Testorion.com

About
All Quizes
Cart
Checkout
Contact
Home
Login
Member’s Portal
My account
Our Store
Privacy Policy
Profile
Purchased Quiz
Registration
Registration Success
Reset Password
Sample Page
Shop
Support Center
Terms and Conditions

Certified Ethical Hacker (CEH) Full Preparation Test 1 [Trial]

Time limit: 0

Quiz Summary

0 of 10 Questions completed

Questions:

Information

You have already completed the quiz before. Hence you can not start it again.

Quiz is loading…

You must sign in or sign up to start the quiz.

You must first complete the following:

Results

Quiz complete. Results are being recorded.

Results

0 of 10 Questions answered correctly

Your time:

Time has elapsed

You have reached 0 of 0 point(s), (0)

Earned Point(s): 0 of 0, (0)
0 Essay(s) Pending (Possible Point(s): 0)

Categories

Not categorized 0%

1
2
3
4
5
6
7
8
9
10

Current
Review / Skip
Answered
Correct
Incorrect

Question 1 of 10

1. Question
A security team is implementing various security controls across the organization. After considering several configurations and applications, a final agreed-on set of security controls is put into place; however, not all risks are mitigated by the controls. Of the following, which is the next best step?
- A. Continue applying controls until all risk is eliminated.
- B. Ignore any remaining risk as “best effort controlled.”
- C. Ensure that any remaining risk is residual or low and accept the risk.
- D. Remove all controls.
Correct

Incorrect
Question 2 of 10

2. Question
A Certified Ethical Hacker (CEH) follows a specific methodology for testing a system. Which step comes after footprinting in the CEH methodology?
- A. Scanning
- B. Enumeration
- C. Reconnaissance
- D. Application attack
Correct

Incorrect
Question 3 of 10

3. Question
Your organization is planning for the future and is identifying the systems and processes critical for their continued operation. Which of the following best describes this effort?
- A. BCP
- B. BIA
- C. DRP
- D. ALE
Correct

Incorrect
Question 4 of 10

4. Question
Which incident response (IR) phase is responsible for setting rules, identifying the workforce and roles, and creating backup and test plans for the organization?
- A. Preparation
- B. Identification
- C. Containment
- D. Recovery
Correct

Incorrect
Question 5 of 10

5. Question
You’ve been hired as part of a pen test team. During the brief, you learn the client wants the pen test attack to simulate a normal user who finds ways to elevate privileges and create attacks. Which test type does the client want?
- A. White box
- B. Gray box
- C. Black box
- D. Hybrid
Correct

Incorrect
Question 6 of 10

6. Question
Which of the following is defined as ensuring the enforcement of organizational security policy does not rely on voluntary user compliance by assigning sensitivity labels on information and comparing this to the level of security a user is operating at?
- A. Mandatory access control
- B. Authorized access control
- C. Role-based access control
- D. Discretionary access control
Correct

Incorrect
Question 7 of 10

7. Question
Which of the following statements is true regarding the TCP three-way handshake?
- A. The recipient sets the initial sequence number in the second step.
- B. The sender sets the initial sequence number in the third step.
- C. When accepting the communications request, the recipient responds with an acknowledgement and a randomly generated sequence number in the second step.
- D. When accepting the communications request, the recipient responds with an acknowledgement and a randomly generated sequence number in the third step.
Correct

Incorrect
Question 8 of 10

8. Question
Your network contains certain servers that typically fail once every five years. The total cost of one of these servers is $1000. Server technicians are paid $40 per hour, and a typical replacement requires two hours. Ten employees, earning an average of $20 per hour, rely on these servers, and even one of them going down puts the whole group in a wait state until it’s brought back up. Which of the following represents the ARO for a server?
- A. $296
- B. $1480
- C. $1000
- D. 0.20
Correct

Incorrect
Question 9 of 10

9. Question
An ethical hacker is given no prior knowledge of the network and has a specific framework in which to work. The agreement specifies boundaries, nondisclosure agreements, and a completion date definition. Which of the following statements is true?
- A. A white hat is attempting a black-box test.
- B. A white hat is attempting a white-box test.
- C. A black hat is attempting a black-box test.
- D. A black hat is attempting a gray-box test.
Correct

Incorrect
Question 10 of 10

10. Question
Which of the following is a detective control?
- A. Audit trail
- B. CONOPS
- C. Procedure
- D. Smartcard authentication
- E. Process
Correct

Incorrect

Scroll to Top

Insert/edit link

Enter the destination URL

URL

Link Text

Open link in a new tab

Or link to existing content

Search

No search term specified. Showing recent items. Search or use up and down arrow keys to select an item.

Quiz Summary

Information

Results

Results

Categories

1. Question

2. Question

3. Question

4. Question

5. Question

6. Question

7. Question

8. Question

9. Question

10. Question