Test your basic knowledge |

CEH: Certified Ethical Hacker

Subjects : certifications, ceh, it-skills

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. Normal scan timing
White Box Testing
risk assessment
False Acceptance Rate (FAR)
parallel scan

2. Computer software or hardware that can intercept and log traffic passing over a digital network.
sniffer
initial sequence number (ISN)
NetBus
role-based access control

3. A symmetric - block-cipher data-encryption standard that uses a variablelength key that can range from 32 bits to 448 bits.
Blowfish
fully qualified domain name (FQDN)
stream cipher
risk

4. Any item of value or worth to an organization - whether physical or virtual.
Extensible Authentication Protocol (EAP)
intrusion prevention system (IPS)
limitation of liability and remedies
Asset

5. A standard developed to enable routers to exchange messages containing information about routes to reach subnets in the network.
White Box Testing
Minimum acceptable level of risk
Routing Protocol
EDGAR database

6. Black hat
Hacks without permission
spyware
Auditing
Unicode

7. A method of falsely identifying the source of data packets; often used by hackers to make it difficult to trace where an attack originated.
security by obscurity
Network Address Translation (NAT)
spoofing
802.11 i

8. An information assurance strategy in which multiple layers of defense are placed throughout an Information Technology system.
Last In First Out (LIFO)
Application Layer
serialize scans & 0.4 sec wait
Defense in Depth

9. Port 31337
site survey
Back orifice
DNS
RPC-DCOM

10. The combination of all IT assets - resources - components - and systems.
Information Technology (IT) infrastructure
scope creep
Denial of Service (DoS)
Wired Equivalent Privacy (WEP)

11. A limited-function version of the Internetworking Operating System (IOS) - held in read-only memory in some earlier models of Cisco devices - capable of performing several seldom-needed low-level functions such as loading a new IOS into Flash memory
gap analysis
Antivirus (AV) software
RxBoot
gray box testing

12. A documented process for a procedure designed to be consistent - repeatable - and accountable.
parameter tampering
Community String
Finding a directory listing and gaining access to a parent or root file for access to other files
Methodology

13. An attack where the hacker manipulates parameters within the URL string in hopes of modifying data.
parameter tampering
null session
Annualized Loss Expectancy (ALE)
FreeBSD

14. A cyber attacker who acts without permission from - and gives prior notice to - the resource owner. Also known as a malicious hacker.
Covert Channel
Competitive Intelligence
network access server
Cracker

15. A method of network traffic filtering that monitors the entire communications process - including the originator of the session and from which direction it started.
asynchronous transmission
stateful packet filtering
hashing algorithm
-oN

16. Calculations of two components of risk: R - the magnitude of the potential loss (L) - and the probability - p - that the loss will occur.
TACACS
Macro virus
quantitative risk assessment
SYN flood attack

17. Hex 12
Virtual Local Area Network (VLAN)
gray box testing
A S
Third Party

18. Port 389
LDAP
CNAME record
Password Authentication Protocol (PAP)
Tiger Team

19. A NAT method in which multiple internal hosts - using private IP addressing - can be mapped through a single public IP address using the session IDs and port numbers. An internal global IP address can support in excess of 65 -000 concurrent TCP and U
Point-to-Point Protocol (PPP)
Port Address Translation (PAT)
DNS
SYN flood attack

20. A protocol used to pass control and error messages between nodes on the Internet.
initial sequence number (ISN)
SMB
Internet Control Message Protocol (ICMP)
Point-to-Point Tunneling Protocol (PPTP)

21. Part of a service contract where the level of service is formally defined; may be required as part of the initial pen test agreements.
service level agreements (SLAs)
spam
Redundant Array of Independent Disks (RAID)
Accountability

22. ICMP Netmask
-b
-sS
Finger
-PM

23. The act of using numerous electronic serial numbers on a cell phone until a valid number is located.
packet filtering
Tumbling
Detective Controls
Web Spider

24. TCP connect() scan
-sT
fragmentation
Authentication Header (AH)
network tap

25. TCP Ping
RPC-DCOM
Point-to-Point Tunneling Protocol (PPTP)
Cryptographic Key
-PT

26. A command that instructs the system processor to do nothing. Many overflow attacks involve stringing several NOP operations together (known as a NOP sled).
S
Temporal Key Integrity Protocol (TKIP)
encapsulation
NOP

27. A domain composed of all the systems sharing any given physical transport media. Systems within a collision domain may collide with each other during the transmission of data. Collisions can be managed by CSMA/CD (collision detection) or CSMA/CA (col
Virus
Collision Domain
honeypot
sniffer

