100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
CEH v12 Exam | Questions And Answers Latest {} A+ Graded | 100% Verified $13.48   Add to cart

Exam (elaborations)

CEH v12 Exam | Questions And Answers Latest {} A+ Graded | 100% Verified

 3 views  0 purchase
  • Course
  • Top Academic Resources 2024/2025
  • Institution
  • Top Academic Resources 2024/2025

CEH v12 Exam | Questions And Answers Latest {} A+ Graded | 100% Verified

Preview 3 out of 17  pages

  • August 20, 2024
  • 17
  • 2024/2025
  • Exam (elaborations)
  • Questions & answers
  • Top Academic Resources 2024/2025
  • Top Academic Resources 2024/2025
avatar-seller
oneclass
CEH v12 Exam | Questions And Answers Latest {2024- 2025} A+ Graded | 100% Verified


Which of the following modbus-cli commands is used by attackers to manipulate the register values in a
target PLC device?



A. modbus write <Target IP> 101 1 1 1 1 1 1 1 1 1 1 modbus write <Target IP> %M100 1 1 1 1 1 1 1 1 1 1

B. modbus write <Target IP> %MW100 2 2 2 2 2 2 2 2 modbus write <Target IP> 400101 2 2 2 2 2 2 2 2

C. modbus read <Target IP> 101 10 modbus read <Target IP> %M100 10

D. modbus read <Target IP> 101 10 modbus read <Target IP> %M100 10 - B



In which of the following security risks does an API accidentally expose internal variables or objects
because of improper binding and filtering based on a whitelist, allowing attackers with unauthorized
access to modify object properties?



A. Broken object-level authorization

B. Broken object-level authorization

C. Broken object-level authorization

D. Injection - B



Identify the type of cluster computing in which work is distributed among nodes to avoid overstressing a
single node and periodic health checks are performed on each node to identify node failures and
reroute the incoming traffic to another node.



A.Fail-over

B.Load balancing

C.Highly available

D.High-performance computing - B



Which of the following is an attack technique where the only information available to the attacker is
some plaintext blocks along with the corresponding ciphertext and algorithm used to encrypt and
decrypt the text?

,A. Ciphertext-only attack

B. Adaptive chosen-plaintext attack

C. Chosen-plaintext attack

D. Known-plaintext attack - A.



Which of the following communication protocols is a variant of the Wi-Fi standard that provides an
extended range, making it useful for communications in rural areas, and offers low data rates?

A. HaLow

B. Z-Wave

C. 6LoWPAN

D. QUIC - C



Which of the following is a technique used by an attacker to gather valuable system-level data such as
account details, OS, software version, server names, and database schema details?



A.Whois

B.Session hijacking

C.Web server footprinting

D.Vulnerability scanning - C



Which of the following RFCrack commands is used by an attacker to perform an incremental scan on a
target IoT device while launching a rolling-code attack?



A.python RFCrack.py -b -v 5000000

B.python RFCrack.py-j -F 314000000

C.python RFCrack.py -r -M MOD_2FSK -F 314350000

D.python RFCrack.py -i - A

, Clark, a professional hacker, was attempting to capture packet flow on a target organization's network.
After exploiting certain vulnerabilities in the network, Clark placed his Raspberry Pi device between the
server and an authorized device to make all the network traffic pass through his device so that he can
easily sniff and monitor the packet flow. Using this technique, Clark successfully bypassed NAC controls
connected to the target network.



Which of the following techniques did Clark employ in the above scenario?



A. Using reverse ICMP tunnels

B. Using pre-authenticated device

C. Double tagging

D. Session splicing - D



Which of the following encryption algorithms is a large tweakable symmetric-key block cipher with equal
block and key sizes of 256, 512, or 1024 and involves only three operations, that is, addition-rotation-
XOR?



A. RC4

B. Twofish

C. RC5

D. Threefish - D



Which of the following steganography techniques is used by attackers for hiding the message with a
large amount of useless data and mixing the original data with the unused data in any order?



A. Null ciphers

B. Grille ciphers

C. Jargon codes

D. Semagrams - A



Which of the following attacks does not directly recover a WEP key and requires at least one data packet
from a target AP for initiation?

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller oneclass. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $13.48. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

67866 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$13.48
  • (0)
  Add to cart