What is the number one defence against reconnaissance attacks? - ANSWER
Security policies
Mapping open ports and grabbing banners are part of what attack phase? -
ANSWER Scanning and enumeration
Why do attackers look for down-level software? - ANSWER Older software
often has vulnerabilities that may not have been patched.
In the methodology used to secure an organization, which step includes the
process of ethical hacking? - ANSWER Assessment
A black hat hacker was able to install a device at an unattended workstation and
was able to recover passwords, account information, and other information the
next day. What did the black hat hacker install? - ANSWER Keylogger
You are asked about the ethics behind training on how to hack a system to an
ethical hacker. Which of the following will you suggest? - ANSWER Think
like hackers and know how to defend such attacks.
A hacker is conducting the following on the target workstation:
nmap -sT 192.33.10.5
The attacker is in which phase? - ANSWER Scanning and enumeration
A hacker uses his skills and knowledge for defensive purposes. Which of the
following types of threat actors is the hacker? - ANSWER White hat
In which phase within the ethical hacking framework is log information altered
or deleted? - ANSWER Covering Tracks
Which of the following actions are prohibited under the code of ethics? Each
correct answer represents a complete solution. Choose all that apply. -
,ANSWER Engaging in bribery, Being convicted of a felony, Participating in an
underground hacking community
You are an attacker who has successfully infiltrated your target's web server.
You performed a web defacement on the targeted organization's website, and
you were able to create your own credentials with administrative privileges.
Before conducting data exfiltration, what will you do? - ANSWER Go back
and delete or edit the logs.
Katy, a penetration tester, observes illegal activities on a client's computer.
Which of the following actions should she take? - ANSWER Immediately stop
the test and report the finding to the authorities.
Which is the second phase in the ethical hacking methodology? - ANSWER
Scanning and enumeration
What is the role of an individual who interrogates a system with permission? -
ANSWER White hat hacker
Your organization has asked you to connect all the computers to a single
backbone. Which of the following topologies will you use? - ANSWER Bus
Swan, a penetration tester, has gathered a lot of valuable information on her
target. She has used some different tools and determined that on her target's
network, a computer named XYZ Worsoft has port 548 open. Which of the
following steps in the ethical hacking methodology is she performing? -
ANSWER Scanning and enumeration
Which of the following statements regarding ethical hacking are true? Each
correct answer represents a complete solution. Choose all that apply. -
ANSWER Ethical hacking should not involve writing to or modifying the
target systems.
An organization should use ethical hackers who do not sell vendor
hardware/software or other consulting services.
Please refer to the FBI Flash card provided to you. How did the hacker gained
access to the victim networks? - ANSWER Sending phishing emails with
malicious zip file
, Please refer to the FBI Flash card provided to you. The attackers infected the
victim systems with ________ - ANSWER IceID trojan
Please refer to the FBI Flash card provided to you. After initially gaining access
to a victim network, the hackers leave a ransom note stating (Choose all that
apply): - ANSWER Data has been encrypted, Victim should contact
OnePercent group on TOR, Threatened victim that the data will be leaked if
they do not comply
With what command you can see your user name? - ANSWER Whoami
With what can you stop a process? - ANSWER Kill
What does the command ls do? - ANSWER Display of files and folders,
present in the folder where you are
What command do you have to use to go to the parent directory? - ANSWER
cd ..
How do you read arguments in a shell program? - ANSWER $1 would be the
first command line argument, $2 the second, and so on $0 is the name of the
script or function
In Shell scripting what is $*? - ANSWER Its mainly used for showing up all
params. This show all parameter values passed in shell script.
Which of the below commands NOT used to view the contents of a file? -
ANSWER Disp command
How can you append the output of a command to a file? - ANSWER
Command >> file
How do you delete a file? - ANSWER Rm filename
T or F: Unix identifies every process by a Process Identification Number (PID)
which is assigned when the process is initiated. When we want to perform an
operation on a process, we refer to it by its PID or ProcessId. - ANSWER T
Security policies
Mapping open ports and grabbing banners are part of what attack phase? -
ANSWER Scanning and enumeration
Why do attackers look for down-level software? - ANSWER Older software
often has vulnerabilities that may not have been patched.
