CEH v10 Questions with Correct Answers
Which of the following information is collected using enumeration?
A: Network resources, network shares, and machine names.
B: Open ports and services.
C: Email Recipient's system IP address and geolocation.
D: Operating systems, location of web se...
CEH v10 Questions with Correct
Answers
Which of the following information is collected using enumeration?
A: Network resources, network shares, and machine names.
B: Open ports and services.
C: Email Recipient's system IP address and geolocation.
D: Operating systems, location of web servers, users and passwords. - Answer-A:
Network resources, network shares, and machine names.
Which of the following protocols uses TCP or UDP as its transport protocol over port
389?
A: LDAP
B: SNMP
C: SMTP
D: SIP - Answer-A: LDAP
Which command lets a tester enumerate live systems in a class C network via ICMP
using native Windows tools?
A: ping 192.168.2.
B: ping 192.168.2.255
C: for %V in (1 1 255) do PING 192.168.2.%V
D: for /L %V in (1 1 254) do PING -n 1 192.168.2.%V | FIND /I "Reply" - Answer-B: ping
192.168.2.255
Which of the following cryptanalysis methods is applicable to symmetric key algorithms?
A: Linear cryptanalysis
B: Differential cryptanalysis
C: Integral cryptanalysis
D: Frequency Cryptanalysis - Answer-B: Differential cryptanalysis
,Which of the following cryptography attack methods is usually performed without the
use of a computer?
A: Ciphertext-only attack
Which of the following algorithms provides better protection against brute force attacks
by using a 160-bit message digest?
A: MD5
B: SHA-1
C: RC4
D: MD4 - Answer-B: SHA-1
Which of the PKI components is responsible for issuing and verifying digital certificate?
A: Validation authority (VA)
B: Certificate authority (CA)
C: Registration authority (RA)
D: End user - Answer-B: Certificate authority (CA)
Which of the following processes of PKI (public key infrastructure) ensures that a trust
relationship exists and that a certificate is still valid for specific operations?
A: Certificate issuance
To send a PGP-encrypted message, which piece of information from the recipient must
the sender have before encrypting the message?
A: Recipient's public key
B: Recipient's private key
C: Master encryption key
,D: Sender's public key - Answer-A: Recipient's public key
A network security administrator is worried about potential man-in-the-middle attacks
when users access a corporate website from their workstations. Which of the following
is the best remediation against this type of attack?
A: Implementing server-side PKI certificates for all connections
B: Mandating only client-side PKI certificates for all connections
C: Requiring client and server PKI certificates for all connections
D: Requiring strong authentication for all DNS queries - Answer-C: Requiring client and
server PKI certificates for all connections
Which of the following iOS applications allow you to find, lock, or erase a lost or stolen
device?
A: X-ray
B: Find my device
C: Find my Iphone
D: Faceniff - Answer-C: Find my Iphone
Which of the following processes allows Android users to attain privileged control within
Android's subsystem?
A: Jailbreaking
B: Wardriving
C: Rooting
D: Warchalking - Answer-C: Rooting
Which of the following browser applications encrypts your Internet traffic and then hides
it by bouncing through a series of computers around the world?
A: Google Chrome
B: UC Browser
C: Mozilla FireFox
D: ORBOT - Answer-D: ORBOT
, Hacker is a person who illegally breaks into a system or network without any
authorization to destroy, steal sensitive data or to perform any malicious attacks.
Black Hat hackers are:
a. Individuals professing hacker skills and using them for defensive purposes and are
also known as security analysts
b. Individuals with extraordinary skills, resorting to malicious or destructive activities and
are also known as crackers.
c. Individual to aim to bring down critical infrastructure for a "cause" and are not worried
about facing 30 years in jail for their actions.
d. Individuals who work both offensively and defensively at various times. - Answer-b.
Individuals with extraordinary skills, resorting to malicious or destructive activities and
are also known as crackers.
In order to compromise or to hack a system or network the hacker go through various
phases of hacking.What is the first hacking phase that hackers perform to gather
information about a target prior to launching an attack?
a. Reconnaissance
b. Scanning
c. Gaining access
d. Maintaining Access
e. Clearing tracks - Answer-a. Reconnaissance
Defense-in-depth is a security strategy in which several protection layers are placed
throughout an information system. It helps to prevent direct attacks against an
information system and data because a break in one layer only leads the attacker to the
next layers.
a. True
b. False - Answer-a. True
Penetration testing is a method of actively evaluating the security of an information
system f network by simulation an attack from a malicious source.Which of the following
techniques is used to simulate an attack from someone who is unfamiliar with the
system?
a. White box pen testing
Voordelen van het kopen van samenvattingen bij Stuvia op een rij:
Verzekerd van kwaliteit door reviews
Stuvia-klanten hebben meer dan 700.000 samenvattingen beoordeeld. Zo weet je zeker dat je de beste documenten koopt!
Snel en makkelijk kopen
Je betaalt supersnel en eenmalig met iDeal, creditcard of Stuvia-tegoed voor de samenvatting. Zonder lidmaatschap.
Focus op de essentie
Samenvattingen worden geschreven voor en door anderen. Daarom zijn de samenvattingen altijd betrouwbaar en actueel. Zo kom je snel tot de kern!
Veelgestelde vragen
Wat krijg ik als ik dit document koop?
Je krijgt een PDF, die direct beschikbaar is na je aankoop. Het gekochte document is altijd, overal en oneindig toegankelijk via je profiel.
Tevredenheidsgarantie: hoe werkt dat?
Onze tevredenheidsgarantie zorgt ervoor dat je altijd een studiedocument vindt dat goed bij je past. Je vult een formulier in en onze klantenservice regelt de rest.
Van wie koop ik deze samenvatting?
Stuvia is een marktplaats, je koop dit document dus niet van ons, maar van verkoper Scholarsstudyguide. Stuvia faciliteert de betaling aan de verkoper.
Zit ik meteen vast aan een abonnement?
Nee, je koopt alleen deze samenvatting voor €12,41. Je zit daarna nergens aan vast.
