> > Ethical Hacking MCQs > Basic Ethical Hacking MCQs

Basic Ethical Hacking MCQ

1. _____ is a protocol for securely accessing a remote computer.

Secure Shell (SSH)

Secure Sockets Layer (SSL)

Secure Hypertext Transport Protocol (SHTTP)

Transport Layer Security (TLS

Answer

Correct Answer: Secure Shell (SSH)

Note: This Question is unanswered, help us to find answer for this one

2. With ____, you can have your desktop computer or laptop start in both windows and linux.

Net view

Windows XP Professional

Connect scan

Grand Unified Bootloader

Answer

Correct Answer: Grand Unified Bootloader

Note: This Question is unanswered, help us to find answer for this one

3. Hackers use __________ to execute arbitrary scripts through the web browser.

Phishing attacks

Penetration testing

SQL Injection

Cross-site scripting (XSS)

Answer

Correct Answer: Cross-site scripting (XSS)

Note: This Question is unanswered, help us to find answer for this one

4. Hackers can gain access to computer systems through the use of ____.

Packets

Portal

Cache

Ports

Answer

Correct Answer: Ports

Note: This Question is unanswered, help us to find answer for this one

5. Which of the following programming languages are commonly associated with Buffer overflows?

ASP

C++

PHP

Answer

Correct Answer: C++

Note: This Question is unanswered, help us to find answer for this one

6. In relation to Wireshark filters, which of the following operators is/are equivalent to the equal function?

===

Answer

Correct Answer: =
===
==
eq

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

7. Which of the following are the advantages of using the symmetric cryptography algorithms?

They support non-repudiation features.

They preserve confidentiality.

They increase speed.

They provide authenticity.

Answer

Correct Answer: They preserve confidentiality.
They increase speed.
They provide authenticity.

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

8. ln ethical hacking, which Of the following information is gathered during the enumeration phase?

Usernames

IP address ranges

Server data

Namespaces

Answer

Correct Answer: Usernames
Server data

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

9. Identify the features of session hijacking.

Definite session expiration time.

Cleartext transmission.

Large session [05.

No account lockout for invalid session IDs

Answer

Correct Answer: Cleartext transmission.
No account lockout for invalid session IDs

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

10. Which of the following operating systems are affected by the Stacheldraht tool for denial-of—service attacks?

Unix

Solaris

Windows

Linux

Answer

Correct Answer: Unix
Solaris
Linux

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

11. Which two of the following are the features of symmetric encryption algorithm, Blowf‌ish?

It uses a 256-bit key.

It can be used on both 32-bit and 64-bit processors.

It is slow.

It is simple and strong.

Answer

Correct Answer: It can be used on both 32-bit and 64-bit processors.
It is simple and strong.

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

12. Which of the following are the correct syntaxes for using ping command on Windows?

ping

ping —p

ping —t

Answer

Correct Answer: ping
ping

Note: This question has more than 1 correct answers

Note: This Question is unanswered, help us to find answer for this one

13. Which of the following is an asymmetric encryption algorithm, which is of a variable length, is a one-way hash function and is a modification of MD5?

Message Digest 6 (MD6)

Whirlpool

Tiger

HAVAL

Answer

Correct Answer: HAVAL

Note: This Question is unanswered, help us to find answer for this one

14. While using the BackTrack tool with Linux, which of the following commands can be used for renaming a text file from oIdExample.txt to newExample.txt?

mv oldExample.txt newExample.txt

mv oldExample.txt to newExample.txt

rename OldExample.txt, newExample.txt

rename OldExampleth to newExample.txt

Answer

Correct Answer: mv oldExample.txt newExample.txt

Note: This Question is unanswered, help us to find answer for this one

15.
Which of the following protocols send clear information and can be easy targets for sniff‌ing?
i) HTTP
ii) NNTP
iii) FTP
iv) IMAP

Only options i) and iii).

Only options i), ii) and iii).

Only options i), ii) and iv).

All Options i). ii), iii) and iv).

Answer

Correct Answer:

All Options i). ii), iii) and iv).

