Certified Ethical Hacker Training and Certification

CEH Certification

A certification in ethical hacking certified an IT security professional as a hacking professional and a penetration tester. A certification in ethical hacking endorses your skills and abilities to safeguard your systems against vulnerabilities and weaknesses of network infrastructure. A certified ethical hacker certification helps you to think like a hacker and perform penetration testing to find out thee threats.

Benefits of Ethical Hacking Certifications

The certified ethical hacking accreditation is one of the popular training provided by the EC council. The current version is the tenth version, which is updated with the latest technologies like artificial intelligence, the internet of things, and the latest techniques and tools which hackers use. All the skills are in demand by the cyber world, and the certification has international recognition.

Benefits of being CEH to Career

The CEH certification helps you to apply the ethical hacking tools and techniques on-cloud and on-premise. The certification is useful for auditors, security officers, networking professionals, and data security professionals. You will learn one of the finest and updated tools and techniques you should know to work as an ethical professional. Since it is the most demanded certification, you will be paid high. The average salary for a certified professional is $90,000. You may be paid an average of $35 for an hourly rate. You may be placed as a cybersecurity engineer, security engineer, penetration tester, information security manager, etc. The average salary can be from $38,000-$145,000 per year.

2019 has experienced some of the most significant cyberattacks in healthcare, banking, and supply chain domains. These cyber-attacks cause huge financial, data, and reputation loss to organizations. There is a demand for cybersecurity and ethical hacking professionals. A certification in ethical hacking by the EC council will help you to help to understand the latest technologies and protect the systems and networks from vulnerabilities. There is a lot of demand for ethical hacking professionals and get paid well. If you can think out of the box, and a good problem solver and a logical thinker, then this certification is apt for you. We have compiled certification questions and answers to take practice tests or glance at them before taking the certification test.

Exam details: CEH

Exam name: Certified Ethical Hacker

Duration: 240 minutes

No. of questions: 125

Passing score: 70 %

Validated against: https://www.eccouncil.org/  

Format: Multiple choice questions

Exam price: $500

Ethical Hacking Certification Questions and Answers

1. Which of the following steps is used by hackers for hacking a system?

A. Reconnaissance

B. Scanning and enumeration

C. Gaining access

D. Clearing tracks

E. All of the above.

Explanation- The process involved in the hacking of a system or network is as follows:

 1. Reconnaissance: at this step, the gathering of information of the user is done by hackers and the weak point of the user is tracked.

2. Scanning and enumeration: at this step examination and testing of the network based on gathered information is done.

3. Gaining access: as the hacker performs the above two step the hacker gets to compete for access to the network and system.

4. Maintaining the access: as the hacker has broken the security access in the above stage he tries to install and look for some script and try to hack total access to the computer.

5. Clearing tracks: the hacker clears all the track and tries for escaping before getting detected by any security personnel.

----------------------------------------------------------------------------------------------------------------------------------------------

2. From the below-mentioned option which are the common tools used as a sniffing tool?

A. Wireshark

B. Ettercap

C. MSN sniffer

D. All of the above

Explanation- sniffing tools are used for collecting the information and analyzing the traffic. Here are some common tools, Wireshark, MSN Sniffer, Dsniff, WinDump, EtherApe, Ettercap. And from the above options, all are included in this list and hence the correct option is all of the above.

----------------------------------------------------------------------------------------------------------------------------------------------

3. What are the ways by which spoofing can be done?

A. Website

B. Email

C. Domain name system

D. IP address

E. All of the above

Explanation- spoofing is one the process that is used for making communication by hiding your real identity and also presenting yourself as a trusted score. For this, the steps used are Email, websites, phone calls, IP address, domain name system. All of the above options are included in this list. Hence the correct option is E.

----------------------------------------------------------------------------------------------------------------------------------------------

4. What are the ways that one can use for protecting themself from getting hacked?

A. You must choose your security answers very wisely.

B. If you are planning for selling your device you must format it very nicely as there is a chance that the device may go in the hands of others.

C. Always try to update your OS frequently for security updates to stay protected from hackers.

D. All of the above.

Explanation- for protecting your device from getting hacked you can use any of the way mentioned: You must choose your security answers very wisely, If you are planning for selling your device you must format it very nicely as there is a chance that the device may go in the hands of others, Always try to update your OS frequently for security updates to stay protected from hackers. Hence the correct option is D.

