SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
CEH: Certified Ethical Hacker
Start Test
Study First
Subjects
:
certifications
,
ceh
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. nmap
Simple Mail Transfer Protocol (SMTP)
--randomize_hosts -O OS fingerprinting
HTTP tunneling
protocol stack
2. Nmap ml output
SOA record
-oX
integrity
Fiber Distributed Data Interface (FDDI)
3. Policy stating what users of a system can and cannot do with the organization's assets.
Third Party
Annualized Loss Expectancy (ALE)
footprinting
Acceptable Use Policy (AUP)
4. Freely and readily available information on an organization that can be gathered by a business entity about its competitor's customers - products - and marketing - and can be used by an attacker to build useful information for further attacks.
A series of messages sent by someone attempting to break into a computer to learn about the computer's network services.
Time Bomb
RPC-DCOM
Competitive Intelligence
5. A comparison metric for different biometric devices and technologies; the point at which the false acceptance rate (FAR) equals the
Crossover Error Rate (CER)
Zombie
Application Layer
private network address
6. Any circumstance or event with the potential to adversely impact organizationaloperations - organizational assets - or individuals through an information system via unauthorized access - destruction - disclosure - modification of information - and/or
remote access
RxBoot
Threat
Secure Sockets Layer (SSL)
7. Looking over an authorized user's shoulder in order to steal information (such as authentication information).
Information Technology (IT) asset criticality
shoulder surfing
Wrapper
Confidentiality
8. Originally an extension of PPP - this is a protocol for authentication used within wireless networks. Works with multiple authentication measures.
port redirection
Extensible Authentication Protocol (EAP)
Zenmap
Defense in Depth
9. Evaluation in which testers attempt to penetrate the network.
Routing Information Protocol (RIP)
Level III assessment
Fiber Distributed Data Interface (FDDI)
hashing algorithm
10. A computer network confined to a relatively small area - such as a single building or campus - in which devices connect through high-frequency radio waves using IEEE standard 802.11.
Written Authorization
Wireless Local Area Network (WLAN)
-PI
-sR
11. A protocol used for sending and receiving log information for nodes on a network.
Routing Protocol
session splicing
Active Directory (AD)
Syslog
12. The process of embedding information into a digital signal in a way that makes it difficult to remove.
GET
Boot Sector Virus
Whois
Digital Watermarking
13. Actions - devices - procedures - techniques - or other measures intended to reduce the vulnerability of an information system.
-P0
Web Spider
Countermeasures
gateway
14. The rate at which a biometric system will incorrectly identify an unauthorized individual and allow them access (see false negative).
False Acceptance Rate (FAR)
Annualized Loss Expectancy (ALE)
gray hat
Multipurpose Internet Mail Extensions (MIME)
15. Port 22
social engineering
SSH
hybrid attack
patch
16. A function that is easy to compute in one direction - yet believed to be difficult to compute in the opposite direction (finding its inverse) without special information - called the 'trapdoor.' Widely used in cryptography.
DNS
Trapdoor Function
A
social engineering
17. A wireless networking mode where all clients connect to the wireless network through a central access point.
infrastructure mode
-P0
802.11 i
protocol stack
18. A secret - typically consisting of only decimal digits - that a claimant memorizes and uses to authenticate his identity
Secure Multipurpose Mail Extension (S/MIME)
RxBoot
personal identification number (PIN)
Tumbling
19. Network Scanning
A procedure for identifying active hosts on a network.
File Allocation Table (FAT)
Address Resolution Protocol (ARP)
remote procedure call (RPC)
20. An Application layer protocol for sending electronic mail between servers.
Simple Mail Transfer Protocol (SMTP)
POP 3
security controls
false rejection rate (FRR)
21. PI and PT Ping
SOA record
-PB
Destination Unreachable
role-based access control
22. Wireless LAN standards created by IEEE. 802.11a runs at up to 54Mbps at 5GHz - 802.11b runs at 11Mbps at 2.4GHz - 802.11g runs at 54Mbps at 2.4GHz - and 802.11n can run upwards of 150MBps.
public key
802.11
Wireless Local Area Network (WLAN)
Internal access to the network
23. Injecting traffic into the network to identify the operating system of a device.
Anonymizer
International Organization for Standardization (ISO)
Active Fingerprinting
Minimum acceptable level of risk
24. Used to find the domain name associated with an IP address; the opposite of a DNS lookup.
Application Layer
rule-based access control
suicide hacker
reverse lookup; reverse DNS lookup
25. A network architecture framework developed by ISO that describes the communications process between two systems across the Internet in seven distinct layers.
Trapdoor Function
Open System Interconnection (OSI) Reference Model
Access Creep
Bug
26. A software program for remotely controlling a Microsoft Windows computer system over a network. Generally considered malware.
replay attack
NetBus
Back orifice
-PP
27. A hardware device used to log keystrokes covertly. Hardware keystroke loggers are very dangerous due to the fact that they cannot be detected through regular software/anti-malware scanning.
