100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
Ethical Hacking Essentials Complete Practice Test Questions and Answers $12.49   Add to cart

Exam (elaborations)

Ethical Hacking Essentials Complete Practice Test Questions and Answers

 3 views  0 purchase
  • Course
  • 2024/2025
  • Institution
  • 2024/2025

Ethical Hacking Essentials Complete Practice Test Questions and Answers The assurance that the systems responsible for delivering, storing, and processing information are accessible when required by authorized users is referred to by which of the following elements of information security? - An...

[Show more]

Preview 4 out of 87  pages

  • October 15, 2024
  • 87
  • 2024/2025
  • Exam (elaborations)
  • Questions & answers
  • 2024/2025
  • 2024/2025
avatar-seller
Emillect
EMILLECT 2024/2025 ACADEMIC YEAR ©2024 EMILLECT. ALL RIGHTS RESERVED. FIRST PUBLISH OCTOBER 2024.




Ethical Hacking Essentials Complete
Practice Test Questions and Answers

The assurance that the systems responsible for delivering, storing, and processing information

are accessible when required by authorized users is referred to by which of the following

elements of information security? - Answer✔✔-Available


Identify the element of information security that refers to the quality of being genuine or

uncorrupted as a characteristic of any communication, documents, or any data. - Answer✔✔-

Authenticity


Mark, a professional hacker, targets his opponent's website. He finds susceptible user inputs,

injects malicious SQL code into the database, and tampers with critical information.


Which of the following types of attack did Mark perform in the above scenario? - Answer✔✔-

Active Attack


Ruby, a hacker, visited her target company disguised as an aspiring candidate seeking a job. She

noticed that certain sensitive documents were thrown in the trash near an employee's desk.

She collected these documents, which included critical information that helped her to perform

further attacks.


Identify the type of attack performed by Ruby in the above scenario. - Answer✔✔-Close in

Attack

Page 1/87

,EMILLECT 2024/2025 ACADEMIC YEAR ©2024 EMILLECT. ALL RIGHTS RESERVED. FIRST PUBLISH OCTOBER 2024.



James, a malware programmer, intruded into a manufacturing plant that produces computer

peripheral devices. James tampered with the software inside devices ready to be delivered to

clients. The tampered program creates a backdoor that allows unauthorized access to the

systems.


Identify the type of attack performed by James in the above scenario to gain unauthorized

access to the delivered systems. - Answer✔✔-Distribution Attack


Williams, an employee, was using his personal laptop within the organization's premises. He

connected his laptop to the organization's internal network and began eavesdropping on the

communication between other devices connected to the internal network. He sniffed critical

information such as login credentials and other confidential data passing through the network.


Identify the type of attack performed by Williams in the above scenario. - Answer✔✔-Insider

Attack


David, a professional hacker, has initiated a DDoS attack against a target organization. He

developed a malicious code and distributed it through emails to compromise the systems. Then,

all the infected systems were grouped together to launch a DDoS attack against the

organization.


Identify the type of attack launched by David on the target organization. - Answer✔✔-Botnet


Jack is working as a malware analyst in an organization. He was assigned to inspect an attack

performed against the organization. Jack determined that the attacker had restricted access to




Page 2/87

,EMILLECT 2024/2025 ACADEMIC YEAR ©2024 EMILLECT. ALL RIGHTS RESERVED. FIRST PUBLISH OCTOBER 2024.



the main computer's files and folders and was demanding an online payment to remove these

restrictions.


Which of the following type of attack has Jack identified in the above scenario? - Answer✔✔-

Ransomware


Identify the type of attack vector that focuses on stealing information from the victim machine

without its user being aware and tries to deliver a payload affecting computer performance. -

Answer✔✔-APT Attack


Andrew, a professional hacker, drafts an email that appears to be legitimate and attaches

malicious links to lure victims; he then distributes it through communication channels or mails

to obtain private information like account numbers.


Identify the type of attack vector employed by Andrew in the above scenario. - Answer✔✔-

Phishing


Identify the civilian act designed to protect investors and the public by increasing the accuracy

and reliability of corporate disclosures. - Answer✔✔-Sarbanes - Oxley Act


Which of the following ISO/IEC standard specifies the requirements for establishing,

implementing, maintaining, and continually improving an information security management

system within the context of an organization? - Answer✔✔-ISO/IEC 27001:2013


An organization located in Europe maintains a large amount of user data by following all the

security-related laws. It also follows GDPR protection principles, one of which states that the

organization should only collect and process data necessary for the specified task.
Page 3/87

, EMILLECT 2024/2025 ACADEMIC YEAR ©2024 EMILLECT. ALL RIGHTS RESERVED. FIRST PUBLISH OCTOBER 2024.



Which of the following GDPR protection principle is discussed in the above scenario? -

Answer✔✔-Data Minimization


Which of the following titles in The Digital Millennium Copyright Act (DMCA) allows the owner

of a copy of a program to make reproductions or adaptations when these are necessary to use

the program in conjunction with a system? - Answer✔✔-Title III: Computer Maintenance or

Repair


Which of the following countries has implemented "The Copyright Act 1968" and "The Patents

Act 1990"? - Answer✔✔-Australia


Given below are the various phases involved in the cyber kill chain methodology.


1. Installation


2. Delivery


3. Reconnaissance


4. Actions on objectives


5. Weaponization


6. Exploitation


7. Command and control


What is the correct sequence of phases involved in the cyber kill chain methodology? -

Answer✔✔-3 -> 5 -> 2 -> 6 -> 1 -> 7 -> 4



Page 4/87

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller Emillect. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $12.49. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

75632 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$12.49
  • (0)
  Add to cart