CEH v10 Memory Check Exam Questions
with Correct Answers
What two conditions must a digital signature meet?
A.
Has to be the same number of characters as a physical signature and must be unique.
B.
Has to be legible and neat.
C.
Must be unique and have special characters.
D.
Has to be unforgeable, and has to be authentic. - Answer-D.
Has to be unforgeable, and has to be authentic.
What is the algorithm used by LM for Windows2000 SAM?
A. MD4
B. DES
C. SHA
D. SSL - Answer-B. DES
Which of the following is the BEST way to defend against network sniffing?
A.
Using encryption protocols to secure network communications
B.
Register all machines MAC Address in a Centralized Database
C.
Restrict Physical Access to Server Rooms hosting Critical Servers
D.
Use Static IP Address - Answer-A.
Using encryption protocols to secure network communications
Which of the following statements is TRUE?
A.
Sniffers operate on Layer 2 of the OSI model
B.
Sniffers operate on Layer 3 of the OSI model
C.
Sniffers operate on both Layer 2 & Layer 3 of the OSI model.
, D.
Sniffers operate on the Layer 1 of the OSI model. - Answer-A.
Sniffers operate on Layer 2 of the OSI model
The Heartbleed bug was discovered in 2014 and is widely referred to under MITRE's
Common Vulnerabilities and Exposures (CVE) as CVE-2014-0160. This bug affects the
OpenSSL implementation of the transport layer security (TLS) protocols defined in
RFC6520.
What type of key does this bug leave exposed to the Internet making exploitation of any
compromised system very easy?
A. Private
B. Public
C. Shared
D. Root - Answer-A. Private
Initiating an attack against targeted businesses and organizations, threat actors
compromise a carefully selected website by inserting an exploit resulting in malware
infection. The attackers run exploits on well-known and trusted sites likely to be visited
by their targeted victims. Aside from carefully choosing sites to compromise, these
attacks are known to incorporate zero-day exploits that target unpatched vulnerabilities.
Thus, the targeted entities are left with little or no defense against these exploits.
What type of attack is outlined in the scenario?
A.
Shellshock Attack
B.
Heartbleed Attack
C.
Watering Hole Attack
D.
Spear Phising Attack - Answer-C.
Watering Hole Attack
An IT employee got a call from one of our best customers. The caller wanted to know
about the company's network infrastructure, systems, and team. New opportunities of
integration are in sight for both company and customer. What should this employee do?
A.
Since the company's policy is all about Customer Service, he/she will provide
information.
B.
Disregarding the call, the employee should hang up.
C.
with Correct Answers
What two conditions must a digital signature meet?
A.
Has to be the same number of characters as a physical signature and must be unique.
B.
Has to be legible and neat.
C.
Must be unique and have special characters.
D.
Has to be unforgeable, and has to be authentic. - Answer-D.
Has to be unforgeable, and has to be authentic.
What is the algorithm used by LM for Windows2000 SAM?
A. MD4
B. DES
C. SHA
D. SSL - Answer-B. DES
Which of the following is the BEST way to defend against network sniffing?
A.
Using encryption protocols to secure network communications
B.
Register all machines MAC Address in a Centralized Database
C.
Restrict Physical Access to Server Rooms hosting Critical Servers
D.
Use Static IP Address - Answer-A.
Using encryption protocols to secure network communications
Which of the following statements is TRUE?
A.
Sniffers operate on Layer 2 of the OSI model
B.
Sniffers operate on Layer 3 of the OSI model
C.
Sniffers operate on both Layer 2 & Layer 3 of the OSI model.
, D.
Sniffers operate on the Layer 1 of the OSI model. - Answer-A.
Sniffers operate on Layer 2 of the OSI model
The Heartbleed bug was discovered in 2014 and is widely referred to under MITRE's
Common Vulnerabilities and Exposures (CVE) as CVE-2014-0160. This bug affects the
OpenSSL implementation of the transport layer security (TLS) protocols defined in
RFC6520.
What type of key does this bug leave exposed to the Internet making exploitation of any
compromised system very easy?
A. Private
B. Public
C. Shared
D. Root - Answer-A. Private
Initiating an attack against targeted businesses and organizations, threat actors
compromise a carefully selected website by inserting an exploit resulting in malware
infection. The attackers run exploits on well-known and trusted sites likely to be visited
by their targeted victims. Aside from carefully choosing sites to compromise, these
attacks are known to incorporate zero-day exploits that target unpatched vulnerabilities.
Thus, the targeted entities are left with little or no defense against these exploits.
What type of attack is outlined in the scenario?
A.
Shellshock Attack
B.
Heartbleed Attack
C.
Watering Hole Attack
D.
Spear Phising Attack - Answer-C.
Watering Hole Attack
An IT employee got a call from one of our best customers. The caller wanted to know
about the company's network infrastructure, systems, and team. New opportunities of
integration are in sight for both company and customer. What should this employee do?
A.
Since the company's policy is all about Customer Service, he/she will provide
information.
B.
Disregarding the call, the employee should hang up.
C.
