack C. phishing attack

D. replay attack - Answer -B. distribution attack

Williams, an employee, was using his personal laptop within the organization's premises. He connected his laptop to the organization's internal network and began eavesdropping on the communication between other devices connected to the internal network. He sniffed critical information such as login credentials and other confidential data passing through the network. Identify the type of attack performed by Williams in the above scenario. A. phishing attack B. SQL injection attack C. insider attack

D. replay attack - Answer -C. insider attack

Jack is working as a malware analyst in an organization. He was assigned to inspect an attack performed against the organization. Jack determined that the attacker had restricted access to the main computer's files and folders and was demanding an online payment to remove these restrictions. Which of the following type of attack has Jack identified in the above scenario? A. phishing B. sniffing C. ransomware

D. botnet - Answer -C. ransomware

A. accuracy B. purpose limitation C. lawfulness, fairness, and transparency

D. data minimization - Answer -D. data minimization

Which of the following titles in The Digital Millennium Copyright Act (DMCA) allows the owner of a copy of a program to make reproductions or adaptations when these are necessary to use the program in conjunction with a system? A. title II: online copyright infringement liability limitation B. title I: WIPO treaty implementation C. title V: protection of certain original designs

D. title III: computer maintenance or repair - Answer -D. title III: computer

maintenance and repar Which of the following titles of the Sarbanes Oxley Act (SOX) mandates that only senior executives should take individual responsibility for the accuracy and completeness of corporate financial reports? A. title VIII: corporate and criminal fraud accountability B. title V: analyst conflicts of interest C. title III: corporate responsibility

D. title X: corporate tax returns - Answer -C. title III: corporate responsibility

Which of the following countries has implemented the cyber law "Regulation of Investigatory Powers Act 2000"? A. Germany B. India C. Australia

D. United Kingdom - Answer -D. United Kingdom

Adele, a professional hacker, initiated an attack on an organization. During the course of this attack, he established a two-way communication channel between the target system and his server to communicate and pass data back and forth. Additionally, he employed encryption to hide the communication channel. Which of the following phases of cyber kill chain methodology was Adele performing in the above scenario? A. command and control B. weaponization

C. delivery

D. exploitation - Answer -A. command and control

Don, a professional hacker, initiated an attack on a target organization. During the course of this attack, he employed automated tools to collect maximum weak points, vulnerabilities, and other sensitive information across the target network. Which of the following phases of cyber kill chain methodology is Don currently executing in the above scenario? A. delivery B. exploitation C. command and control

D. reconnaissance - Answer -D. reconnaissance

John, a professional hacker, targeted a newly joined employee of an organization. He sent a malicious payload via a phishing email that insisted that the user reset his official account's password on a priority basis and warned that his account would be blocked if the email were ignored. Identify the phase of cyber kill chain methodology John has performed in the above scenario. A. reconnaissance B. delivery C. exploitation

D. installation - Answer -B. delivery

Clara, a security professional, while checking the data feeds of the domains, detects downloaded malicious files and unsolicited communication with the outside network based on the domains. Which of the following adversary behaviors was detected by Clara? A. internal reconnaissance B. unspecified proxy activities C. HTTP user agent

D. use of web shell - Answer -B. unspecified proxy activities

James, a professional hacker, successfully penetrated the target's network and now wants to gather as much information as possible. To achieve this, he uses a technique that can collect and combine as much information as possible, including business tactics of the organization, financial information, and network infrastructure information.

A. industrial spies B. black hats C. insiders

D. criminal syndicates - Answer -D. criminal syndicates

Which of the following type of hackers are unskilled individuals who compromise systems by running tools or software developed by other professional hackers? A. suicide hackers B. script kiddies C. hacktivists

D. black hats - Answer -B. script kiddies

Given below are the various phases of hacking.