----------------------------------------------------------------------------------------------------------------------------------------------

5. Mention which of the following statement is true?

A. Infostealer Trojan is the Trojan designed for locking or encrypting all the files present in the file system and demands for a huge amount of money for unblocking or decrepitating it.

B. Ransom Trojan is used for stealing personal or any valuable information from the compromised post.

C. For enabling the attacker to gain elevated access for the compromised target to control it remotely and to spy using it is done by remote access Trojan.

D. For finding and stealing the emails stored in the computer through a key logger is done by info stealer Trojan.

Explanation- Infostealer Trojan is used for stealing personal and valuable information from the compromised host. On the other hand, Ransom Trojan is used for locking or encrypting all the files in the system and on behalf of that demand some amount of money for unblocking and decrypting it. For finding and stealing emails stored in the computer even though the key logger is done by mail finder Trojan. Hence the correct option is For enabling the attacker to gain elevated access for the compromised target to control it remotely and to spy using it is done by remote access Trojan.

----------------------------------------------------------------------------------------------------------------------------------------------

6. From the below-mentioned option which of the following is the type of scanning?

A. Network scanning

B. Port scanning

C. Vulnerability scanning

D. All of the above

Explanation- since the above-mentioned option all are included in types of scanning. Hence, the correct answer is D, i.e, all of the above.

----------------------------------------------------------------------------------------------------------------------------------------------

7. From the below-mentioned option which of the following is included in the spoofing attack?

A. Smurf

B. Buffer

C. IFMP flooding

D. ARP

Explanation- since Smurf attack, buffer overflow and ICMP flooding are the common types of DOS attacks. They are the wrong option. ARP spoofing is only the correct option included in the list. The other two types of spoofing attacks are IP spoofing and DNS spoofing. Hence the correct option is D.

----------------------------------------------------------------------------------------------------------------------------------------------

8. From the below-mentioned option, what is included in the CIA triangle?

A. Confidentiality, Integrity, and Availability

B. Commonness, integrity and approvable

C. Confidentiality, intelligence, and availability

D. All of the above.

E. None of the above

Explanation- CIA triangle included confidentiality, integrity, and availability. Confidentiality means hiding the information and keeping it secret from all. Integrity doesn't allow the change in the information. Availability means providing the information to the authorized person whenever required. Hence the correct option is A.

------------------------------------------------------------------------------------------------------------------------------------------------------

9. Stride means Spoofing, Tampering, Reputation, Information Disclosure, Denial of service, Elevation of privilege.

Mention whether each letter denotes for stride is true or false?

A. True

B. False

C. Partly true and partly false

D. None of the above.

Explanation- Stride means S- Scoffing, T- Tampering, R- Reputation, I- Information Disclosure, D- Denial of service, E- Elevation of privilege.

--------------------------------------------------------------------------------------------------------------------------------------------------------

10. PGP is pretty good privacy. It is used for email security. Mention whether the following statement is true or false?

A. True

B. False

C. Partly true and partly false

D. None of the above.

 Explanation- PGP is pretty good privacy. It is the true term and also the second statement that it is used for email security is also true. Hence the correct answer is true.

-------------------------------------------------------------------------------------------------------------------------------------------------

11. Mention whether the following statement is true or false?

Vulnerability assessment and penetration testing both have a similar target.

A. True

B. False

C. Partly true and partly false

D. None of the above

Explanation- vulnerability assessment is a type of approach used in finding faults in any application or network. Whereas Penetration testing is the practice to find exploitable vulnerability as the areal attacker will do.

-------------------------------------------------------------------------------------------------------------------------------------------------------

12. From the below-mentioned statement which statement is true.

A. Increption is the irreversible process and hashing is the reversible process.

B. Increption and hashing both are reversible processes.

C. Increption and hashing both are irreversible processes.

D. Hashing is the IRREVERSIBLE process and increption is the reversible process.

Explanation- from the above statement the only true statement is, hashing is the irreversible process and increption is the reversible process. And one more thing to note about increption and hashing is that increption ensures confidentiality. Whereas hashing ensures integrity.

--------------------------------------------------------------------------------------------------------------------------------------------------------

13. Mention whether the following statement is true or false?

DDOS and dOS both are the same things.

