

















































































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
This certification validates professional proficiency in using Kali Linux for penetration testing and security assessments. Topics include tool usage, scripting, reconnaissance, exploitation workflows, and reporting. Candidates are evaluated on their ability to effectively leverage Kali Linux in real-world security testing engagements.
Typology: Exams
1 / 89
This page cannot be seen from the preview
Don't miss anything!


















































































Question 1. Which project directly preceded Kali Linux and contributed most of its toolset? A) Ubuntu B) BackTrack C) Fedora Security Spin D) Parrot OS Answer: B Explanation: BackTrack was the predecessor to Kali; when BackTrack was discontinued, its tools and repositories were migrated into Kali Linux. Question 2. Kali Linux is based on which Debian branch? A) Stable B) Oldstable C) Testing D) Unstable Answer: C Explanation: Kali tracks Debian Testing, allowing newer packages while maintaining relative stability. Question 3. The Kali Linux philosophy “no network services by default” primarily aims to: A) Reduce installation size B) Prevent accidental exposure of vulnerable services C) Increase GUI performance D) Enable faster package updates Answer: B Explanation: By disabling services like SSH, Apache, etc., Kali reduces the attack surface when the system is booted in a live environment.
Question 4. Which legal principle requires a penetration tester to obtain written permission before using Kali tools on a target network? A) Computer Fraud and Abuse Act (CFAA) B) GDPR C) HIPAA D) DMCA Answer: A Explanation: The CFAA criminalizes unauthorized access; written consent ensures the activity is authorized and lawful. Question 5. When installing Kali on a bare‑metal system, which partition scheme is recommended for UEFI systems? A) MBR with a single ext4 partition B) GPT with an EFI System Partition (ESP) C) MBR with a separate /boot partition only D) No partitioning required; use whole‑disk mode Answer: B Explanation: UEFI firmware expects a GPT disk layout and an ESP formatted as FAT32 for boot files. Question 6. Which virtualization platform provides the most seamless integration of Kali’s wireless drivers for penetration testing? A) VirtualBox B: VMware Workstation/Player C) Hyper‑V
B) preseed.cfg in the ISO root C) /boot/grub/preseed.cfg D) /etc/apt/sources.list.d/preseed.list Answer: B Explanation: The installer looks for preseed.cfg in the root of the ISO or the boot media. Question 10. Kali NetHunter is primarily designed for which type of device? A) ARM‑based routers B) Raspberry Pi 4 C) Android smartphones and tablets D) Intel NUCs Answer: C Explanation: NetHunter is a Kali Linux build for Android devices, providing a mobile penetration testing platform. Question 11. When creating a Kali live USB with persistence, which partition label should be used for the persistent storage? A) persistence B) kali‑persist C) live‑persist D) persistence‑data Answer: A Explanation: The installer looks for a partition labeled persistence and reads the persistence.conf file within it.