  1. Reconnaissance
  2. Gaining access
  3. Maintaining access
  4. Clearing tracks
  5. Scanning What is the correct sequence of phases involved in hacking? A. 3 -> 1 -> 2 -> 5 -> 4 B. 1 -> 2 -> 4 -> 5 -> 3 C. 1 -> 5 -> 2 -> 3 -> 4

D. 1 -> 2 -> 3 -> 4 -> 5 - Answer -C. 1 -> 5 -> 2 -> 3 -> 4

In which of the following phases of hacking does an attacker employ steganography and tunneling techniques to retain access to the victim's system, remain unnoticed, and remove evidence that might lead to prosecution? A. reconnaissance B. preparatory C. scanning

D. clearing tracks - Answer -D. clearing tracks

In which of the following hacking phases do attackers extract information such as live machines, port, port status, OS details, device type, and system uptime to launch further attacks? A. scanning

B. reconnaissance C. gaining access

D. clearing tracks - Answer -A. scanning

Lopez, a penetration tester, executes different phases of the hacking cycle in her organization. She detects that the network is susceptible to password cracking, buffer overflows, denial of service, and session hijacking attacks. Identify the hacking phase Lopez was executing in the above scenario. A. gaining access B. clearing tracks C. scanning

D. maintaining access - Answer -A. gaining access

Peter, a professional hacker, managed to gain total control of his target system and was able to execute scripts in the trojan. He then used techniques such as steganography and tunneling to remain undetected and to avoid legal trouble. Which of the following hacking phase was Peter currently performing in the above scenario? A. scanning B. clearing tracks C. maintaining access

D. gaining access - Answer -B. clearing tracks

John, a security specialist, was requested by a client organization to check whether the security testing process was performed according to standard. He implemented a security audit on the organization's network to ensure that the performed test was well- organized, efficient, and ethical. John has conducted the audit following the steps given below.

  1. Talk to the client and discuss the needs to be addressed during testing
  2. Analyze the results of the testing and prepare a report
  3. Organize an ethical hacking team and prepare a schedule for testing
  4. Conduct the test
  5. Prepare and sign NDA documents with the client
  6. Present the findings to the client Identify the correct sequence of the steps John has followed while performing the security audit.

C. allinurl

D. cache - Answer -B. related

Which of the following tools includes scanners such as comprehensive security scanners and port scanners and provides information such as NetBIOS names, configuration info, open TCP and UDP ports, transports, and shares? A. TorBrowser B. Netcraft C. MegaPIng

D. ShellPhish - Answer -C. MegaPing

Identify the Nbtstat parameter that displays a count of all names resolved by a broadcast or WINS server. A. -r B. -c C. -R

D. -S - Answer -A. -r

Given below is the syntax of the nbtstat command. nbtstat [-a RemoteName] [-A IP Address] [-c] [-n] [-r] [-R] [-RR] [-s] [-S] [Interval] Which of the following Nbtstat parameters in the above syntax purges the name cache and reloads all #PRE-tagged entries from the Lmhosts file? A. -R B. -r C. -s

D. -RR - Answer -A. -R

Identify the Nbtstat parameter that lists the contents of the NetBIOS name cache, the table of NetBIOS names, and their resolved IP addresses. A. -R B. -r C. -S

D. -c - Answer -D. -c

Jack, a professional hacker, was recruited by an agency to steal sensitive data from a rival company. From a remote location, he discovered vulnerabilities in the target

company's network using a vulnerability scanner. He exploited them to intrude into the network and steal confidential data. Identify the threat source exploited by Jack in the above scenario. A. unintentional threats B. natural threats C. external threats

D. internal threats - Answer -C. external threats

Elon, a disgruntled employee with access to sensitive data, intends to damage the organization's reputation. He shares all the critical information and blueprints with the competitor and benefits financially. Identify the threat source in the above scenario. A. external threat B. natural threat C. internal threat

D. unintentional threat - Answer -C. internal threat

Sam, a new employee at an organization, received a phishing mail from an unauthorized source on his official email ID. As Sam was not trained on email security, he opened the email and clicked on the malicious link within the email, allowing the attacker to gain backdoor access to the office network. Identify the threat source in the above scenario. A. structured external threats B. natural threats C. unintentional threats

