Test your basic knowledge |

CEH: Certified Ethical Hacker

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. nmap






2. Nmap ml output






3. Policy stating what users of a system can and cannot do with the organization's assets.






4. Freely and readily available information on an organization that can be gathered by a business entity about its competitor's customers - products - and marketing - and can be used by an attacker to build useful information for further attacks.






5. A comparison metric for different biometric devices and technologies; the point at which the false acceptance rate (FAR) equals the






6. Any circumstance or event with the potential to adversely impact organizationaloperations - organizational assets - or individuals through an information system via unauthorized access - destruction - disclosure - modification of information - and/or






7. Looking over an authorized user's shoulder in order to steal information (such as authentication information).






8. Originally an extension of PPP - this is a protocol for authentication used within wireless networks. Works with multiple authentication measures.






9. Evaluation in which testers attempt to penetrate the network.






10. A computer network confined to a relatively small area - such as a single building or campus - in which devices connect through high-frequency radio waves using IEEE standard 802.11.






11. A protocol used for sending and receiving log information for nodes on a network.






12. The process of embedding information into a digital signal in a way that makes it difficult to remove.






13. Actions - devices - procedures - techniques - or other measures intended to reduce the vulnerability of an information system.






14. The rate at which a biometric system will incorrectly identify an unauthorized individual and allow them access (see false negative).






15. Port 22






16. A function that is easy to compute in one direction - yet believed to be difficult to compute in the opposite direction (finding its inverse) without special information - called the 'trapdoor.' Widely used in cryptography.






17. A wireless networking mode where all clients connect to the wireless network through a central access point.






18. A secret - typically consisting of only decimal digits - that a claimant memorizes and uses to authenticate his identity






19. Network Scanning






20. An Application layer protocol for sending electronic mail between servers.






21. PI and PT Ping






22. Wireless LAN standards created by IEEE. 802.11a runs at up to 54Mbps at 5GHz - 802.11b runs at 11Mbps at 2.4GHz - 802.11g runs at 54Mbps at 2.4GHz - and 802.11n can run upwards of 150MBps.






23. Injecting traffic into the network to identify the operating system of a device.






24. Used to find the domain name associated with an IP address; the opposite of a DNS lookup.






25. A network architecture framework developed by ISO that describes the communications process between two systems across the Internet in seven distinct layers.






26. A software program for remotely controlling a Microsoft Windows computer system over a network. Generally considered malware.






27. A hardware device used to log keystrokes covertly. Hardware keystroke loggers are very dangerous due to the fact that they cannot be detected through regular software/anti-malware scanning.






28. A group of penetration testers that assess the security of an organization - which is often unaware of the existence of the team or the exact assignment.






29. A hacking method for stealing the cookies used during a session build and replaying them for unauthorized connection purposes.






30. A simple PPP authentication mechanism in which the user name and password are transmitted in clear text to prove identity. PAP compares the user name and password to a table listing authorized users.






31. A unique hostname that is used to identify resources on the Internet. Domain names start with a root (.) - then add a top level (.com - .gov - or .mil - for example) - and a given name space.






32. A communications channel that is being used for a purpose it was not intended for - usually to transfer information secretly.






33. ICMP Ping






34. A domain composed of all the systems sharing any given physical transport media. Systems within a collision domain may collide with each other during the transmission of data. Collisions can be managed by CSMA/CD (collision detection) or CSMA/CA (col






35. ICMP Type/Code 3






36. An evaluation consisting of a document review - interviews - and demonstrations. No hands-on testing is performed.






37. FTP Bounce Attack






38. A situation in which an IDS or other sensor triggers on an event as an intrusion attempt - when it was actually legitimate traffic.






39. An encryption standard designed by Joan Daemen and Vincent Rijmen. Chosen by a NIST contest to be the Advanced Encryption Standard (AES).






40. An attack that is direct in nature - usually where the attacker injects something into - or otherwise alters - the network or system target.






41. Software that has advertisements embedded within. Generally displays ads in the form of pop-ups.






42. A partially protected zone on a network - not exposed to the full fury of the Internet - but not fully behind the firewall. This technique is typically used on parts of the network that must remain open to the public (such as a web server) but must a






43. A value assigned to uniquely identify a single wide area network (WAN) in wireless LANs. SSIDs are broadcast by default - and are sent in the header of every packet. SSIDs provide no encryption or security.






44. A type of denial-of-service attack where a hacker sends thousands of SYN packets to the target with spoofed IP addresses.






45. Physical socket provided on routers and switches for cable connections between a computer and the router/switch. This connection enables the computer to configure - query - and troubleshoot the router/switch by use of a terminal emulator and a comman






46. A wireless LAN device that acts as a central point for all wireless traffic. The AP is connected to both the wireless LAN and the wired LAN - providing wireless clients access to network resources.






47. A routing protocol developed to be used within a single organization.






48. Nmap normal output






49. A set of hardware - software - people - policies - and procedures needed to create - manage - distribute - use - store - and revoke digital certificates.






50. SYN Ping