Note: This Question is unanswered, help us to find answer for this one

16. Which of the following is the correct syntax of the command that can be used to test whether or not a target FTP server is vulnerable to the FTP bounce attack?

nmap —r

nmap —b

nmap

nmap —r

Answer

Correct Answer: nmap —b

Note: This Question is unanswered, help us to find answer for this one

17. Which of the following is the correct syntax of the command that can be used for performing a sneaky scan and for analyzing its behavior in Wireshark?

nmap —T1

nmap —T2

nmap —T0

nmap —T3

Answer

Correct Answer: nmap —T1

Note: This Question is unanswered, help us to find answer for this one

18. Which of the following network scanning processes involves the use of an Internet Control Message Protocol (ICMP) message?

Wardialing

Wardriving

Port scanning

Pinging

Answer

Correct Answer: Pinging

Note: This Question is unanswered, help us to find answer for this one

19. Which of the following is the syntax of Hydra for brute-forcing a service with the username set to "administrator"?

Hydra —L administrator password.txt —P

Hydra administrator —L password.txt —P

Hydra —A administrator —P password.txt —T

Hydra —L administrator —P password.txt

Answer

Correct Answer: Hydra —L administrator —P password.txt

Note: This Question is unanswered, help us to find answer for this one

20. While using Medusa for brute force attack, which of the following parameters is used for "Service to attack"?

-s

-A

-u

-M

Answer

Correct Answer: -M

Note: This Question is unanswered, help us to find answer for this one

21. Which of the following echo requests is used by a Fraggle attack?

ICMP

TCP

FTP

UDP

Answer

Correct Answer: UDP

Note: This Question is unanswered, help us to find answer for this one

22. During which of the following types of scanning, carefully crafted messages or packets are sent to a target computer by using wellsknown port numbers that are less than or equal to 1024?

Network scanning

Port scanning

Vulnerability scanning

None of the above.

Answer

Correct Answer: Port scanning

Note: This Question is unanswered, help us to find answer for this one

23. While creating a PDF document with launch action, which of the following parameters is used for defining the type of application that should run?

Win

Answer

Correct Answer: IF

Note: This Question is unanswered, help us to find answer for this one

24. In which ofthe following application-level attacks, SQL queries are crafted by an attacker for corrupting a database?

Flood

Jam

Disrupt

Land

Answer

Correct Answer: Jam

Note: This Question is unanswered, help us to find answer for this one

25. Which of the following is the correct syntax of the command for creating an ACK packet using HPING3 and sending it to port 80 on a victim?

Hping3 —A -p 80

Hping3, —ACK -p 80

Hping’3 -p 80 —A

Hping3 —A -p -80

Answer

Correct Answer: Hping3 —A -p 80

Note: This Question is unanswered, help us to find answer for this one

26. During which of the following DOS attacks, custom-crafted fragmented packets, having offset values that overlap during the attempted rebuild. are sent by an attacker?

Ping of Death

Teardrop

ICMP Flood Attack

Smurf

Answer

Correct Answer: Teardrop

Note: This Question is unanswered, help us to find answer for this one

27. While scanning source ports using the nmap command, which of the following parameters is used for helping a user in specifying a source port?

-n

-g

-T

-O

Answer

Correct Answer: -g

Note: This Question is unanswered, help us to find answer for this one

28. In which ofthe following types of attacks, cipher text is compared against the pro-computed hashes for f‌inding the match?

Dictionary attack

Rainbow table attack

Brute force attack

None of the above.

Answer

Correct Answer: Rainbow table attack

Note: This Question is unanswered, help us to find answer for this one

29.
The amitis tool, which is used for creating Trojans, opens which of the following ports for giving a hacker complete control over a victim's computer?

27551

8085

26500

Answer

Correct Answer: 27551

Note: This Question is unanswered, help us to find answer for this one

30. While performing a check for open ports via three-way handshake in port scanning, which of the following TCP f‌lags is used for instructing the sending system to immediately send all buffered data?

SYN

FIN

RST

PSH

Answer

Correct Answer: PSH

Note: This Question is unanswered, help us to find answer for this one

31. Which of the following Linux directories is used for containing references (represented as f‌iles with special properties) to all the CPU peripheral hardware?