A. True

B. False

C. Partly true and partly false

D. None of the above

Explanation- DDOS means distributed Daniel of service attack and DOS means Daniel of service attack. Daniel of service attack is an offensive attack for making a server or network device for denying the services which legitimate and helps the user by flooding a huge way of traffic. Whereas distributed Daniel of service attack is the distributed form of DOS which is performed for using Trojans or botnets that belong to different regions.

-------------------------------------------------------------------------------------------------------------------------------------------------------

14. Which of the following statement is false about phishing?

A. Phishing is the process that includes contacting the targeted user by email only.

B. Phishing involves a process in which the targeting customer is contacted through email, phone or text messages.

C. Phishing involves a process in which sensitive information is covered such as password, credit card details, etc.

D. All of the above

E. None of the above.

Explanation- The other two statements are correct just the statement states that users are contacted just by using emails but that is false. We can contact users through any of the modes including mail, call or text messages.

--------------------------------------------------------------------------------------------------------------------------------------------------

15. Which of the following statement is false about buffer overflow attack?

A. Buffer overflow is an error.

B. This error has occurred when the size of input data to the buffer is larger than the allocated buffer size.

C. This error has occurred when the size of input data to the buffer is smaller than the allocated buffer size.

D. All of the above

E. None of the above

Explanation- buffer overflow attack is an error that is raised due to the bigger allocated buffer size in comparison to the size of data injected to buffer.

-------------------------------------------------------------------------------------------------------------------------------------------------------

16. From the below-mentioned option, what are the advantages of ethical hacking?

A. Ethical hacking helps for preventive actions against hackers.

B. For fighting against national security breaches and cyber terrorism, we use ethical hacking.

C. Ethical hacking is used for providing security to financial and banking settlement.

D. All of the above.

Explanation- since, Ethical hacking helps for preventive actions against hackers, for fighting against national security breaches and cyber terrorism we use ethical hacking, Ethical hacking is used for providing security to financial and banking settlement all are included in the advantages of ethical hacking. Hence the correct option is all of the above.

-------------------------------------------------------------------------------------------------------------------------------------------------------

17. Worm and virus both are the ones and the same thing in ethical hacking. Mention whether the statement is true or false.

A. True

B. False

C. Partly true and partly false

D. None of the above

Explanation- the virus is the malware that is spread due to embedding the copy of itself and being a part of other programs. It is spread from one device to another due to the sharing of any documents or software while on the other hand worm is similar to a virus and also creates the same damage. But the difference between virus and worm is worm don't require any host program or human for propagation. They are replicating functional copy of themselves.

--------------------------------------------------------------------------------------------------------------------------------------------------------

18. What are the methods used for preventing Mac flooding?

A. Port security

B. Implementing are 802.1x suits

C. Authentication with the help of the AAA server.

D. Employing security Messages for preventing ARP or IP spoofing.

E. All of the above

F. None of the above

Explanation- Mac flooding can be prevented by using any of the methods mentioned above, Port security, Implementing IEE 802.1x suits, Authentication with the help of AAA server, Employing security Messages for preventing ARP or IP spoofing. Hence the correct option is all of the above.

-----------------------------------------------------------------------------------------------------------------------------------------------------

19. Which of the following statement is true about passive footprinting?

A. Passive footprinting is performed directly by getting in contact with the target machine.

B. Passive footprinting performs the collection of data for the targeted system which is located at a remote distance from the attacker.

C. All of the above.

D. None of the above.

Explanation- active footprinting is performed in which direct connection by getting in touch with the target machine is done. Hence the first statement is incorrect about passive footprinting. And the correct option is B.

--------------------------------------------------------------------------------------------------------------------------------------------------------

20. Which of the following are included in the DDOS attack?

A. Volume-based attack.

B. Protocol attack

C. Application attack

D. All of the above

Explanation- DDOS attack is categorized into 3 types.

1. Volume-based attack.

2. Protocol attack

3. Application attack

In which volume-based attack means the attacker is trying for saturating the band with the targeted site. Protocol attack contains actual server resources and other load balancers and firewalls. Last but not the least application layer attack contains slowlories, a 0-day DDOS attack, etc. It is measured and request for a second.