D. external threats - Answer -C. unintentional threats

James, a student, was curious about hacking. Although he does not possess much knowledge about the subject, he initiated a DoS attack on a website using freely available tools on the Internet. As the website already has some sort of security controls, it detected unusual traffic and blocked James's IP address. Which of the following types of threat sources is discussed in the above scenario? A. structured external threats B. natural threats C. unstructured external threats

Identify the technique employed by Jack to distribute malware in the above scenario. A. malvertising B. black hat search engine optimization C. social engineered click-jacking

D. spear-phishing sites - Answer -C. social engineered click-jacking

Anisha, a shopping freak, frequently uses many online websites for purchasing products without checking their legitimacy. While doing so, she unknowingly clicked on one of the shopping commercials expecting it to be authentic. However, this activity made her lose a huge amount of money from her account. Identify the technique employed to distribute malware in the above scenario. A. black hat search engine optimization B. malvertising C. drive-by downloads

D. spam emails - Answer -B. malvertising

Which of the following malware distribution techniques involves mimicking legitimate institutions in an attempt to steal login credentials? A. drive-by downloads B. spear-phishing sites C. spam emails

D. malvertising - Answer -B. spear-phishing sites

Which of the following malware distribution techniques involves exploiting flaws in browser software to install malware by merely visiting a web page? A. drive-by downloads B. malvertising C. black hat search engine optimization

D. spam emails - Answer -A. drive-by downloads

Identify the technique used by the attacker that involves keyword stuffing, inserting doorway pages, page swapping, and adding unrelated keywords to get higher rankings for malware pages. A. social engineered click-jacking B. drive-by downloads C. black hat search engine optimization

D. malvertising - Answer -C. black hat search engine optimization

Benson, a professional hacker, uses a technique that can exploit browser vulnerabilities. Using this technique, he is able to install malware simply by visiting a web page, and the victim system gets exploited whenever the webpage is being explored. Which of the following technique was mentioned in the above scenario? A. social engineered click-jacking B. malvertising C. spear-phishing sites

D. drive-by downloads - Answer -D. drive-by downloads

Identify the malware component that compresses the malware file by using compression techniques to convert the code and data of the malware into an unreadable format. A. obfuscator B. injector C. dropper

D. packer - Answer -D. packer

Which of the following malware components performs the desired activity when activated and is used to delete or modify files to compromise system security? A. dropper B. payload C. downloader

D. crypter - Answer -B. payload

Eyan, a professional hacker, developed malicious code that contains a sequence of commands that can take advantage of a bug or vulnerability in a digital system or device. He used the malicious code to spy on information, install malware, and compromise system security. Identify the component of the malware developed by Eyan in the above scenario. A. droppery B. crypter C. downloader

D. exploit - Answer -D. exploit

D. rootkit trojans - Answer -C. botnet trojans

Serin, a professional hacker, injected a backdoor into a target system that specifically attacked the root or system OS. When the backdoor is executed, he will obtain administrator-level access to the target system. Identify the type of malware utilized by Serin in the above scenario. A. point-of-sale trojans B. service protocol trojans C. e-banking trojans

D. rootkit trojans - Answer -D. rootkit trojans

Which of the following types of trojan uses port number 445 to infect the target system entry and exit points for application traffic? A. shamoon B. WannaCry C. hackers paradise

D. Mspy - Answer -B. WannaCry

Given below are various stages involved in the virus lifecycle.