/dev

/etc

Imnt

lusr

Answer

Correct Answer: /dev

Note: This Question is unanswered, help us to find answer for this one

32. Which of the following is the correct syntax of the HpingZ command that can be used for scanning a vulnerable host for the zombie scan?

hping2 —r

hping2 —S —P

hpin92 —S -r

hpingz —s -P —r

Answer

Correct Answer: hpin92 —S -r

Note: This Question is unanswered, help us to find answer for this one

33. While creating a backdoor with the SET tool, which Of the following commands can be used for interacting with the shell after the session has been opened?

sessions —i 1

sessions set —i 1

set sessions — s 1

set - s --i 1

Answer

Correct Answer: sessions —i 1

Note: This Question is unanswered, help us to find answer for this one

34.
Which malware performs the following activities?
Displays pop-ups and nag screens.
Changes the start page of a browser.

Spyware

Adware

Scareware

Trojans

Answer

Correct Answer:

Adware

Note: This Question is unanswered, help us to find answer for this one

35. Which type of malware has the following characteristics?

Trojan

Worms

Rootkits

Spyware

Answer

Correct Answer: Rootkits

Note: This Question is unanswered, help us to find answer for this one

36. Which of the following options is a program that is used for automating an action in such a way that the action can be repeatedly performed at a much higher rate and for a longer period than a human Operator could perform?

Adware

Bot

Cracker

Exploit Kit

Answer

Correct Answer: Bot

Note: This Question is unanswered, help us to find answer for this one

37.
Choose True or False.
Sniffing can be done in both ways, i.e. from command line utility and graphic user interface (GUI).

True

False

Answer

Correct Answer:

True

Note: This Question is unanswered, help us to find answer for this one

38.
Which of the following are sniffing tools?
i) Wireshark
ii) Cain and Abel
iii) Dsniff
iv) Ettercap
v) Tcpdump

Only options i). iii) and iv)

Only options ii). iii). iv) and v)

Only options i), ii) and v)

All of the above

None of the above

Answer

Correct Answer:

All of the above

Note: This Question is unanswered, help us to find answer for this one

39. While using the Trojan detection tool, netstat, which of the following commands is used for detecting open ports?

netstat —an

netstat —st

netstat —sp

netstat —a

Answer

Correct Answer: netstat —an

Note: This Question is unanswered, help us to find answer for this one

40. Which of the following Linux directories contains programs for use by the system and system administrator?

/proc

/sbin

/root

/lib

Answer

Correct Answer: /sbin

Note: This Question is unanswered, help us to find answer for this one

41. In order to prevent Trojan attacks, which ofthe following tools should be used for real-time tracking of port usage?

Netstat

TCPView

RECUB

None of the above

Answer

Correct Answer: TCPView

Note: This Question is unanswered, help us to find answer for this one

42. Which of the following Linux commands is used for showing local or remote established connections?

locate

netstat

cat

nslookup

Answer

Correct Answer: netstat

Note: This Question is unanswered, help us to find answer for this one

43. For specifying a maximum transmission unit {MTU), which of the following is the correct nmap command that will generate a 32 byte packet?

nmap —mtu 32

nmap 32 -mtu

nmap —mtu -g «32

nmap 32—mtu

Answer

Correct Answer: nmap —mtu 32

Note: This Question is unanswered, help us to find answer for this one

44. Which of the following operating systems are vulnerable to distributed denial-of—service (DDOS) attacks?

Unix

Windows NT

Mac 0S

All of the above.

None of the above

Answer

Correct Answer: All of the above.

Note: This Question is unanswered, help us to find answer for this one

45. Which of the following options indicates a special Linux permission, which makes a file unchangeable?

Answer

Correct Answer: i

Note: This Question is unanswered, help us to find answer for this one

46.
During fingerprinting, which Of the following elements are analyzed for determining the operating system?
i)Don‘t fragment bit
ii)Window size
iii)Time-to-live on the outbound packet
iv)Type of service

Only Options i) and iii).

Only Options ii) and iii).

Only options i), iii) and iv).

All Options i), ii), iii) and iv).

Answer

Correct Answer:

All Options i), ii), iii) and iv).

