CEH V12 EXAM VERSION 4 2026 TEST PAPER
SOLVED QUESTIONS AND SOLUTIONS
◉ 2. Jailbreaking a phone refers to what?
a. removing DRM from the system
b. removing a device from a network
c. acquiring root access on a device
d. removing ransomware from a system. Answer: c. jail braking
refers to gaining root access on a mobile device specifically iOS
devices.
◉ 3. What does rooting a device do?
a. removes updates from a system
b. removes access to a user
c. provides root-level access to a user on a system
d. increases security on a device. Answer: c. rooting is the process of
increasing the amount of access a user has on an android device.
◉ 4. Android is based on which operating system?
a. windows
b. os x
c. unix
,d. linux. Answer: d. android is based on linux
◉ 5. iOS is based on which operating system?
a. windows
b. os x
c. unix
d linux. Answer: b. ios is based on os X
◉ 6. What could a company do to protect itself from a loss of data
when a phone is stolen? (choose all that apply)
a. passwords
b. patching
c. encryption
d. remote wipe. Answer: a, c, d, A company should proactively set
passwords and use encryption, as well as employ remote wipe on a
mobile device in the event that it is lost or stolen.
◉ 7. A utility for auditing WordPress from Android is _____?
a. droidsheep
b. firesheep
c. wpscan
d. nmap. Answer: c wpscan is used to look for weaknesses in
wordpress sites.
,◉ 8. What utility could be used to avoid sniffing of traffic?
a. sandroproxy
b. proxify
c. psiphon
d. shark. Answer: c psiphon is essetially a vpn technology that would
thwart sniffing of traffic.
◉ 9. Jennifer has captured the following URL;
ww.snaz22enu.com/&w25/session=22525. She realizes that she can
perform a session hijack. Which utility would she use?
a. shark
b. droidsheep
c. airmon
d. droid. Answer: b. droidsheep is used to perform session hijacks.
◉ 10. Jennifer is concerned about her scans being tracked back to
her tablet. What could she use to hide the source of the scans?
a. sniffing
b. sandroproxy
c. faceniff
d. blind scanning. Answer: b. sandroproxy would be ueful to disguise
the soure of a scan.
, ◉ 11. What option would you use to install software thats not from
the Google Play store
a. install from unknown sources
b install unsigned sources
c. install from unknown locations
d install from unsigned services. Answer: a. if install from unknown
sources is enabled on android devices, unsafe or unprotected
applications could compromise a device, but still will be installed.
◉ 12. Which technology can provide protection against session
hijacking?
a. ipsec
b. udp
c. tcp
d. ids. Answer: a. ipsec can protect against session hijacking.
◉ 13. When a device is rooted, what is the effect on security?
a. improved
b. lowered
c. stays the same
d. hardened. Answer: b. security is lowered on a device when rooting
is performed.
SOLVED QUESTIONS AND SOLUTIONS
◉ 2. Jailbreaking a phone refers to what?
a. removing DRM from the system
b. removing a device from a network
c. acquiring root access on a device
d. removing ransomware from a system. Answer: c. jail braking
refers to gaining root access on a mobile device specifically iOS
devices.
◉ 3. What does rooting a device do?
a. removes updates from a system
b. removes access to a user
c. provides root-level access to a user on a system
d. increases security on a device. Answer: c. rooting is the process of
increasing the amount of access a user has on an android device.
◉ 4. Android is based on which operating system?
a. windows
b. os x
c. unix
,d. linux. Answer: d. android is based on linux
◉ 5. iOS is based on which operating system?
a. windows
b. os x
c. unix
d linux. Answer: b. ios is based on os X
◉ 6. What could a company do to protect itself from a loss of data
when a phone is stolen? (choose all that apply)
a. passwords
b. patching
c. encryption
d. remote wipe. Answer: a, c, d, A company should proactively set
passwords and use encryption, as well as employ remote wipe on a
mobile device in the event that it is lost or stolen.
◉ 7. A utility for auditing WordPress from Android is _____?
a. droidsheep
b. firesheep
c. wpscan
d. nmap. Answer: c wpscan is used to look for weaknesses in
wordpress sites.
,◉ 8. What utility could be used to avoid sniffing of traffic?
a. sandroproxy
b. proxify
c. psiphon
d. shark. Answer: c psiphon is essetially a vpn technology that would
thwart sniffing of traffic.
◉ 9. Jennifer has captured the following URL;
ww.snaz22enu.com/&w25/session=22525. She realizes that she can
perform a session hijack. Which utility would she use?
a. shark
b. droidsheep
c. airmon
d. droid. Answer: b. droidsheep is used to perform session hijacks.
◉ 10. Jennifer is concerned about her scans being tracked back to
her tablet. What could she use to hide the source of the scans?
a. sniffing
b. sandroproxy
c. faceniff
d. blind scanning. Answer: b. sandroproxy would be ueful to disguise
the soure of a scan.
, ◉ 11. What option would you use to install software thats not from
the Google Play store
a. install from unknown sources
b install unsigned sources
c. install from unknown locations
d install from unsigned services. Answer: a. if install from unknown
sources is enabled on android devices, unsafe or unprotected
applications could compromise a device, but still will be installed.
◉ 12. Which technology can provide protection against session
hijacking?
a. ipsec
b. udp
c. tcp
d. ids. Answer: a. ipsec can protect against session hijacking.
◉ 13. When a device is rooted, what is the effect on security?
a. improved
b. lowered
c. stays the same
d. hardened. Answer: b. security is lowered on a device when rooting
is performed.
