CEH V12 EXAM VERSION 4 2026 PRACTICE
QUESTIONS AND ANSWERS DETAILED REVIEW
◉ Your end clients report that they cannot reach any website on the
external network. As the network administrator, you decide to conduct
some fact-finding. Upon your investigation, you determine that you are
able to ping outside of the LAN to external websites using their IP
addresses. Pinging websites with their domain name resolution does not
work. What is most likely causing the issue? Answer: The DNS server is
not functioning correctly.
◉ Peter, a security analyst, is asked to perform a security audit of the
systems on a network to determine their compliance with security
policies. Which of the following tools will he use in such an audit?
Answer: Vulnerability scanner
◉ You are using an SNMP device that requires authentication to
configure and view its configuration. Which of the following will you
use? Answer: Community string
◉ What command would you use to get the list of mail servers for a
domain? Answer: dig mx domain.com
◉ What would you use MegaPing for? Answer: Running a port scan
,◉ Sam, a penetration tester, has been actively scanning the client
network on which he is doing a vulnerability assessment test. While
conducting a port scan, he notices open ports in the range of 135 and
139. Which of the following is listening on those ports? Answer: SMB
◉ What type of enumeration would you use the utility dirb for? Answer:
Directory enumeration
◉ What is the response to a connection request to a closed port in TCP?
Answer: RST
◉ Hanna, a black-hat hacker, is performing lookups on the bank's DNS
servers, reading news articles online about the bank, watching at what
times the bank employees come to work and leave from work, and
searching the bank's job postings. What phase is the hacker currently in?
Answer: Passive reconnaissance
◉ Marry, a deployment manager, works with a software development
group to assess the security of a new version of the organization's
internally developed ERP tool. The organization prefers focusing on
assessing security throughout the life cycle. Which of the following
methods should she perform to assess the security of the product?
Answer: Vulnerability scanning of the production environment
◉ What is one reason a UDP scan may take longer than a TCP scan of
the same host? Answer: UDP will retransmit more.
, ◉ If you were to see the following command run, what would you
assume? Answer: Someone was trying to probe an email port on the
target.
◉ If you found an RMI registry on a system, what language would you
expect was being used to access the registry? Answer: Java
◉ Joy, a security analyst, is troubleshooting network issues. He wants to
know which computer name belongs to which IP address. Which of the
following commands will help Joy to achieve this? Answer: nbtstat
◉ Your organization has asked you to run a port scan against a
penetration test target. Which of the following tools will you use?
Answer: nmap
◉ Juan, a network analyst, is using the TCP Xmas scan while
performing a technical assessment to determine network vulnerabilities.
What would be the response of all open ports? Answer: The port will
ignore the packets.
◉ Which Google hack allows the user to search for file types located
within a website? Answer: filetype:
QUESTIONS AND ANSWERS DETAILED REVIEW
◉ Your end clients report that they cannot reach any website on the
external network. As the network administrator, you decide to conduct
some fact-finding. Upon your investigation, you determine that you are
able to ping outside of the LAN to external websites using their IP
addresses. Pinging websites with their domain name resolution does not
work. What is most likely causing the issue? Answer: The DNS server is
not functioning correctly.
◉ Peter, a security analyst, is asked to perform a security audit of the
systems on a network to determine their compliance with security
policies. Which of the following tools will he use in such an audit?
Answer: Vulnerability scanner
◉ You are using an SNMP device that requires authentication to
configure and view its configuration. Which of the following will you
use? Answer: Community string
◉ What command would you use to get the list of mail servers for a
domain? Answer: dig mx domain.com
◉ What would you use MegaPing for? Answer: Running a port scan
,◉ Sam, a penetration tester, has been actively scanning the client
network on which he is doing a vulnerability assessment test. While
conducting a port scan, he notices open ports in the range of 135 and
139. Which of the following is listening on those ports? Answer: SMB
◉ What type of enumeration would you use the utility dirb for? Answer:
Directory enumeration
◉ What is the response to a connection request to a closed port in TCP?
Answer: RST
◉ Hanna, a black-hat hacker, is performing lookups on the bank's DNS
servers, reading news articles online about the bank, watching at what
times the bank employees come to work and leave from work, and
searching the bank's job postings. What phase is the hacker currently in?
Answer: Passive reconnaissance
◉ Marry, a deployment manager, works with a software development
group to assess the security of a new version of the organization's
internally developed ERP tool. The organization prefers focusing on
assessing security throughout the life cycle. Which of the following
methods should she perform to assess the security of the product?
Answer: Vulnerability scanning of the production environment
◉ What is one reason a UDP scan may take longer than a TCP scan of
the same host? Answer: UDP will retransmit more.
, ◉ If you were to see the following command run, what would you
assume? Answer: Someone was trying to probe an email port on the
target.
◉ If you found an RMI registry on a system, what language would you
expect was being used to access the registry? Answer: Java
◉ Joy, a security analyst, is troubleshooting network issues. He wants to
know which computer name belongs to which IP address. Which of the
following commands will help Joy to achieve this? Answer: nbtstat
◉ Your organization has asked you to run a port scan against a
penetration test target. Which of the following tools will you use?
Answer: nmap
◉ Juan, a network analyst, is using the TCP Xmas scan while
performing a technical assessment to determine network vulnerabilities.
What would be the response of all open ports? Answer: The port will
ignore the packets.
◉ Which Google hack allows the user to search for file types located
within a website? Answer: filetype:
