quiz-ethical hacking

Question 1 (1 point)

Saved

In the URL encoding scheme, the URL is converted into a valid ASCII format, so that data can be safely transported over HTTP. Which character is used in the URL encoding followed by the character’s two-digit ASCII code, which is expressed in hexadecimal?. Select one

Question 1 options:

	#
	&
	$
	%

Question 2 (1 point)

Vulnerability management life cycle is an important process that helps in finding and remediating security weaknesses before they are exploited.

identify the phase that involves the remediation.

Question 2 options:

	Pre-Assessment Phase
	Vulnerability Assessment Phase
	Risk Assessment Phase
	Post Assessment Phase

Question 3 (1 point)

Silicon Pvt Ltd is a reputed company, which is having around 1000’s employees working in their company. One day, one of the employees approached the authorized person of the organization claiming that he/she forgot their ID badge and requested the person to allow through a secure door. Whereas the authorized person believed that the person forgot the ID badge and helped the person to go through the entrance by swiping with his/her ID badge. Later on that authorized person realized that the person is a non-employee of the organization and he/she is an intruder who intentionally entered into the company From the above scenario, which of the following comes under the Human-based Social Engineerin

Question 3 options:

	Tailgating
	Piggybacking
	Reverse Social Engineering
	None of the above

Question 4 (1 point)

Run the following ‘nbtstat’ command, in order to get the content of NetBIOS name cache, the tables of NetBIOS names and their resolved IP addresse

Question 4 options:

	. nbstat .exe –e
	nbstat .exe –t
	nbstat .exe –c
	nbstat .exe –i

Question 5 (1 point)

Which type of attack that search for the web server login passwords by using the alphabetical letters, symbols and number is called

Question 5 options:

	Password Guessing
	Dictionary Attack
	Brute Force Attack
	Hybrid Attack

Question 6 (1 point)

From the following TCP Communication Flags identity the flag which Initiates a connection between different hosts.

Question 6 options:

	SYN
	FIN
	ACK
	. PSH

Question 7 (1 point)

Saved

Google supports several advanced operators that help in modifying the search. Which of the following Google advanced search operator displays the web pages stored in the Google cache

Question 7 options:

	[site:]
	[link:]
	[info:]
	[cache:]

Question 8 (1 point)

Which of the following term is defined as the process of installing a modified set of kernel patches that allows running third-party applications not signed by the OS vendor?

Question 8 options:

	Tracking
	Hijacking
	Blackjacking
	Jailbreaking

Question 9 (1 point)

Jack, a skillful hacker targeted a major banking services firm located in Japan, using the LOIC (Low Orbit Ion Cannon) tool, Jack made the number of HTTP requests rise to a high level, which made the victim’s server with the number of requests and resulted in failure of server responding to the request and crashed. Which type of attack Jack performed in the above scenario?

Question 9 options:

	Social engineering attack
	MITM attack
	Packet Injection attack
	DoS and DDoS

Question 10 (1 point)

Which of the following statement is true for Service Request Floods A. An attacker or group of zombies attempts to exhaust server resources by setting up and tearing down TCP connections B. It attacks the servers with a high rate of connections from a valid source C. It initiates a request for a single connection

Question 10 options:

	ONLY An attacker or group of zombies attempts to exhaust server resources by setting up and tearing down TCP is true connections
	Both It attacks the servers with a high rate of connections from a valid source and It initiates a request for a single connection are true
	Both An attacker or group of zombies attempts to exhaust server resources by setting up and tearing down TCP connections and It attacks the servers with a high rate of connections from a valid source are true
	Only It initiates a request for a single connection is true

Question 11 (1 point)

Using which port the attacker can compromise the entire network, and receive a copy of every packet that passes through a switch

Question 11 options:

	SPAN Port
	TAP Port
	UDP port
	TCP port

Question 12 (1 point)

In which type of Social engineering technique does an attacker secretly observers the target to gain critical information such as passwords, credit card information, etc.

Question 12 options:

	Eavesdropping
	Shoulder surfing
	Dumpster diving
	Impersonation on social networking sites

Question 13 (1 point)

In Code Breaking Methodologies, which of the following method involves the use of social engineering techniques to extract cryptographic keys

Question 13 options:

	Brute-Force
	Trickery and Deceit
	Frequency Analysis
	One-Time Pad

Question 14 (1 point)

In the Command Injection attacks, the following type of attack is used to deface a website virtually. Select one

Question 14 options:

	HTML Embedding
	Shell Injection
	Website Embedding
	HTML injection

Question 15 (1 point)

Which type of rootkit is used to hide the information about the attacker by replacing original system calls with fake ones?