Question 12. To enable encrypted persistence on a Kali live USB, which tool creates the LUKS container? A) cryptsetup B) gpg C) openssl enc D) dm‑crypt‑setup Answer: A Explanation: cryptsetup is used to format a partition with LUKS encryption and manage the container. Question 13. The “LUKS Nuke” feature in Kali does which of the following? A) Overwrites the entire disk with random data B) Deletes the LUKS header, rendering the encrypted data unrecoverable C) Formats the USB as FAT32 and removes persistence files D) Triggers a system shutdown after 5 minutes of inactivity Answer: B Explanation: Deleting the LUKS header destroys the key material, making the encrypted data impossible to decrypt. Question 14. In the Linux Filesystem Hierarchy Standard (FHS), where are system-wide configuration files stored? A) /usr/local/etc B) /etc C) /var/conf D) /opt/config Answer: B
Answer: B Explanation: sudo <command> runs the specified command with root privileges. Question 18. The chmod 750 file command results in which permission set for the owner, group, and others respectively? A) rwx r-x --- B) rw- r-- --- C) rwx rwx --- D) r-- r-- r-- Answer: A Explanation: 7 → rwx for owner, 5 → r-x for group, 0 → no permissions for others. Question 19. Which of the following tools is best suited for searching text patterns recursively across files? A) grep - r B) awk - R C) sed - i D) find - exec grep {} ; Answer: A Explanation: grep - r searches recursively; while find … - exec grep works, grep - r is more direct. Question 20. Which awk command prints the third column of a space‑delimited file? A) awk '{print $3}' file.txt B) awk - F: '{print $3}' file.txt C) awk '{print $[3]}' file.txt
D) awk - c 3 file.txt Answer: A Explanation: $3 refers to the third field; default field separator is whitespace. Question 21. To replace all occurrences of “http” with “https” in a file using sed, which command is correct? A) sed 's/http/https/g' file > newfile B) sed - i 's/http/https/g' file C) sed 's|http|https|g' file > newfile D) Both A and B are correct Answer: D Explanation: Both forms perform a global substitution; -i edits in place, while redirection writes to a new file. Question 22. Which find option limits the search to regular files larger than 10 MiB? A) - type f - size +10M B) - type f - size +10k C) - type d - size +10M D) - type f - size 10M Answer: A Explanation: -type f selects regular files, -size +10M selects files larger than 10 MiB. Question 23. The ls - lAh command displays: A) Long format, all files including hidden, human‑readable sizes B) Only hidden files in long format
B) ifconfig eth0 192.168.1.10 netmask 255.255.255.0 up C) nmcli con add type ethernet ifname eth0 ip4 192.168.1.10/ D) ip link set eth0 address 192.168.1. Answer: A Explanation: ip addr add assigns an address to the interface; the other options use different tools. Question 27. To view the current DNS resolver configuration on Kali, which file is examined? A) /etc/resolv.conf B) /etc/dnsmasq.conf C) /etc/network/interfaces D) /etc/hosts Answer: A Explanation: /etc/resolv.conf lists the nameserver entries used by the resolver. Question 28. Which nmcli command brings up the connection named “HomeWiFi”? A) nmcli con up id HomeWiFi B) nmcli dev connect HomeWiFi C) nmcli radio wifi on HomeWiFi D) nmcli conn start HomeWiFi Answer: A Explanation: nmcli con up id <name> activates the specified connection profile. Question 29. What is the purpose of the sources.list file in Kali?
A) Stores user‑defined aliases B) Lists package repositories for APT C) Contains kernel module load order D) Defines system boot parameters Answer: B Explanation: /etc/apt/sources.list tells APT where to fetch packages. Question 30. Which command updates the package index without upgrading any installed packages? A) apt update B) apt upgrade C) apt full-upgrade D) apt dist-upgrade Answer: A Explanation: apt update synchronizes the local package database with the repositories. Question 31. To install the nmap package on Kali, which command is correct? A) apt-get install nmap B) dpkg - i nmap.deb C) apt install nmap – reinstall D) apt-cache install nmap Answer: A Explanation: apt-get install (or apt install) resolves dependencies and installs the package.
Answer: A Explanation: dpkg-scanpackages reads a directory of .deb files and creates Packages.gz for APT. Question 35. Which command builds a Debian source package from a directory containing a debian/ folder? A) dpkg-buildpackage - us - uc B) debuild - b C) apt-get source. D) debian‑buildpkg Answer: A Explanation: dpkg-buildpackage compiles the source and creates .deb binaries; -us - uc skips signing. Question 36. To change the default desktop environment in Kali from Xfce to GNOME, which package should be installed? A) kali-desktop-gnome B) kali-desktop-xfce C) gnome-core D) kali-linux-gnome Answer: A Explanation: kali-desktop-gnome provides the GNOME session and necessary configuration for Kali. Question 37. Which command compiles a custom Linux kernel using the configuration file /usr/src/linux/.config? A) make - C /usr/src/linux && make modules_install && make install
B) dpkg-buildkernel /usr/src/linux C) gcc - o kernel /usr/src/linux/*.c D) make menuconfig && make install Answer: A Explanation: make - C /usr/src/linux builds the kernel using the existing .config; subsequent steps install modules and the kernel. Question 38. In systemd, which command disables a service named ssh from starting at boot? A) systemctl disable ssh B) systemctl stop ssh C) systemctl mask ssh D) systemctl remove ssh Answer: A Explanation: disable removes the symlink that starts the service during boot; stop only terminates the running instance. Question 39. To view the current status of the NetworkManager service, which command is appropriate? A) systemctl status NetworkManager B) service NetworkManager status C) nmcli general status D) netstat - p NetworkManager Answer: A Explanation: systemctl status reports unit status, including whether it’s active, enabled, and recent logs.