Note: This Question is unanswered, help us to find answer for this one

47. While testing for weak authentication during fingerprinting MYSOL, which of the following commands is used for logging in to the MYSQL server and manipulating things after the credentials have been cracked?

root@root: mysql —h —u root —p

roottf‌iiroot: mysql —h root —r

root@root: -—h mysql —u root -—p

root@root; -u mysql —h —t root —p

Answer

Correct Answer: root@root: mysql —h —u root —p

Note: This Question is unanswered, help us to find answer for this one

48. Which of the following ports is used for HTTPS traff‌ic, which is secured by SSL?

443

8080

2513

Answer

Correct Answer: 443

Note: This Question is unanswered, help us to find answer for this one

49. Which of the following lPSec mechanisms is used for providing methods for the purpose of authenticating information as well as for encrypting the data?

Authentication Header

Cipher Text

Secure Hash Algorithm

Encapsulating Security Payload

Answer

Correct Answer: Encapsulating Security Payload

Note: This Question is unanswered, help us to find answer for this one

50. Proxies operate at which of the following layers of the Open System Interconnection model?

Data-link layer

Presentation layer

Application layer

Transport layer

Answer

Correct Answer: Application layer

Note: This Question is unanswered, help us to find answer for this one

51. While using the BackTrack tool with Linux. which of the following commands is used for changing the password of the Linux box?

pwd

passwd

Answer

Correct Answer: passwd

Note: This Question is unanswered, help us to find answer for this one

52. In relation to ethical hacking, which of the following statements is correct about botnet?

It is a hidden entry to a computing device that bypasses security measures.

It is the process of writing large amount of data to the memory, than the buffer memory is allocated to hold.

It is a group of computers that is controlled without the knowledge of their owners.

It is a type of denial-of—service attack.

Answer

Correct Answer: It is a group of computers that is controlled without the knowledge of their owners.

Note: This Question is unanswered, help us to find answer for this one

53. Which of the following protocols is used by the BOCK tool that is used for exploiting covert channels?

ICMP

IGMP

WTLS

3DES

Answer

Correct Answer: IGMP

Note: This Question is unanswered, help us to find answer for this one

54. What is the hexadecimal value of the NOP instruction that is applied to an Intel processor?

0x80

0x88

0x90

0x95

Answer

Correct Answer: 0x90

Note: This Question is unanswered, help us to find answer for this one

55. Which of the following wardriving tools is a network detector, sniffer, and intrusion detection system used on Linux?

AirSnare

AirSnort

Kismet

ToneLoc

Answer

Correct Answer: Kismet

Note: This Question is unanswered, help us to find answer for this one

56. Which of the following options represents the process of exploiting holes in a poorly-configured software?

Shrink Wrap Code

Phishing

Phreaker

Rootkit

Answer

Correct Answer: Shrink Wrap Code

Note: This Question is unanswered, help us to find answer for this one

57. Which of the following Linux commands is used for displaying the information of logged on users and their activities?

man

cd..

Answer

Correct Answer: w

Note: This Question is unanswered, help us to find answer for this one

58. During which ofthe following attacks, an attacker has the plaintext and ciphertext of one or more messages and this information is used for determining the key in use?

Ciphertext-only Attack

Chosen Ciphertext Attack

Known Plaintext Attack

None of the above.

Answer

Correct Answer: Known Plaintext Attack

Note: This Question is unanswered, help us to find answer for this one

59.
Which of the following options are the effects Of a DOS attack?
i)Resource unavailability.
ii)lncreased spam e-mail.
iii)lncreased ads and pop-ups.

Only options i) and ii).

Only options ii) and iii).

Only options i) and iii).

All options i), ii) and iii).

Answer

Correct Answer:

Only options i) and ii).

Note: This Question is unanswered, help us to find answer for this one

60.
Identify the type of denial-of—service (DOS) attack from the following statement
This attack queues up the packets that have bad source IP; uses memory and resources; and eventually hangs, reboots or crashes the system

Teardrop

SYN attack

Smurf attack

None of the above.

Answer

Correct Answer:

SYN attack

Note: This Question is unanswered, help us to find answer for this one

61.
Which of the following options is a Linux/Unix sniff‌ing tool that is designed for graphically displaying a system's incoming and outgoing connections?

Dsniff

EtherApe

Windump

Wireshark

Answer

Correct Answer: EtherApe

Note: This Question is unanswered, help us to find answer for this one

62.
Using Nmap, which Of the following is the correct syntax for performing a ping to a remote Windows or Linux Operating system?