28. The process of recording activity on a system for monitoring and later review.
Tiger Team
Multipartite virus
Auditing
Algorithm

29. A method in cryptography by which cryptographic keys are exchanged between users - allowing use of a cryptographic algorithm (for example - the Diffie-Hellman key exchange).
packet filtering
Due Care
key exchange protocol
Point-to-Point Protocol (PPP)

30. ex 02
Authorization
Access Creep
Availability
S

31. Paranoid scan timing
CNAME record
route
serial scan & 300 sec wait
encryption

32. An attacker who breaks into computer systems with malicious intent - without the owner's knowledge or permission.
Black Hat
Certificate
firewall
Macro virus

33. A list of IP addresses and corresponding MAC addresses stored on a local computer.
Address Resolution Protocol (ARP) table
Trojan Horse
Acknowledgment (ACK)
A S

34. A nontechnical method of hacking. Social engineering is the art of manipulating people - whether in person (human-based) or via computing methods (computer-based) - into providing sensitive information.
Kerberos
social engineering
serialize scans & 15 sec wait
Packet Internet Groper (ping)

35. A TCP flag notifying an originating station that the preceding packet (or packets) has been received.
Tiger Team
-PM
human-based social engineering
Acknowledgment (ACK)

36. In a classful IPv4 subnet - this is the network number with all binary 0s in the subnet part of the number. When written in decimal - the zero subnet has the same number as the classful network number.
802.11 i
A S
Zero Subnet
End User Licensing Agreement (EULA)

37. Steps taken to identify and limit risks to an acceptable or reasonable level of exposure.
footprinting
Due Diligence
reverse social engineering
Acceptable Use Policy (AUP)

38. Two or more LANs connected by a high-speed line across a large geographical area.
Wide Area Network (WAN)
-sR
FTP
serialize scans & 15 sec wait

39. Aggressive scan timing
parallel scan & 300 sec timeout & 1.25 sec/probe
passive attack
Authentication - Authorization - and Accounting (AAA)
serial scan & 300 sec wait

40. The exploitation of a security vulnerability
-PM
security breach or security incident
Active Fingerprinting
symmetric algorithm

41. A string used for authentication in SNMP. The public community string is used for read-only searches - whereas the private community string is used for read/write. Community strings are transmitted in clear text in SNMPv1. SNMPv3 provides encryption
iris scanner
nslookup
Community String
gray box testing

42. LAN standard - defined by ANSI X3T9.5 - specifying a 100Mbps token-passing network using fiber-optic cable and a dualring architecture for redundancy - with transmission distances of up to two kilometers.
RxBoot
hashing algorithm
Fiber Distributed Data Interface (FDDI)
Wide Area Network (WAN)

43. ICMP Type/Code 11
identity theft
Competitive Intelligence
Time exceeded
human-based social engineering

44. A network system of servers that translates numeric Internet Protocol (IP) addresses into human-friendly - hierarchical Internet addresses - and vice versa.
Domain Name System (DNS)
Client
stateful packet filtering
Filter

45. A wireless LAN security standard developed by IEEE. Requires Temporal Key Integrity Protocol (TKIP) and Advanced Encryption Standard (AES).
Tunneling Virus
802.11 i
Zero Subnet
Packet Internet Groper (ping)

46. A device set up to send a response on behalf of an end node to the requesting host. Proxies are generally used to obfuscate the host from the Internet.
Virus
HTTP tunneling
proxy server
initial sequence number (ISN)

47. A derogatory term used to describe an attacker - usually new to the field - who uses simple - easy-to-follow scripts or programs developed by others to attack computer systems and networks and deface websites.
-sP
-sX
-sF
script kiddie

48. An extensible mechanism for e-mail. A variety of MIME types exist for sending content such as audio - binary - or video using the Simple Mail Transfer Protocol (SMTP).
Discretionary Access Control (DAC)
overt channel
Redundant Array of Independent Disks (RAID)
Multipurpose Internet Mail Extensions (MIME)

49. A formal set of rules describing data transmission - especially across a network. A protocol determines the type of error checking - the data compression method - how the sending device will indicate completion - how the receiving device will indicat
security kernel
FTP
Fraud and related activity in connection with computers
protocol

50. A nonnumerical - subjective risk evaluation. Used with qualitative assessment (an evaluation of risk that results in ratings of none - low - medium - and high for the probability.)
qualitative analysis
-PM
stateful packet filtering
A