Certified Ethical Hacker Exam (CEH v11) (312-50v11) Free Practice Test

Question 1

Peter, a system administrator working at a reputed IT firm, decided to work from his home and login remotely. Later, he anticipated that the remote connection could be exposed to session hijacking. To curb this possibility, he implemented a technique that creates a safe and encrypted tunnel over a public network to securely send and receive sensitive information and prevent hackers from decrypting the data flow between the endpoints. What is the technique followed by Peter to send files securely through a remote connection?

A. DMZ

B. Switch network

C. VPN

D. SMB signing

Correct Answer: C

Question 2

Alice needs to send a confidential document to her coworker. Bryan. Their company has public key infrastructure set up. Therefore. Alice both encrypts the message and digitally signs it. Alice uses_______to encrypt the message, and Bryan uses__________to confirm the digital signature.

A. Alice's public key; Alice's public key

B. Bryan's public key; Bryan's public key

C. Bryan's private key; Alice's public key

D. Bryan's public key; Alice's public key

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 3

Firewalls are the software or hardware systems that are able to control and monitor the traffic coming in and out the target network based on pre-defined set of rules. Which of the following types of firewalls can protect against SQL injection attacks?

A. Packet firewall

B. Stateful firewall

C. Data-driven firewall

D. Web application firewall

Correct Answer: D

Question 4

A large company intends to use Blackberry for corporate mobile phones and a security analyst is assigned to evaluate the possible threats. The analyst will use the Blackjacking attack method to demonstrate how an attacker could circumvent perimeter defenses and gain access to the Prometric Online Testing - Reports https://ibt1.prometric.com/users/custom/report_queue/rq_str... corporate network. What tool should the analyst use to perform a Blackjacking attack?

A. BBProxy

B. BBCrack

C. Paros Proxy

D. Blooover

Correct Answer: A

Question 5

How can rainbow tables be defeated?

A. All uppercase character passwords

B. Lockout accounts under brute force password cracking attempts

C. Use of non-dictionary words

D. Password salting

Correct Answer: D

Question 6

This wireless security protocol allows 192-bit minimum-strength security protocols and cryptographic tools to protect sensitive data, such as GCMP-2S6. MMAC-SHA384, and ECDSA using a 384-bit elliptic curve. Which is this wireless security protocol?

A. WPA2 Personal

B. WPA3-Enterprise

C. WPA2-Enterprise

D. WPA3-Personal

Correct Answer: B

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 7

Attacker Rony Installed a rogue access point within an organization's perimeter and attempted to Intrude into its internal network. Johnson, a security auditor, identified some unusual traffic in the internal network that is aimed at cracking the authentication mechanism. He immediately turned off the targeted network and tested for any weak and outdated security mechanisms that are open to attack. What is the type of vulnerability assessment performed by Johnson in the above scenario?

A. Most-based assessment

B. Distributed assessment

C. Application assessment

D. Wireless network assessment

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 8

If a token and 4-digit personal identification number (PIN) are used to access a computer system and the token performs off-line checking for the correct PIN, what type of attack is possible?

A. Brute force

B. Smurf

C. Man-in-the-middle

D. Birthday

Correct Answer: A

Question 9

What is the purpose of a demilitarized zone on a network?

A. To only provide direct access to the nodes within the DMZ and protect the network behind it

B. To scan all traffic coming through the DMZ to the internal network

C. To contain the network devices you wish to protect

D. To provide a place to put the honeypot

Correct Answer: A

Question 10

Firewalk has just completed the second phase (the scanning phase) and a technician receives the output shown below. What conclusions can be drawn based on these scan results?
TCP port 21 no response
TCP port 22 no response
TCP port 23 Time-to-live exceeded

A. The scan on port 23 passed through the filtering device. This indicates that port 23 was not blocked at the firewall

B. The lack of response from ports 21 and 22 indicate that those services are not running on the destination server

C. The scan on port 23 was able to make a connection to the destination host prompting the firewall to respond with a TTL error

D. The firewall itself is blocking ports 21 through 23 and a service is listening on port 23 of the target host

Correct Answer: A

Question 11

What is the proper response for a NULL scan if the port is closed?

A. No response

B. SYN

C. PSH

D. ACK

E. RST

F. FIN

Correct Answer: E

Question 12

You work for Acme Corporation as Sales Manager. The company has tight network security restrictions. You are trying to steal data from the company's Sales database (Sales.xls) and transfer them to your home computer. Your company filters and monitors traffic that leaves from the internal network to the Internet. How will you achieve this without raising suspicion?

A. Change the extension of Sales.xls to sales.txt and upload them as attachment to your hotmail account

B. Encrypt the Sales.xls using PGP and e-mail it to your personal gmail account

C. Package the Sales.xls using Trojan wrappers and telnet them back your home computer

D. You can conceal the Sales.xls database in another file like photo.jpg or other files and send it out in an innocent looking email or file transfer using Steganography techniques

Correct Answer: D

Question 13

The establishment of a TCP connection involves a negotiation called three-way handshake. What type of message does the client send to the server in order to begin this negotiation?

A. SYN-ACK

B. SYN

C. ACK

D. RST

Correct Answer: B

Question 14

Which of the following DoS tools is used to attack target web applications by starvation of available sessions on the web server?
The tool keeps sessions at halt using never-ending POST transmissions and sending an arbitrarily large content-length header value.

A. My Doom

B. LOIC

C. Astacheldraht

D. R-U-Dead-Yet?(RUDY)

Correct Answer: D

Question 15

Bill has been hired as a penetration tester and cyber security auditor for a major credit card company. Which information security standard is most applicable to his role?

A. Sarbanes-OxleyAct

B. HITECH

C. FISMA

D. PCI-DSS

Correct Answer: D

Welcome to TestSimulate

EC-COUNCIL Certified Ethical Hacker Exam (CEH v11) (312-50v11) Free Practice Test