- (Topic 6)
According to the CEH methodology, what is the next step to be performed after footprinting?

1. A. Enumeration
2. B. Scanning
3. C. System Hacking
4. D. Social Engineering
5. E. Expanding Influence

Correct Answer: B
Once footprinting has been completed, scanning should be attempted next. Scanning should take place on two distinct levels: network and host.

- (Topic 7)
If a token and 4-digit personal identification number (PIN) are used to access a computer system and the token performs off-line checking for the correct PIN, what type of attack is possible?

1. A. Birthday
2. B. Brute force
3. C. Man-in-the-middle
4. D. Smurf

Correct Answer: B
Brute force attacks are performed with tools that cycle through many possible character, number, and symbol combinations to guess a password. Since the token allows offline checking of PIN, the cracker can keep trying PINS until it is cracked.

- (Topic 2)
A Trojan horse is a destructive program that masquerades as a benign application. The software initially appears to perform a desirable function for the user prior to installation
and/or execution, but in addition to the expected function steals information or harms the system.

The challenge for an attacker is to send a convincing file attachment to the victim, which gets easily executed on the victim machine without raising any suspicion. Today's end users are quite knowledgeable about malwares and viruses. Instead of sending games and fun executables, Hackers today are quite successful in spreading the Trojans using Rogue security software.
What is Rogue security software?

1. A. A flash file extension to Firefox that gets automatically installed when a victim visits rogue software disabling websites
2. B. A Fake AV program that claims to rid a computer of malware, but instead installs spyware or other malware onto the compute
3. C. This kind of software is known as rogue security software.
4. D. Rogue security software is based on social engineering technique in which the attackers lures victim to visit spear phishing websites
5. E. This software disables firewalls and establishes reverse connecting tunnel between the victim's machine and that of the attacker

Correct Answer: B

- (Topic 4)
What is the outcome of the comm”nc -l -p 2222 | nc 10.1.0.43 1234"?

1. A. Netcat will listen on the 10.1.0.43 interface for 1234 seconds on port 2222.
2. B. Netcat will listen on port 2222 and output anything received to a remote connection on 10.1.0.43 port 1234.
3. C. Netcat will listen for a connection from 10.1.0.43 on port 1234 and output anything received to port 2222.
4. D. Netcat will listen on port 2222 and then output anything received to local interface 10.1.0.43.

Correct Answer: B

- (Topic 4)
A certified ethical hacker (CEH) completed a penetration test of the main headquarters of a company almost two months ago, but has yet to get paid. The customer is suffering from financial problems, and the CEH is worried that the company will go out of business and end up not paying. What actions should the CEH take?

1. A. Threaten to publish the penetration test results if not paid.
2. B. Follow proper legal procedures against the company to request payment.
3. C. Tell other customers of the financial problems with payments from this company.
4. D. Exploit some of the vulnerabilities found on the company webserver to deface it.

Correct Answer: B