NMAP —ping —sP

NMAP target IP address>

NMAP —sP —v

NMAP ping —v

Answer

Correct Answer:

NMAP —sP —v

Note: This Question is unanswered, help us to find answer for this one

63. In relation to f‌ingerprinting, which of the following is the correct syntax of the command, which is used for identifying the operating system that is serving a website and all the opened ports associated with the domain name? (Assume the domain name as abcExample.com.)

$nmap -0 -d abcExample.com

$nmap -0 -v abcExample.com

$nmap -W -v abcExample.com

$nmap -W -d abcExample.com

Answer

Correct Answer: $nmap -0 -v abcExample.com

Note: This Question is unanswered, help us to find answer for this one

64. While using the Netcat tool, which of the following commands is used for setting up a listener?

no -a -i -m —p 80

nc -n -I 80 -p

nc -n -v -| -p 80

nc -n -l -v -ip 80

Answer

Correct Answer: nc -n -v -| -p 80

Note: This Question is unanswered, help us to find answer for this one

65. While using the BackTrack tool with Linux, which of the following commands can be used for displaying the contents of the password.txt file?

cat password.txt

list password.txt

display password.txt

Is password.txt

Answer

Correct Answer: cat password.txt

Note: This Question is unanswered, help us to find answer for this one

66. Which of the following is/are the possible way(s) to manipulate programs through which a technical user may exploit stack-based overflows?

We can overwrite a variable, which is local and near to the buffer in the main memory on the stack and can change the behavior of the program.

We can overwrite a function pointer.

We can overwrite the return address in the stack frame.

All of the above.

Answer

Correct Answer: All of the above.

Note: This Question is unanswered, help us to find answer for this one

67. During which of the following attacks, a custom wordlist containing a list of all possible username and password combinations is used?

Traditional Brute Force

Dictionary Attacks

Hybrid Attacks

None of the above.

Answer

Correct Answer: Dictionary Attacks

Note: This Question is unanswered, help us to find answer for this one

68. Which of the following frameworks is simpler and more eff‌icient for creating and manipulating PDF frameworks?

PDFTK

Origami framework

Neither option a nor b.

Answer

Correct Answer: Origami framework

Note: This Question is unanswered, help us to find answer for this one

69. In relation to the nmap command in OS f‌ingerprinting, which of the following options can be used for performing both OS and service version detection?

-n

—T5

-o

-A

Answer

Correct Answer: -A

Note: This Question is unanswered, help us to find answer for this one

70.
While using the Netcap tool, which of the following commands is used for performing port scanning?

nc —v -p lPaddress ~

nc -v —2 -W1 lPaddress -

nc —n -v -I -w1 IPaddress -

nc -n -z -I IPaddress -p -

Answer

Correct Answer:

nc -v —2 -W1 lPaddress -

Note: This Question is unanswered, help us to find answer for this one

71.
Which of the following commands is used for performing a Xmas tree scan with Nmap?

NMAP —sX —v

NMAP -xS —p

NMAP —sX

NMAP —X —v

Answer

Correct Answer:

NMAP —sX —v

Note: This Question is unanswered, help us to find answer for this one

72. In relation to f‌ingerprinting, which of the following is the correct syntax ofthe nmap command, which is used for checking whether or not port 443 is Open? (Assume the domain name as abcExample.com.)

$nmap -sT 443 —p abcExample.com

$nmap —O -sT -p 443 abcExample.com

$nmap -O -p 443 abcExample.com

$nmap -sT -p 443 abcExample.com

Answer

Correct Answer: $nmap -sT -p 443 abcExample.com

Note: This Question is unanswered, help us to find answer for this one

73. Which of the following keyboard shortcuts stops working during a Trojan infection?

Shift+ Tab

Ctrl + Tab

Alt + Tab

Ctrl + Alt + Del

Answer

Correct Answer: Ctrl + Alt + Del

Note: This Question is unanswered, help us to find answer for this one

74. Which of the following commands can be used for creating a firewall rule in iptable, which will result the blocking of ICMP ECHO requests from the outside sources and will disable ping sweeps on a network?

