Certified Ethical Hacker Practice Exam

JavaScript isn't enabled in your browser, so this file can't be opened. Enable and reload.

Certified Ethical Hacker Practice Exam - Part ll

Volume B

Email *

Write down your name. *

Write down your contact number. *

Q101: What sequence of packets is sent during the initial TCP three-way handshake? *

1 point

SYN,SYN-ACK,ACK

SYN,URG,ACK

SYN,ACK,SYN-ACK

FIN,FIN-ACK,ACK

Q102: Steve scans the network for SNMP enabled devices. Which port number Steve should scan? *

1 point

150

161

169

Q103: You are footprinting an organization and gathering competitive intelligence. You visit the company's website for contact information and telephone numbers but do not find them listed here. You know they had the entire staff directory listed on their website 12 months ago but now itis not there. Is there any way you can retrieve information from a website that is outdated? *

1 point

Visit Google's search engine and view the cached copy

Crawl the entire website and store them into your computer

Visit Archive.org web site to retrieve the Internet archive of the company's website

Visit the company's partners and customers website for this information

Q104: You are the CIO for Avantes Finance International, a global finance company based in Geneva. You are responsible for network functions and logical security throughout the entire corporation. Your company has over 250 servers running Windows Server, 5000 workstations running Windows Vista, and 200 mobile users working from laptops on Windows 7. Last week, 10 of your company's laptops were stolen from salesmen while at a conference in Amsterdam. These laptops contained proprietary company information. While doing damage assessment on the possible public relations nightmare this may become, a news story leaks about the stolen laptops, and also that sensitive information from those computers was posted to a blog online. What built-in Windows feature could you have implemented to protect the sensitive information on these laptops? *

1 point

You should have used 3DES which is built into Windows

If you would have implemented Pretty Good Privacy (PGP) which is built into Windows, the sensitive information on the laptops would not have leaked out

You should have utilized the built-in feature of Distributed File System (DFS) to protect the sensitive information on the laptops

You could have implemented Encrypted File System (EFS) to encrypt the sensitive files on the laptops

Q105: *

1 point

A flash file extension to Firefox that gets automatically installed when a victim visits rogue software disabling websites

A Fake AV program that claims to rid a computer of malware,but instead installs spyware or other malware onto the computer. This kind of software is known as rogue security software.

Rogue security software is based on social engineering technique in which the attackers lures victim to visit spear phishing websites

This software disables firewalls and establishes reverse connecting tunnel between the victim's machine and that of the attacker

Q106: Which of the following is NOT part of CEH Scanning Methodology? *

1 point

Check for Live systems

Check for Open Ports

Banner Grabbing

Prepare Proxies

Social Engineering attacks

Scan for Vulnerabilities

Draw Network Diagrams

Q107: Lee is using Wireshark to log the traffic on his network. He notices a number of packets being directed to an internal IP from an outside IP where the packets are ICMP and their size is around 65, 536bytes. What is Lee seeing here? *

1 point

Lee is seeing activity indicative of a Smurf attack.

Most likely,the ICMP packets are being sent in this manner to attempt IP spoofing.

Lee is seeing a Ping of death attack.

This is not unusual traffic,ICMP packets can be of any size.

Q108: This method is used to determine the Operating system and version running on a remote target system. What is it called? *

1 point

Service Degradation

OS Fingerprinting

Manual Target System

Identification Scanning

Q109: William has received a Chess game from someone in his computer programming class through email. William does not really know the person who sent the game very well but decides to install the game anyway because he really likes Chess. *

1 point

Zombie Zapper (ZoZ)

Remote Access Trojan (RAT)

Bot IRC Tunnel (BIT)

Root Digger (RD)

Q110: John the hacker is sniffing the network to inject ARP packets. He injects broadcast frames onto the wire to conduct a MiTM attack. What is the destination MAC address of a broadcast frame? *

1 point

0xFFFFFFFFFFFF

0xDDDDDDDDDDDD

0xAAAAAAAAAAAA

0xBBBBBBBBBBBB

Clear form

Never submit passwords through Google Forms.

This content is neither created nor endorsed by Google. Report Abuse - Terms of Service - Privacy Policy

Forms