CMIT 381 ETHICAL HACKING EXAM QUESTIONS AND
CORRECT ANSWERS REAL EXAM WITH FREQUENTLY
TESTED QUESTIONS AND RATIONALE ALREADY
GRADED A FOR GUARANTEED PASS LATEST UPDATE
2025.
In the TCP/IP stack, the layer uses IP addresses to route packets. - CORRECT ANSWER
Internet
TCP stands for . - CORRECT ANSWER Transmission Control Protocol
The DNS service uses port . - CORRECT ANSWER 53
The HTTP service uses port . - CORRECT ANSWER 80
The Microsoft RPC service uses port . - CORRECT ANSWER 135
The NetBIOS service uses port . - CORRECT ANSWER 139
The Network News Transport Protocol service uses port . - CORRECT ANSWER 119
In the TCP/IP stack, the layer is concerned with controlling the flow of data, sequencing
packets for reassembly, and encapsulating the segment with a TCP or UDP header. - CORRECT
ANSWER Transport
In the TCP/IP stack, the layer is concerned with physically moving electrons across a
medium. - CORRECT ANSWER Network
In the TCP/IP stack, the layer is where applications and protocols, such as HTTP and
Telnet, operate. - CORRECT ANSWER Application
, CMIT 381 ETHICAL HACKING EXAM QUESTIONS AND
CORRECT ANSWERS REAL EXAM WITH FREQUENTLY
TESTED QUESTIONS AND RATIONALE ALREADY
GRADED A FOR GUARANTEED PASS LATEST UPDATE
2025.
The POP3 service uses port . - CORRECT ANSWER 110
The SMTP service uses port . - CORRECT ANSWER 25
The TFTP service uses port . - CORRECT ANSWER 69
The -layer protocols are the front ends to the lower-layer protocols in the TCP/IP stack. -
CORRECT ANSWER Application
The binary number 11000001 converted to decimal is . - CORRECT ANSWER 193
The most widely used is protocol is . - CORRECT ANSWER TCP/IP
UDP stands for . - CORRECT ANSWER User Datagram Protocol
What type of class has the IP address 193.1.2.3? - CORRECT ANSWER Class C
A attack prevents legitimate users from accessing network resources. - CORRECT
ANSWER DoS
A can replicate itself, usually through an executable program attached to an e-mail. -
CORRECT ANSWER virus
A is a computer program that replicates and propagates itself without having to attach itself
to a host. - CORRECT ANSWER worm
A is created after an attack and usually hides itself within the OS tools, so it's almost
impossible to detect. - CORRECT ANSWER rootkit
IDS stands for . - CORRECT ANSWER Intrusion Detection System
, CMIT 381 ETHICAL HACKING EXAM QUESTIONS AND
CORRECT ANSWERS REAL EXAM WITH FREQUENTLY
TESTED QUESTIONS AND RATIONALE ALREADY
GRADED A FOR GUARANTEED PASS LATEST UPDATE
2025.
In a attack, a programmer finds a vulnerability in poorly written code that doesn't check for
a defined amount of memory space use. - CORRECT ANSWER buffer overflow
In the attack, the attacker simply creates an ICMP packet that's larger than the maximum
allowed 65,535 bytes. - CORRECT ANSWER Ping of Death
One of the most insidious attacks against networks and home computers worldwide is ,
which disguise themselves as useful computer programs or applications. - CORRECT
ANSWER Trojan programs
PKI stands for . - CORRECT ANSWER Public Key Infrastructure
Software keyloggers behave like and are loaded on a computer. - CORRECT ANSWER
Trojan programs
The two most popular spyware and adware removal programs are and Ad-Aware. -
CORRECT ANSWER SpyBot
The virus signature file is maintained by software. - CORRECT ANSWER antivirus
To represent 0 to 63 characters you need only bits. - CORRECT ANSWER six
Trojan Programs can install a backdoor or on a computer. - CORRECT ANSWER rootkit
Which of the following provides the most secure method of securing a company's assets? -
CORRECT ANSWER card access
are devices or computer programs that can be used to capture keystrokes on a computer. -
CORRECT ANSWER Keyloggers
, CMIT 381 ETHICAL HACKING EXAM QUESTIONS AND
CORRECT ANSWERS REAL EXAM WITH FREQUENTLY
TESTED QUESTIONS AND RATIONALE ALREADY
GRADED A FOR GUARANTEED PASS LATEST UPDATE
2025.
commands that open and close files can be used in destructive ways. - CORRECT
ANSWER Macro
enables an attacker to join a TCP session and make both parties think he or she is the other
party. - CORRECT ANSWER Session hijacking
is a remote control program. - CORRECT ANSWER Symantec pcAnywhere
is concerned with the security of computers or devices that are part of a network
infrastructure. - CORRECT ANSWER Network security
sometimes displays a banner that notifies the user of its presence. - CORRECT ANSWER
Adware
The tool can generate a report that can show an attacker how a Web site is structured and
lists Web pages that can be investigated for further information. - CORRECT ANSWER Paros
To help prevent attacks, you must educate your users not to type logon names and
passwords when someone is standing directly behind them—or even standing nearby. -
CORRECT ANSWER shoulder-surfing
can be used to gather information useful for computer criminals, like company phone
directories, financial reports, interoffice memos, resumes of employees, etc. - CORRECT
ANSWER Dumpster diving
can be used to read PINs entered at ATMs or to detect long-distance authorization codes
that callers dial. - CORRECT ANSWER Shoulder surfing
is a Web tool used to gather IP and domain information. It is available for both UNIX and
Window OSs. - CORRECT ANSWER SamSpade
is a tool that is used to gather IP and domain information. - CORRECT ANSWER Whois
CORRECT ANSWERS REAL EXAM WITH FREQUENTLY
TESTED QUESTIONS AND RATIONALE ALREADY
GRADED A FOR GUARANTEED PASS LATEST UPDATE
2025.