$iptables -A OUTPUT -p icmp --icmp-type echo-request -j DROP

$iptables OUTPUT -p icmp —icmp-type —e echo-request -i DROP

$iptables OUTPUT-A -p icmp «icmp-type echo-request -e DROP

$iptables —O -A OUTPUT -p icmp «icmp-type echo-request ~j DROP

Answer

Correct Answer: $iptables -A OUTPUT -p icmp --icmp-type echo-request -j DROP

Note: This Question is unanswered, help us to find answer for this one

75. In relation to switched network sniff‌ing, which of the following options is represented by a switchport?

In relation to switched network sniff‌ing, which of the following options is represented by a switchport?

Broadcast domain

Windows domain

Secure domain

Answer

Correct Answer: In relation to switched network sniff‌ing, which of the following options is represented by a switchport?

Note: This Question is unanswered, help us to find answer for this one

76. In relation to ethical hacking. which of the following options refers to a method. which is used for determining the type of operating system running on a remote computer?

Reconnaissance

Sniff‌ing

Fingerprinting

None of the above.

Answer

Correct Answer: Fingerprinting

Note: This Question is unanswered, help us to find answer for this one

77.
Which of the following is the syntax of ping sweep using Nmap for ICMP scanning?

nmap —sP -PE

nmap —sP —PE —PA

nmap —sP —PA —PE

Answer

Correct Answer:

nmap —sP —PE —PA

Note: This Question is unanswered, help us to find answer for this one

78.
Which of the following statements is/are correct about stealth scan or half-Open scan?
i) With stealth scan, the chances of triggering the detection mechanism are high.
ii) Stealth scan is less reliable as compared to full-Open scan.

Only statement i) is correct.

Only statement ii) is correct.

Both statements i) and ii) are correct.

Neither statement i) nor ii) is correct.

Answer

Correct Answer:

Only statement ii) is correct.

Note: This Question is unanswered, help us to find answer for this one

79. Which of the given types of viruses has the following characteristics?

It infects the target application and alters it.

it alters the infected program into a subroutine. which runs after the virus has itself run.

Multipartite virus

Logic bomb

Cryptovirus

Shell virus

Answer

Correct Answer: Shell virus

Note: This Question is unanswered, help us to find answer for this one

Ethical Hacking MCQs | Topic-wise

MCQ on Basic Ethical Hacking

General Ethical Hacking MCQs

Buy us a coffee

Ethical Hacking Subjects

More Resources

Ethical Hacking MCQ

Ethical Hacking Skill Assessment

Ethical Hacking PDF

Related MCQs

ExtJs MCQs

Facebook (Programming & App Development) MCQs

Facebook Connect MCQs

Facebook Open Platform Development MCQs

Firewall Concepts MCQs

Basic Ethical Hacking MCQ

1. _____ is a protocol for securely accessing a remote computer.

2. With ____, you can have your desktop computer or laptop start in both windows and linux.

3. Hackers use __________ to execute arbitrary scripts through the web browser.

4. Hackers can gain access to computer systems through the use of ____.

5. Which of the following programming languages are commonly associated with Buffer overflows?

6. In relation to Wireshark filters, which of the following operators is/are equivalent to the equal function?

7. Which of the following are the advantages of using the symmetric cryptography algorithms?

8. ln ethical hacking, which Of the following information is gathered during the enumeration phase?

9. Identify the features of session hijacking.

10. Which of the following operating systems are affected by the Stacheldraht tool for denial-of—service attacks?

11. Which two of the following are the features of symmetric encryption algorithm, Blowf‌ish?

12. Which of the following are the correct syntaxes for using ping command on Windows?

13. Which of the following is an asymmetric encryption algorithm, which is of a variable length, is a one-way hash function and is a modification of MD5?

14. While using the BackTrack tool with Linux, which of the following commands can be used for renaming a text file from oIdExample.txt to newExample.txt?

15. Which of the following protocols send clear information and can be easy targets for sniff‌ing?i) HTTPii) NNTPiii) FTPiv) IMAP

16. Which of the following is the correct syntax of the command that can be used to test whether or not a target FTP server is vulnerable to the FTP bounce attack?

17. Which of the following is the correct syntax of the command that can be used for performing a sneaky scan and for analyzing its behavior in Wireshark?

18. Which of the following network scanning processes involves the use of an Internet Control Message Protocol (ICMP) message?