Question 15 options:

	Application Level Rootkit
	Library Level Rootkit
	Boot Loader Level Rootkit
	Hardware/Firmware Rootkit

Question 16 (1 point)

Switch Port Stealing sniffing technique uses the following attack to sniff the packets

Question 16 options:

	MAC flooding
	ARP Spoofing
	DHCP attacks
	DNS poisoning

Question 17 (1 point)

Identify the following technique, in which the attacker use drones to detect open wireless networks

Question 17 options:

	WarChalking
	WarFlying
	WarWalking
	WarDriving

Question 18 (1 point)

In which of the following mobile platform vulnerabilities, unsolicited text/email messages sent to mobile devices from known/ unknown phone numbers/email IDs.

Question 18 options:

	Mobile Phishing
	SMS Spam
	SMS Phishing
	Mobile Spam

Question 19 (1 point)

Identify the ports that are allowed by the firewall in an organization

Question 19 options:

	Port 443 and Port 69
	Port 80 and Port 69
	Port 80 and Port 110
	Port 80 and Port 443

Question 20 (1 point)

Identify which of the following detection is used to detect the intrusion based on the fixed behavioral characteristics of the user and components in a computer system

Question 20 options:

	Anomaly Detection
	Protocol Anomaly Detection
	Intrusion Detection System
	Signature Recognition

Question 21 (1 point)

Sam receives an email with an attachment, he downloads the file and finds that it is infected with virus which overwrites a part of the host file with a constant content without increasing the length of the file and preserving its functionality. Which type of virus that the file was infected by?

Question 21 options:

	Cavity Viruses
	Shell Viruses
	File Extension Viruses
	Cluster Viruses

Question 22 (1 point)

Which of the following attack allows Android users to attain privileged control access with in Android’s subsystem

Question 22 options:

	Rooting
	Jailbreaking
	SMiShing
	App Sandboxing

Question 23 (1 point)

From the following identify the technique through which an attacker distributes malware on the web by sending a malware attached email and tricking the victim to click the attachment.

Question 23 options:

	Social Engineered Click-jacking
	Spearphishing Sites
	Spam Emails
	Drive-by Downloads

Question 24 (1 point)

From the following, identify the attack in which an attacker exploit default configuration and settings of off-the-self libraries and code.

Question 24 options:

	Operating System Attack
	Misconfiguration Attacks
	Application-Level Attack
	Shrink-Wrap Code Attacks

Question 25 (1 point)

Identify the hacking phase in which an attacker tries to gather information about the target prior to launch an attack

Question 25 options:

	Scanning
	Gaining Access
	Reconnaissance
	Clearing Tracks

Question 26 (1 point)

Identify the type of vulnerability assessment used to determine the vulnerabilities in a workstation or server by performing configuration level check through the command line.

Question 26 options:

	Active Assessment
	Network Assessments
	Host-Based Assessment
	Application Assessment

Question 27 (1 point)

Attacker uses the ‘%00’ character prior to a string in order to bypass detection mechanism. Identify the type of evasion technique used by the attacker.

Question 27 options:

	Case Variation
	URL Encoding
	Null Byte
	Obfuscated Codes

Question 28 (1 point)

In the SQL Injection Characters, which of the following character represents the global variable?

Question 28 options:

	%
	@@variable
	||
	@variable

Question 29 (1 point)

Saved

Identify the type of cloud computing, which provides virtual machines and other abstracted hardware and operating systems which may be controlled through a service API

Question 29 options:

	Software-as-a-Service (SaaS)
	Platform-as-a-Service (PaaS)
	Infrastructure-as-a-Service (IaaS)
	Virtual Service

Question 30 (1 point)

Saved

Identify the type of virus that adds its code to the host code without relocating the host code to insert its own code at the beginning

Question 30 options:

	Intrusive Viruses
	Transient Viruses
	Add-on Viruses
	Shell Viruses

Question 31 (1 point)

Identify the type of IDS alert that occurs when an IDS fails to react to an actual attack event

Question 31 options:

	True Positive
	True Negative
	False Negative
	False Positive

Question 32 (1 point)

Saved

Cloud Pent Testing is not allowed for one of the following Cloud Computing type, as it might impact on the infrastructure

Question 32 options:

	Platform-as-a-Service (PaaS)
	Software-as-a-Service (SaaS)
	Hybrid-as-a-Service(HaaS)
	Infrastructure-as-a-Service (IaaS)

Question 33 (1 point)

The testing that is also called black box testing, which require no knowledge of the inner design of the code is called

Question 33 options:

	Fuzzing Test
	Function Test
	Static Test
	Dynamic Test

Question 34 (1 point)

Saved

Identify the command which is used to adjust RSSI range

Question 34 options:

	python RFCrack.py –i –F MOD_2FSK -F 314350000
	python RFCrack.py -j -F 314000000
	python RFCrack.py -r -U “-75” -L “-5” -M MOD_2FSK -F 314350000
	python RFCrack.py -r -M MOD_2FSK -F 314350000

Question 35 (1 point)

Which type of DNS record helps in mapping an IP address to a hostname?

