CEH V12: Module 2 - Footprinting and Reconnaissance Professional Development Quiz

1.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which of these is an open-source framework for doing automated recon and info-gathering activities to learn about a target organization?

OSINT Framework

SpeedPhish Framework

WebSploit Framework

Browser Exploitation Framework

2.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which of these Google Dork (Google hacking) operators would you use to show certain file extensions on a website?

ext

filetype

inurl

allinurl

site

3.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Passive reconnaissance involves collecting information through which of the following?

Social Engineering

Network Traffic Sniffing

Man-in-the-Middle Attacks

Publicly Accessible Sources

4.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which type of footprinting involves gathering domain information, such as domain name, contact details of the owner, and creation & expiration dates?

VoIP Footprinting

WhoIs Footprinting

VPN Footprinting

Email Footprinting

5.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

In order to make convincing phishing e-mails, it helps to know about the company you are going to impersonate. The time you spend on researching this information is called what?

Exploration

Reconnaissance

Investigation

Enumeration

6.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

You need to monitor your corporate website to analyze the traffic and learn things such as the geographical location of people visiting the site. Which tool would be best suited for this?

Webroot

Web-Stat

WAFW00F

Website-Watcher

7.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

What is the collection of overt and publicly available information known as?

Real Intelligence

Human Intelligence

Open-Source Intelligence

Social Intelligence

Answer explanation

Open-source intelligence (OSINT) is data collected from publicly available sources to be used in an intelligence context. In the intelligence community, the term "open" refers to overt, publicly available sources (as opposed to covert or clandestine sources).

8.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which of these would be the best choice to surf the internet anonymously?

Use shared WiFi

Use public VPN

Use SSL sites when entering personal information

Use Tor network with multi-node

9.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which of these tools can perform DNS lookups and find info such as DNS domain names, computer names, IP addresses, DNS records, and network Whois records?

Bluto

zANTI

Knative

Towelroot

Answer explanation

zAnti is an Android tool for spoofing MAC addresses, creating malicious Wi-Fi hotspots, and hijacking sessions. Knative is for managing containers. Towelroot is for rooting a mobile device. Bluto is the only tool in this list that queries DNS info.

10.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

You have been sent a suspicious e-mail message and want to see who sent it. After looking at the header you see that it was received from an unknown sender at the IP address 145.146.50.60. What web site will allow you to find out more information about an IP address, including who owns that IP?

http://www.tucowsdomains.com/whois

https://whois.arin.net

https://www.networksolutions.com/whois

https://www.godaddy.com/whois

Answer explanation

ARIN is the American Registry for Internet Numbers and can tell you who owns a particular IP address. The other three are domain registrars and can tell you who owns a domain name.

Create a free account and access millions of resources

Popular Resources on Wayground

Discover more resources for Information Technology (IT)