19. Which of the following is the syntax of Hydra for brute-forcing a service with the username set to "administrator"?

20. While using Medusa for brute force attack, which of the following parameters is used for "Service to attack"?

21. Which of the following echo requests is used by a Fraggle attack?

22. During which of the following types of scanning, carefully crafted messages or packets are sent to a target computer by using wellsknown port numbers that are less than or equal to 1024?

23. While creating a PDF document with launch action, which of the following parameters is used for defining the type of application that should run?

24. In which ofthe following application-level attacks, SQL queries are crafted by an attacker for corrupting a database?

25. Which of the following is the correct syntax of the command for creating an ACK packet using HPING3 and sending it to port 80 on a victim?

26. During which of the following DOS attacks, custom-crafted fragmented packets, having offset values that overlap during the attempted rebuild. are sent by an attacker?

27. While scanning source ports using the nmap command, which of the following parameters is used for helping a user in specifying a source port?

28. In which ofthe following types of attacks, cipher text is compared against the pro-computed hashes for f‌inding the match?

29. The amitis tool, which is used for creating Trojans, opens which of the following ports for giving a hacker complete control over a victim's computer?

30. While performing a check for open ports via three-way handshake in port scanning, which of the following TCP f‌lags is used for instructing the sending system to immediately send all buffered data?

31. Which of the following Linux directories is used for containing references (represented as f‌iles with special properties) to all the CPU peripheral hardware?

32. Which of the following is the correct syntax of the HpingZ command that can be used for scanning a vulnerable host for the zombie scan?

33. While creating a backdoor with the SET tool, which Of the following commands can be used for interacting with the shell after the session has been opened?

34. Which malware performs the following activities? Displays pop-ups and nag screens.Changes the start page of a browser.

35. Which type of malware has the following characteristics?

36. Which of the following options is a program that is used for automating an action in such a way that the action can be repeatedly performed at a much higher rate and for a longer period than a human Operator could perform?

37. Choose True or False.Sniffing can be done in both ways, i.e. from command line utility and graphic user interface (GUI).

38. Which of the following are sniffing tools?i) Wiresharkii) Cain and Abeliii) Dsniffiv) Ettercapv) Tcpdump

39. While using the Trojan detection tool, netstat, which of the following commands is used for detecting open ports?

40. Which of the following Linux directories contains programs for use by the system and system administrator?

41. In order to prevent Trojan attacks, which ofthe following tools should be used for real-time tracking of port usage?

42. Which of the following Linux commands is used for showing local or remote established connections?

43. For specifying a maximum transmission unit {MTU), which of the following is the correct nmap command that will generate a 32 byte packet?

44. Which of the following operating systems are vulnerable to distributed denial-of—service (DDOS) attacks?

45. Which of the following options indicates a special Linux permission, which makes a file unchangeable?

46. During fingerprinting, which Of the following elements are analyzed for determining the operating system?i)Don‘t fragment bitii)Window sizeiii)Time-to-live on the outbound packetiv)Type of service

47. While testing for weak authentication during fingerprinting MYSOL, which of the following commands is used for logging in to the MYSQL server and manipulating things after the credentials have been cracked?

48. Which of the following ports is used for HTTPS traff‌ic, which is secured by SSL?

49. Which of the following lPSec mechanisms is used for providing methods for the purpose of authenticating information as well as for encrypting the data?

50. Proxies operate at which of the following layers of the Open System Interconnection model?

51. While using the BackTrack tool with Linux. which of the following commands is used for changing the password of the Linux box?

52. In relation to ethical hacking, which of the following statements is correct about botnet?

53. Which of the following protocols is used by the BOCK tool that is used for exploiting covert channels?

54. What is the hexadecimal value of the NOP instruction that is applied to an Intel processor?

55. Which of the following wardriving tools is a network detector, sniffer, and intrusion detection system used on Linux?

56. Which of the following options represents the process of exploiting holes in a poorly-configured software?

57. Which of the following Linux commands is used for displaying the information of logged on users and their activities?

58. During which ofthe following attacks, an attacker has the plaintext and ciphertext of one or more messages and this information is used for determining the key in use?

59. Which of the following options are the effects Of a DOS attack?i)Resource unavailability.ii)lncreased spam e-mail.iii)lncreased ads and pop-ups.

