6/28/25, 2:04
PM
CEH V 11 2 OF 4 EXAM ACTUAL QUESTIONS AND ANSWERS
WITH COMPLETE SOLUTIONS VERIFIED LATEST UPDATE
GRADED A++
Terms in this set (230)
Joe works as an IT Cloud carrier
administrator in an
organization and has
recently set up a cloud
computing service for the
organization. To implement
this service, he reached out
to a telecom company for
providing Internet
connectivity and transport
services between the
organization and the cloud
service provide. In the NIST
cloud deployment
reference architecture,
under which category
does the telecom
company fall in the above
scenario?
Option 1 : Cloud
auditor Option 2 :
Cloud consumer
Option 3 : Cloud
carrier Option 4 :
Cloud broker
1/27
,6/28/25, 2:04
PM
To create a botnet, the Hit-list scanning technique
attacker can use several
technique to scan
vulnerable machines. The
attacker first collects
information about a large
number of vulnerable
machines to create a list.
Subsequently, they infect the
machines. The list is divided
by assigning half of the list
to the newly compromised
machines. The scanning
process runs simultaneously.
This technique ensure the
spreading and installation
of malicious code in little
time. Which technique is
discussed here ?
Robin, a professional STP attack
hacker, targeted an
organization's network to
sniff all the traffic. During
this process, Robin
plugged in a rough switch
to an unused port in the
LAN with a priority lower
than any other switch in
the network so that he
could make it a root
bridge that will later allow
him to sniff all the traffic in
the network. What is the
2/27
, 6/28/25, 2:04
PM
attack performed by
Robin in above scenario?
Option 1 : ARP spoofing
attack Option 2 : VLAN
hopping attack Option 3
: DNS poisoning attack
Option 4 : STP attack
Ethical hacker Jane Doe is Password salting
attempting to crack the
password of the head of
the IT department of ABC
company. She is utilizing a
rainbow table and notices
upon entering a password
that extra characters are
added to the password
after submitting. What
countermeasure is the
company using to protect
against rainbow tables?
Option 1: Password
key hashing Option
2: Account lockout
Option 3:
Password salting
Option 4 :
Password hashing
Annie, a cloud security Docker daemon
engineer, uses the Docker
architecture to employ a
client/server model in the
application she is working
on. She utilizes a
component that can
3/27
PM
CEH V 11 2 OF 4 EXAM ACTUAL QUESTIONS AND ANSWERS
WITH COMPLETE SOLUTIONS VERIFIED LATEST UPDATE
GRADED A++
Terms in this set (230)
Joe works as an IT Cloud carrier
administrator in an
organization and has
recently set up a cloud
computing service for the
organization. To implement
this service, he reached out
to a telecom company for
providing Internet
connectivity and transport
services between the
organization and the cloud
service provide. In the NIST
cloud deployment
reference architecture,
under which category
does the telecom
company fall in the above
scenario?
Option 1 : Cloud
auditor Option 2 :
Cloud consumer
Option 3 : Cloud
carrier Option 4 :
Cloud broker
1/27
,6/28/25, 2:04
PM
To create a botnet, the Hit-list scanning technique
attacker can use several
technique to scan
vulnerable machines. The
attacker first collects
information about a large
number of vulnerable
machines to create a list.
Subsequently, they infect the
machines. The list is divided
by assigning half of the list
to the newly compromised
machines. The scanning
process runs simultaneously.
This technique ensure the
spreading and installation
of malicious code in little
time. Which technique is
discussed here ?
Robin, a professional STP attack
hacker, targeted an
organization's network to
sniff all the traffic. During
this process, Robin
plugged in a rough switch
to an unused port in the
LAN with a priority lower
than any other switch in
the network so that he
could make it a root
bridge that will later allow
him to sniff all the traffic in
the network. What is the
2/27
, 6/28/25, 2:04
PM
attack performed by
Robin in above scenario?
Option 1 : ARP spoofing
attack Option 2 : VLAN
hopping attack Option 3
: DNS poisoning attack
Option 4 : STP attack
Ethical hacker Jane Doe is Password salting
attempting to crack the
password of the head of
the IT department of ABC
company. She is utilizing a
rainbow table and notices
upon entering a password
that extra characters are
added to the password
after submitting. What
countermeasure is the
company using to protect
against rainbow tables?
Option 1: Password
key hashing Option
2: Account lockout
Option 3:
Password salting
Option 4 :
Password hashing
Annie, a cloud security Docker daemon
engineer, uses the Docker
architecture to employ a
client/server model in the
application she is working
on. She utilizes a
component that can
3/27