In the methodology used to secure an organization, which step includes the
process of ethical hacking? - ANSWER Assessment
A black hat hacker was able to install a device at an unattended workstation and
was able to recover passwords, account information, and other information the
next day. What did the black hat hacker install? - ANSWER Keylogger
You are asked about the ethics behind training on how to hack a system to an
ethical hacker. Which of the following will you suggest? - ANSWER Think
like hackers and know how to defend such attacks.
A hacker is conducting the following on the target workstation:
nmap -sT 192.33.10.5
The attacker is in which phase? - ANSWER Scanning and enumeration
A hacker uses his skills and knowledge for defensive purposes. Which of the
following types of threat actors is the hacker? - ANSWER White hat
In which phase within the ethical hacking framework is log information altered
or deleted? - ANSWER Covering Tracks
Which of the following actions are prohibited under the code of ethics? Each
correct answer represents a complete solution. Choose all that apply. -
,ANSWER Engaging in bribery, Being convicted of a felony, Participating in an
underground hacking community
You are an attacker who has successfully infiltrated your target's web server.
You performed a web defacement on the targeted organization's website, and
you were able to create your own credentials with administrative privileges.
Before conducting data exfiltration, what will you do? - ANSWER Go back
and delete or edit the logs.
Katy, a penetration tester, observes illegal activities on a client's computer.
Which of the following actions should she take? - ANSWER Immediately stop
the test and report the finding to the authorities.
Which is the second phase in the ethical hacking methodology? - ANSWER
Scanning and enumeration
What is the role of an individual who interrogates a system with permission? -
ANSWER White hat hacker
Your organization has asked you to connect all the computers to a single
backbone. Which of the following topologies will you use? - ANSWER Bus
Swan, a penetration tester, has gathered a lot of valuable information on her
target. She has used some different tools and determined that on her target's
network, a computer named XYZ Worsoft has port 548 open. Which of the
following steps in the ethical hacking methodology is she performing? -
ANSWER Scanning and enumeration
Which of the following statements regarding ethical hacking are true? Each
correct answer represents a complete solution. Choose all that apply. -
ANSWER Ethical hacking should not involve writing to or modifying the
target systems.
An organization should use ethical hackers who do not sell vendor
hardware/software or other consulting services.
Please refer to the FBI Flash card provided to you. How did the hacker gained
access to the victim networks? - ANSWER Sending phishing emails with
malicious zip file
, Please refer to the FBI Flash card provided to you. The attackers infected the
victim systems with ________ - ANSWER IceID trojan
Please refer to the FBI Flash card provided to you. After initially gaining access
to a victim network, the hackers leave a ransom note stating (Choose all that
apply): - ANSWER Data has been encrypted, Victim should contact
OnePercent group on TOR, Threatened victim that the data will be leaked if
they do not comply
With what command you can see your user name? - ANSWER Whoami
With what can you stop a process? - ANSWER Kill
What does the command ls do? - ANSWER Display of files and folders,
present in the folder where you are
What command do you have to use to go to the parent directory? - ANSWER
cd ..
How do you read arguments in a shell program? - ANSWER $1 would be the
first command line argument, $2 the second, and so on $0 is the name of the
script or function
In Shell scripting what is $*? - ANSWER Its mainly used for showing up all
params. This show all parameter values passed in shell script.
Which of the below commands NOT used to view the contents of a file? -
ANSWER Disp command
How can you append the output of a command to a file? - ANSWER
Command >> file
How do you delete a file? - ANSWER Rm filename
T or F: Unix identifies every process by a Process Identification Number (PID)
which is assigned when the process is initiated. When we want to perform an
operation on a process, we refer to it by its PID or ProcessId. - ANSWER T