60. Identify the type of denial-of—service (DOS) attack from the following statementThis attack queues up the packets that have bad source IP; uses memory and resources; and eventually hangs, reboots or crashes the system

61. Which of the following options is a Linux/Unix sniff‌ing tool that is designed for graphically displaying a system's incoming and outgoing connections?

62. Using Nmap, which Of the following is the correct syntax for performing a ping to a remote Windows or Linux Operating system?

63. In relation to f‌ingerprinting, which of the following is the correct syntax of the command, which is used for identifying the operating system that is serving a website and all the opened ports associated with the domain name? (Assume the domain name as abcExample.com.)

64. While using the Netcat tool, which of the following commands is used for setting up a listener?

65. While using the BackTrack tool with Linux, which of the following commands can be used for displaying the contents of the password.txt file?

66. Which of the following is/are the possible way(s) to manipulate programs through which a technical user may exploit stack-based overflows?

67. During which of the following attacks, a custom wordlist containing a list of all possible username and password combinations is used?

68. Which of the following frameworks is simpler and more eff‌icient for creating and manipulating PDF frameworks?

69. In relation to the nmap command in OS f‌ingerprinting, which of the following options can be used for performing both OS and service version detection?

70. While using the Netcap tool, which of the following commands is used for performing port scanning?

71. Which of the following commands is used for performing a Xmas tree scan with Nmap?

72. In relation to f‌ingerprinting, which of the following is the correct syntax ofthe nmap command, which is used for checking whether or not port 443 is Open? (Assume the domain name as abcExample.com.)

73. Which of the following keyboard shortcuts stops working during a Trojan infection?

74. Which of the following commands can be used for creating a firewall rule in iptable, which will result the blocking of ICMP ECHO requests from the outside sources and will disable ping sweeps on a network?

75. In relation to switched network sniff‌ing, which of the following options is represented by a switchport?

76. In relation to ethical hacking. which of the following options refers to a method. which is used for determining the type of operating system running on a remote computer?

77. Which of the following is the syntax of ping sweep using Nmap for ICMP scanning?

78. Which of the following statements is/are correct about stealth scan or half-Open scan?i) With stealth scan, the chances of triggering the detection mechanism are high.ii) Stealth scan is less reliable as compared to full-Open scan.

79. Which of the given types of viruses has the following characteristics?

15.
Which of the following protocols send clear information and can be easy targets for sniff‌ing?
i) HTTP
ii) NNTP
iii) FTP
iv) IMAP

29.
The amitis tool, which is used for creating Trojans, opens which of the following ports for giving a hacker complete control over a victim's computer?

34.
Which malware performs the following activities?
Displays pop-ups and nag screens.
Changes the start page of a browser.

37.
Choose True or False.
Sniffing can be done in both ways, i.e. from command line utility and graphic user interface (GUI).

38.
Which of the following are sniffing tools?
i) Wireshark
ii) Cain and Abel
iii) Dsniff
iv) Ettercap
v) Tcpdump

46.
During fingerprinting, which Of the following elements are analyzed for determining the operating system?
i)Don‘t fragment bit
ii)Window size
iii)Time-to-live on the outbound packet
iv)Type of service

59.
Which of the following options are the effects Of a DOS attack?
i)Resource unavailability.
ii)lncreased spam e-mail.
iii)lncreased ads and pop-ups.

60.
Identify the type of denial-of—service (DOS) attack from the following statement
This attack queues up the packets that have bad source IP; uses memory and resources; and eventually hangs, reboots or crashes the system

61.
Which of the following options is a Linux/Unix sniff‌ing tool that is designed for graphically displaying a system's incoming and outgoing connections?

62.
Using Nmap, which Of the following is the correct syntax for performing a ping to a remote Windows or Linux Operating system?

70.
While using the Netcap tool, which of the following commands is used for performing port scanning?

71.
Which of the following commands is used for performing a Xmas tree scan with Nmap?

77.
Which of the following is the syntax of ping sweep using Nmap for ICMP scanning?

78.
Which of the following statements is/are correct about stealth scan or half-Open scan?
i) With stealth scan, the chances of triggering the detection mechanism are high.
ii) Stealth scan is less reliable as compared to full-Open scan.