  1. Replication
  2. Incorporation
  3. Launch
  4. Execution of the damage routine
  5. Design
  6. Detection Identify the correct sequence of stages involved in the virus lifecycle. A. 3 -> 4 -> 5 -> 6 -> 1 -> 2 B. 1 -> 2 -> 3 -> 4 -> 5 -> 6 C. 5 -> 1 -> 3 -> 6 -> 2 -> 4

D. 2 -> 3 -> 4 -> 1 -> 5 -> 6 - Answer -C. 5 -> 1 -> 3 -> 6 -> 2 -> 4

In which of the following stages of the virus lifecycle does a user install antivirus updates and eliminate virus threats? A. launch B. execution of the damage routine C. detection

D. replication - Answer -B. execution of the damage routine

Joy, a professional hacker, targeted an organization's system using a special type of virus that hides its actual source of infection. The virus employed by Joy diverts the antivirus solutions by providing certain other random location even though it is residing in the system. Identify the type of virus employed by Joy in the above scenario. A. add-on virus B. logic bomb virus C. armored virus

D. web scripting virus - Answer -C. armored virus

Kevin, a professional hacker, was hired to break into an organization's network and gather sensitive information. Kevin installed a virus that will be triggered when a specific date/time is reached, using which he can gain remote access and retrieve sensitive information. Identify the type of virus used by Kevin in the above scenario. A. metaphoric virus B. logic bomb virus C. polymorphic virus

D. file-extension virus - Answer -B. logic bomb virus

Freddy, a professional hacker, targets sensitive information stored in document files of programs like Microsoft word. For this purpose, he uses a virus program that is written using VBA, which infects the documents and converts the infected documents into template files while maintaining their appearance as standard document files. Identify the type of virus employed by Freddy in the above scenario. A. file virus B. multipartite virus C. web scripting virus

D. macro virus - Answer -D. macro virus

Which of the following viruses combines the approach of file infectors and boot record infectors and attempts to simultaneously attack both the boot sector and executable or program files? A. system or boot-sector viruses

B. marketing C. torrent

D. cryptomining - Answer -C. torrent

Which of the following fileless propagation techniques involves exploiting pre-installed tools in Windows OS such as PowerShell and Windows Management Instrumentation (WMI) to install and run malicious code? A. native applications B. phishing emails C. registry manipulation

D. malicious websites - Answer -A. native applications

Identify the type of vulnerabilities exploited by an attacker before they are identified and patched by the developers. A. open services B. zero-day vulnerabilities C. legacy platform vulnerabilities

D. buffer overflow vulnerabilities - Answer -B. zero-day vulnerabilities

Identify the type of software vulnerability that occurs due to coding errors and allows the attackers to gain access to the target system. A. unpatched servers B. open services C. misconfiguration

D. buffer overflow - Answer -D. buffer overflow

Steve, a forensic expert, was appointed to evaluate an attack initiated on the organization's network. He performed an overall assessment of the network to identify the cause. During this process, he identified outbound connections to Internet services and a few applications running with debugging enabled. Which following category of vulnerabilities did Steve identify in the above scenario? A. misconfiguration B. operating system flaws C. design flaws

D. buffer overflows - Answer -A. misconfiguration

Rogers, an administrator, has installed new software on an employee's system and forgot to change the credentials provided by the software vendor. Robert, an attacker,

on the other hand, browsed an online resource to obtain credentials provided by the software vendor and used those credentials to gain remote access to the employee's system to steal valuable data. Identify the type of vulnerability demonstrated in the above scenario. A. IP protocol vulnerabilities B. default password and settings C. TCP protocol vulnerabilities

D. operating system vulnerabilities - Answer -B. default password and settings

A computer user was trying to read the latest news articles from a popular website, but the user was prevented from accessing the resources of the website as certain underlying vulnerabilities in the webpage allowed an attacker to inject fake requests into the network; as a result, the server stopped responding to legitimate user requests. What is the impact caused due to vulnerabilities in the above scenario? A. denial of service B. information disclosure C. privilege escalation

D. remote code execution - Answer -A. denial of service

Identify the severity of CVSS v3.0 ratings with a base score range of 9.0-10. A. medium B. critical C. high

D. low - Answer -B. critical

Identify the metric used in CVSS assessment that represents the features that continue to change during the lifetime of the vulnerability. A. environmental metric B. impact metric C. base metric

D. temporal metric - Answer -D. temporal metric

Which of the following is a U.S. government repository of standards-based vulnerability management data and enables the automation of vulnerability management, security measurement, and compliance? A. National Vulnerability Database (NVD)