Digital Certificate
Network Basic Input/Output System (NetBIOS)
script kiddie
hardware keystroke logger
28. A group of penetration testers that assess the security of an organization - which is often unaware of the existence of the team or the exact assignment.
red team
Internet Protocol (IP)
NT LAN Manager (NTLM)
International Organization for Standardization (ISO)
29. A hacking method for stealing the cookies used during a session build and replaying them for unauthorized connection purposes.
Buffer Overflow
protocol stack
Distributed DoS (DDoS)
sidejacking
30. A simple PPP authentication mechanism in which the user name and password are transmitted in clear text to prove identity. PAP compares the user name and password to a table listing authorized users.
Domain Name System (DNS) lookup
A
Tunneling
Password Authentication Protocol (PAP)
31. A unique hostname that is used to identify resources on the Internet. Domain names start with a root (.) - then add a top level (.com - .gov - or .mil - for example) - and a given name space.
port redirection
Defense in Depth
Domain Name
POST
32. A communications channel that is being used for a purpose it was not intended for - usually to transfer information secretly.
Covert Channel
Methodology
Service Set Identifier (SSID)
queue
33. ICMP Ping
shrink-wrap code attacks
-oA
Echo request
-PI
34. A domain composed of all the systems sharing any given physical transport media. Systems within a collision domain may collide with each other during the transmission of data. Collisions can be managed by CSMA/CD (collision detection) or CSMA/CA (col
Information Technology (IT) infrastructure
Collision Domain
A procedure for identifying active hosts on a network.
steganography
35. ICMP Type/Code 3
Destination Unreachable
Demilitarized Zone (DMZ)
key exchange protocol
red team
36. An evaluation consisting of a document review - interviews - and demonstrations. No hands-on testing is performed.
Temporal Key Integrity Protocol (TKIP)
Fiber Distributed Data Interface (FDDI)
Level I assessment
Cache
37. FTP Bounce Attack
parallel scan & 300 sec timeout & 1.25 sec/probe
-b
Point-to-Point Protocol (PPP)
net use \[target ip]IPC$ '' /user:''
38. A situation in which an IDS or other sensor triggers on an event as an intrusion attempt - when it was actually legitimate traffic.
spyware
role-based access control
File Allocation Table (FAT)
false negative
39. An encryption standard designed by Joan Daemen and Vincent Rijmen. Chosen by a NIST contest to be the Advanced Encryption Standard (AES).
halo effect
Rijndael
security kernel
encapsulation
40. An attack that is direct in nature - usually where the attacker injects something into - or otherwise alters - the network or system target.
Active Attack
HIDS
initial sequence number (ISN)
keylogger
41. Software that has advertisements embedded within. Generally displays ads in the form of pop-ups.
Finger
DNS enumeration
shoulder surfing
Adware
42. A partially protected zone on a network - not exposed to the full fury of the Internet - but not fully behind the firewall. This technique is typically used on parts of the network that must remain open to the public (such as a web server) but must a
parallel scan & 300 sec timeout & 1.25 sec/probe
Demilitarized Zone (DMZ)
Malware
Information Technology (IT) infrastructure
43. A value assigned to uniquely identify a single wide area network (WAN) in wireless LANs. SSIDs are broadcast by default - and are sent in the header of every packet. SSIDs provide no encryption or security.
Institute of Electrical and Electronics Engineers (IEEE)
War Dialing
role-based access control
Service Set Identifier (SSID)
44. A type of denial-of-service attack where a hacker sends thousands of SYN packets to the target with spoofed IP addresses.
Malicious code
Wireless Local Area Network (WLAN)
flood
SYN attack
45. Physical socket provided on routers and switches for cable connections between a computer and the router/switch. This connection enables the computer to configure - query - and troubleshoot the router/switch by use of a terminal emulator and a comman
non-repudiation
A
Console Port
SOA record
46. A wireless LAN device that acts as a central point for all wireless traffic. The AP is connected to both the wireless LAN and the wired LAN - providing wireless clients access to network resources.
Black Box Testing
Internet Assigned Number Authority (IANA)
Secure Multipurpose Mail Extension (S/MIME)
Access Point (AP)
47. A routing protocol developed to be used within a single organization.
security kernel
-sX
infrastructure mode
Interior Gateway Protocol (IGP)
48. Nmap normal output
-oN
spam
Virus
Digital Signature
49. A set of hardware - software - people - policies - and procedures needed to create - manage - distribute - use - store - and revoke digital certificates.
SYN flood attack
public key infrastructure (PKI)
Minimum acceptable level of risk
SID
50. SYN Ping
NetBus
Multipurpose Internet Mail Extensions (MIME)
Boot Sector Virus
-PS