--------------------------------------------------------------------------------------------------------------------------------------------------------

21. Which of the following statement is true about penetration testing?

A. In penetration testing, there are few types of a black box, white box, and grey box

B. There are two types of penetration testing, external penetration testing, and internal penetration testing.

C. There are 5 types of testing which includes, black box, white box, grey box, internal penetration testing, and external penetration testing.

D. None of the above.

Explanation- There are 5 types of testing which include, black box, white box, grey box, internal penetration testing and external penetration testing in which black box testing means the testing in which for detecting information the hacker has an attempt by his phone. In external penetration testing hacking is attempted by using public networks like the internet. In internal penetration testing, the hacker lies inside the network of the company and performs his test from there. And white-box testing a hacker is given all the information about the infrastructure and the network of an organization that is required for penetration rebooks. In the grey box, the hacker has half knowledge about the infrastructure just like the domain name server.

-------------------------------------------------------------------------------------------------------------------------------------------------------

22. Which of the following statement is false?

A. Black box testing means the testing in which for detecting information the hacker has an attempt by his phone.

B. White box testing a hacker is given all the information about the infrastructure and the network of an organization that is required for penetration rebooks.

C. In the grey box, the hacker has half knowledge about the infrastructure just like the domain name server.

D. None of the above.

E. All of the above

Explanation- Black box, white box, and grey box are included in types of penetration testing which has its function. Black box testing means the testing in which for detecting information the hacker has an attempt by his phone, White box testing a hacker is given all the information about the infrastructure and the network of organization that is required for penetration rebooks, In grey box the hacker has half knowledge about the infrastructure just like the domain name server. All of the three functions above three of the penetration testing respectively are true. Hence there is no false statement.

--------------------------------------------------------------------------------------------------------------------------------------------------------

23. Which of the following statement is true about the DDOS attack?

A. DDOS means Distributed Daniel of service.

B. There are three types of a DDOS attacks. The volume-based attack, protocol attacks, and application layer attack

C. DDOS is an attempt for making a web page or online service inaccessible by overloading with a huge flood of traffic from various sources.

D. All of the above.

Explanation- 1. DDOS means Distributed Daniel of service. It is the correct full form of a DDOS attack.

2. There are three types of a DDOS attacks. The volume-based attack, protocol attacks, and application layer attack. This statement is correct about the types of DDOS attack

3. DDOS is an attempt for making a web page or online service inaccessible by overloading with a huge flood of traffic from various sources. This is the correct statement about the working of a DDOS attack. Hence the correct option is D.

If you are not successful in passing the certification exam, you can buy a retake exam voucher for the ECC Exam Center.

First attempt: If you are not able to clear the certification exam in the first attempt, then there is no waiting period or cooling period. You can retake the exam any time.

Second attempt: In case you are not able to clear the certification exam in the second attempt, then you have to wait for 14 days to give the exam for third time.

Third attempt: If you are not able to pass the certification exam in the third attempt, you have to wait for 14 days to attempt for fourth attempt.

Fourth attempt: If you are not able to pass in the fourth attempt, you have to wait for 14 days before attempting the exam for the fifth time.

Fifth attempt: If in case, you could not clear the certification exam for the fifth time also, then you have to wait for one year (12 months) to appear for the sixth time. You are not allowed to give the exam for more than five times in a given year. A period of 12 months will be imposed before you appear for the certification exam for the sixth time.

If you passed the exam. Then you are not allowed to attempt the same version of the exam for the second time.

Renewal of the Certification

Your Certification in CEH has validity for 3 years. You have to update your EC-Council Continuing Education (ECE) credit account in the EC-Council Delta portal and submit proof of your earned credits to renew and retain your credential for another 3 years period. You have to earn 120 credits within 3 years of ECE cycle period within 3 years of period.

You can earn the credits by attending conferences, writing research papers, prepare training classes for instructors, reading on related subject. You can take a new version of certification or attend webinars, and many other such activities.

 Your certification will be suspended by EC-Council if you don’t meet the requirements for certificate maintenance within the 3-year time frame.

If you don’t earn the 120 ECE credits for maintenance or renewal of certificate, then your certificate will be suspended for a period of 1 year by the EC Council.

If you can fulfill the certification maintenance requirements during the suspension period, then your credential will be revoked.  You have to give the certification exam again and pass.