Explanation: lsmod reads /proc/modules and displays currently loaded modules. Question 43. To add a new user called pentester and place them in the sudo group, which command sequence is correct? A) useradd - m pentester && usermod - aG sudo pentester B) adduser pentester sudo C) useradd pentester && passwd pentester && usermod - G sudo pentester D) both A and C are correct Answer: D Explanation: Both sequences create the user, set a password (implicitly in adduser), and add to sudo. Question 44. Which file defines persistent storage behavior for a Kali live USB? A) persistence.conf B) live‑config.conf C) usb‑persist.cfg D) /etc/persistence.cfg Answer: A Explanation: persistence.conf inside the persistence partition tells the live system which directories to retain. Question 45. The apt-mark hold command is used to: A) Prevent a package from being upgraded B) Mark a package as essential C) Pin a package to a specific version repository D) Remove a package while keeping its configuration files
Answer: A Explanation: hold tells APT not to consider the package for upgrades. Question 46. Which environment variable determines the default editor for crontab - e? A) EDITOR B) VISUAL C) TERM D) PAGER Answer: A Explanation: EDITOR is consulted first; if unset, VISUAL may be used. Question 47. In the context of Kali, what does the -S flag do for the nmap command? A) Perform a SYN scan (default) B) Scan UDP ports only C) Enable script scanning D) Perform a stealth scan Answer: C Explanation: -sC enables default NSE scripts; -S is not a valid nmap flag. The correct answer is that -S does not exist, making the question a trick; however, the best answer among options is C (script scanning). (Note: This question tests awareness of nmap flag conventions.) Question 48. To view the manual page for the iptables command, which option is used? A) man iptables B) iptables - h C) iptables --help
C) hostnamectl | grep Kernel D) all of the above Answer: D Explanation: All listed commands display kernel version information. Question 52. To create a new partition table on /dev/sdb using gdisk, which command is used? A) sudo gdisk /dev/sdb B) sudo fdisk - g /dev/sdb C) sudo partprobe /dev/sdb D) sudo mkfs.ext4 /dev/sdb Answer: A Explanation: gdisk is a GPT partitioning tool; launching it with the device opens an interactive session to create a new table. Question 53. Which of the following is the default password for the built‑in “root” account in a fresh Kali install (as of 2023 releases)? A) toor B) kali C) root D) No default password; you set it during installation Answer: D Explanation: Recent Kali releases require the user to set a non‑default root password during the install process. Question 54. Which command lists all active network sockets on Kali?
A) ss - tuln B) netstat - a C) lsof - i D) all of the above Answer: D Explanation: All three commands provide information about active sockets; ss is the modern replacement for netstat. Question 55. To add a new APT repository that requires a GPG key, which sequence is correct? A) wget - qO - <key_url> | apt-key add - && echo "deb [arch=amd64] http://repo/kali kali-rolling main" >> /etc/apt/sources.list B) apt-key adv --fetch-keys <key_url> && echo "deb http://repo/kali kali-rolling main" > /etc/apt/sources.list.d/custom.list C) curl - fsSL <key_url> | gpg --dearmor - o /usr/share/keyrings/custom.gpg && echo "deb [signed-by=/usr/share/keyrings/custom.gpg] http://repo/kali kali-rolling main" > /etc/apt/sources.list.d/custom.list D) All of the above are valid methods Answer: D Explanation: All three snippets correctly import a GPG key and add a repository entry. Question 56. Which command displays the current SELinux status on Kali? A) sestatus B) getenforce C) selinuxenabled D) None; Kali uses AppArmor by default Answer: D