In the TCP/IP stack, the layer uses IP addresses to route packets. - CORRECT ANSWER
Internet
TCP stands for . - CORRECT ANSWER Transmission Control Protocol
The DNS service uses port . - CORRECT ANSWER 53
The HTTP service uses port . - CORRECT ANSWER 80
The Microsoft RPC service uses port . - CORRECT ANSWER 135
The NetBIOS service uses port . - CORRECT ANSWER 139
The Network News Transport Protocol service uses port . - CORRECT ANSWER 119
In the TCP/IP stack, the layer is concerned with controlling the flow of data, sequencing
packets for reassembly, and encapsulating the segment with a TCP or UDP header. - CORRECT
ANSWER Transport
In the TCP/IP stack, the layer is concerned with physically moving electrons across a
medium. - CORRECT ANSWER Network
In the TCP/IP stack, the layer is where applications and protocols, such as HTTP and
Telnet, operate. - CORRECT ANSWER Application
, CMIT 381 ETHICAL HACKING EXAM QUESTIONS AND
CORRECT ANSWERS REAL EXAM WITH FREQUENTLY
TESTED QUESTIONS AND RATIONALE ALREADY
GRADED A FOR GUARANTEED PASS LATEST UPDATE
2025.
The POP3 service uses port . - CORRECT ANSWER 110
The SMTP service uses port . - CORRECT ANSWER 25
The TFTP service uses port . - CORRECT ANSWER 69
The -layer protocols are the front ends to the lower-layer protocols in the TCP/IP stack. -
CORRECT ANSWER Application
The binary number 11000001 converted to decimal is . - CORRECT ANSWER 193
The most widely used is protocol is . - CORRECT ANSWER TCP/IP
UDP stands for . - CORRECT ANSWER User Datagram Protocol
What type of class has the IP address 193.1.2.3? - CORRECT ANSWER Class C
A attack prevents legitimate users from accessing network resources. - CORRECT
ANSWER DoS
A can replicate itself, usually through an executable program attached to an e-mail. -
CORRECT ANSWER virus
A is a computer program that replicates and propagates itself without having to attach itself
to a host. - CORRECT ANSWER worm
A is created after an attack and usually hides itself within the OS tools, so it's almost
impossible to detect. - CORRECT ANSWER rootkit
IDS stands for . - CORRECT ANSWER Intrusion Detection System
, CMIT 381 ETHICAL HACKING EXAM QUESTIONS AND
CORRECT ANSWERS REAL EXAM WITH FREQUENTLY
TESTED QUESTIONS AND RATIONALE ALREADY
GRADED A FOR GUARANTEED PASS LATEST UPDATE
2025.
In a attack, a programmer finds a vulnerability in poorly written code that doesn't check for
a defined amount of memory space use. - CORRECT ANSWER buffer overflow
In the attack, the attacker simply creates an ICMP packet that's larger than the maximum
allowed 65,535 bytes. - CORRECT ANSWER Ping of Death
One of the most insidious attacks against networks and home computers worldwide is ,
which disguise themselves as useful computer programs or applications. - CORRECT
ANSWER Trojan programs
PKI stands for . - CORRECT ANSWER Public Key Infrastructure
Software keyloggers behave like and are loaded on a computer. - CORRECT ANSWER
Trojan programs
The two most popular spyware and adware removal programs are and Ad-Aware. -
CORRECT ANSWER SpyBot
The virus signature file is maintained by software. - CORRECT ANSWER antivirus
To represent 0 to 63 characters you need only bits. - CORRECT ANSWER six
Trojan Programs can install a backdoor or on a computer. - CORRECT ANSWER rootkit
Which of the following provides the most secure method of securing a company's assets? -
CORRECT ANSWER card access
are devices or computer programs that can be used to capture keystrokes on a computer. -
CORRECT ANSWER Keyloggers
, CMIT 381 ETHICAL HACKING EXAM QUESTIONS AND
CORRECT ANSWERS REAL EXAM WITH FREQUENTLY
TESTED QUESTIONS AND RATIONALE ALREADY
GRADED A FOR GUARANTEED PASS LATEST UPDATE
2025.
commands that open and close files can be used in destructive ways. - CORRECT
ANSWER Macro
enables an attacker to join a TCP session and make both parties think he or she is the other
party. - CORRECT ANSWER Session hijacking
is a remote control program. - CORRECT ANSWER Symantec pcAnywhere
is concerned with the security of computers or devices that are part of a network
infrastructure. - CORRECT ANSWER Network security
sometimes displays a banner that notifies the user of its presence. - CORRECT ANSWER
Adware
The tool can generate a report that can show an attacker how a Web site is structured and
lists Web pages that can be investigated for further information. - CORRECT ANSWER Paros
To help prevent attacks, you must educate your users not to type logon names and
passwords when someone is standing directly behind them—or even standing nearby. -
CORRECT ANSWER shoulder-surfing
can be used to gather information useful for computer criminals, like company phone
directories, financial reports, interoffice memos, resumes of employees, etc. - CORRECT
ANSWER Dumpster diving
can be used to read PINs entered at ATMs or to detect long-distance authorization codes
that callers dial. - CORRECT ANSWER Shoulder surfing
is a Web tool used to gather IP and domain information. It is available for both UNIX and
Window OSs. - CORRECT ANSWER SamSpade
is a tool that is used to gather IP and domain information. - CORRECT ANSWER Whois