Question 35 options:

	HINFO
	TXT
	PTR
	NS

Question 36 (1 point)

Saved

Which of the following sequence is used by the attacker, in the Directory Traversal Attacks to access restricted directories outside of the web server root directory. Select one

Question 36 options:

	/…
	//…
	..//
	../

Question 37 (1 point)

Saved

Which of the following attack involves in stealing a cloud service provider’s domain name

Question 37 options:

	Cybersquatting
	Domain Snipping
	DNS Poisoning
	d. Domain Hijacking

Question 38 (1 point)

Identify the rootkit, which helps in hiding the directories, remote connections and logins.

Question 38 options:

	Azazel
	ZeroAccess
	Necurs
	Avatar

Question 39 (1 point)

Saved

Which of the following executing application allows an attacker to modify the registry and to change local admin passwords?

Question 39 options:

	RemoteExec
	PDQ Deploy
	DameWare Remote Support
	Keyloggers

Question 40 (1 point)

Which of the following tool can capture RPL related information and live packets from networks in a non-intrusive manner?

Question 40 options:

	Foren6
	RFCrack
	HackRF One
	Telnet

Question 41 (1 point)

Saved

Roy is a senior penetration tester working in a Gensolutions Inc, a US based company. The company uses the Oracle database to store all its data. It also uses Oracle DataBase Vault in order to restrict user from accessing the confidential data from their database. One day Roy was asked to find all the possible vulnerabilities of the company’s Oracle Database Vault. Roy tried different kinds of attacks to penetrate into the company’s Oracle DB Valut and succeeded. Which of the following attack helped Roy to bypass Gensolutions Oracle DB Vault? Select one

Question 41 options:

	Denial of service attack
	SQL Injection
	Session Hijacking
	Sniffing

Question 42 (1 point)

In a computer based social engineering, a person receives emails that issues warnings to the user on the new viruses, worms or Trojan that may harm the user’s system. These kind of computer based social engineering is known as

Question 42 options:

	Spam Email
	Chain Letters
	Hoax Letters
	Instant Chat Messenger

Question 43 (1 point)

ICMP scanning involves in checking for the live systems, which can be done by sending the following ping scan request to a host. If the host is live, then it will return a reply.

Question 43 options:

	ICMP Echo Reply
	ICMP Echo Ping
	ICMP Echo Request
	ICMP Echo host

Question 44 (1 point)

Which of the following cryptographic attack technique involves extraction of cryptographic secrets (e.g. the password to an encrypted file) from a person by coercion or torture

Question 44 options:

	Chosen-ciphertext Attack
	Ciphertext-only Attack
	Adaptive Chosen-plaintext Attack
	Rubber Hose Attack

Question 45 (1 point)

The attacker uses the following attack, in order to listen to the conversation between the user and the server and captures the authentication token of the user. With this authentication token, the attacker replays the request to the server with the captured authentication token and gains unauthorized access to the server

Question 45 options:

	Session Replay attack
	Session Fixation attacks
	Session hijacking using proxy servers
	Client side attacks

Question 46 (1 point)

Which of the following Hping command used to intercept all traffic containing HTTP signature?

Question 46 options:

	hping3 192.168.1.103 -Q -p 139 -s
	hping3 -9 HTTP –I eth0
	hping3 -S 192.168.1.1 -a 192.168.1.254 -p 22 –flood
	hping3 –F –P –U 10.0.0.25 –p 80

Question 47 (1 point)

In webserver password cracking techniques, The attacker tries every combination of character until the password is broken, such type of attack is known as. Select one:

Question 47 options:

	Brute force attack
	Dictionary attacks
	Guessing attack
	Hybrid attack

Question 48 (1 point)

Which of the following service uses the port TCP/UDP 53 to enumerate

Question 48 options:

	DNS Zone Transfer
	SNMP Trap
	NetBIOS Name Service
	Global Catalog Service

Question 49 (1 point)

Saved

At which phase of the Session Fixation attack does the attacker obtains a legitimate session ID by establishing a connection with the target web server.

Question 49 options:

	Entrance phase
	Session set-up phase
	Fixation phase
	Final phase

Question 50 (1 point)

In the Permanent Denial-of-service, the attacker will uses the ‘Bricking a system’ method, in order to __________

Question 50 options:

	Send fraudulent hardware updates to the victims
	Launch a massive denial of service attacks and compromise websites
	Exploit weaknesses in programming source code
	Send malicious email attached to the victi