CEH v11 E-Book

Table of Contents

Cover

Title Page

Copyright

Dedication

Acknowledgments

About the Author

About the Technical Editor

Introduction

What Is a CEH?

Further Resources

How to Register for the Online Testbanks

Chapter 1: Practice Test 1

Chapter 2: Practice Test 2

Chapter 3: Practice Test 3

Chapter 4: Practice Test 4

Chapter 5: Practice Test 5

Appendix: Answers to Practice Tests

Chapter 1: Practice Test 1

Chapter 2: Practice Test 2

Chapter 3: Practice Test 3

Chapter 4: Practice Test 4

Chapter 5: Practice Test 5

Index

Comprehensive Online Learning Environment

Register and Access the Online Test Bank

End User License Agreement

Guide

Cover Page

Table of Contents

Begin Reading

Pages

i

ii

iii

iv

vi

vii

viii

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

191

192

193

194

195

196

197

198

199

200

201

CEHTM v11

Certified Ethical HackerVersion 11Practice Tests

Second Edition

Copyright © 2022 by John Wiley & Sons, Inc. All rights reserved.

Published by John Wiley & Sons, Inc., Hoboken, New Jersey.

Published simultaneously in Canada.

978-1-119-82451-0978-1-119-82513-5 (ebk.)978-1-119-82452-7 (ebk.)

No part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning, or otherwise, except as permitted under Section 107 or 108 of the 1976 United States Copyright Act, without either the prior written permission of the Publisher, or authorization through payment of the appropriate per-copy fee to the Copyright Clearance Center, Inc., 222 Rosewood Drive, Danvers, MA 01923, (978) 750-8400, fax (978) 750-4470, or on the web at www.copyright.com. Requests to the Publisher for permission should be addressed to the Permissions Department, John Wiley & Sons, Inc., 111 River Street, Hoboken, NJ 07030, (201) 748-6011, fax (201) 748-6008, or online at http://www.wiley.com/go/permission.

Limit of Liability/Disclaimer of Warranty: While the publisher and author have used their best efforts in preparing this book, they make no representations or warranties with respect to the accuracy or completeness of the contents of this book and specifically disclaim any implied warranties of merchantability or fitness for a particular purpose. No warranty may be created or extended by sales representatives or written sales materials. The advice and strategies contained herein may not be suitable for your situation. You should consult with a professional where appropriate. Neither the publisher nor author shall be liable for any loss of profit or any other commercial damages, including but not limited to special, incidental, consequential, or other damages.

For general information on our other products and services or for technical support, please contact our Customer Care Department within the United States at (800) 762-2974, outside the United States at (317) 572-3993 or fax (317) 572-4002.

Wiley also publishes its books in a variety of electronic formats. Some content that appears in print may not be available in electronic formats. For more information about Wiley products, visit our web site at www.wiley.com.

Library of Congress Control Number: 2021943988

Trademarks: WILEY, the Wiley logo, Sybex, and the Sybex logo are trademarks or registered trademarks of John Wiley & Sons, Inc. and/or its affiliates, in the United States and other countries, and may not be used without written permission. CEH is a trademark or registered trademark of EC-Council. All other trademarks are the property of their respective owners. John Wiley & Sons, Inc. is not associated with any product or vendor mentioned in this book.

Cover Image: © Getty Images Inc./Jeremy WoodhouseCover Design: Wiley

For my best friend, partner, and the best support and cheerleader I could ask for, Robin.

Acknowledgments

Thanks to my agent, Carole, for always looking out for me, and thanks to Robin for always supporting me and keeping me going as I worked through this process. Thanks as well to the Wiley staff, Tom Dinse, and Jim Minatel for their support through the editing of this book.

The publisher wishes to acknowledge the work of Raymond Blockmon, the author of the previous Sybex book CEH v9: Certified Ethical Hacker Version 9 Practice Tests. Although this new book, CEH v11: Certified Ethical Hacker Version 11 Practice Tests, is heavily updated with new and revised questions, Raymond's work on the CEH v9 book laid the foundation that made this new CEH v11 book possible.

About the Author

Ric Messier got started in information security in the early 1980s by discovering a privilege escalation vulnerability on an IBM mainframe that opened the door to the worldwide network of the BITNET for him. Since that time, he has been a programmer, system administrator, network engineer, security consultant, instructor, program director, and penetration tester as well as having led a security engineering team at a global Internet service provider (the company that built the ARPAnet). He has developed many training courses as well as having developed graduate degree programs for two colleges. Additionally, he's taught courses at Brandeis University, Champlain College, University of Colorado at Boulder, and Harvard University. He holds CEH, CCSP, GCIH, GSEC, and CISSP certifications and has previously held CCNA, MCSE, and MCP+I certifications. Additionally, he has a Master of Science degree in Digital forensic science. He is currently a Principal Consultant with Mandiant, a world leader in incident response and security consulting.

About the Technical Editor

Kenneth Tanner is an IT professional with 25+ years of extensive hands-on experience in networking, telecommunications, and systems administration, and the security thereof. He is currently a Senior Technical Instructor at FireEye/Mandiant where he provides instruction on incident response. He has also worked for Hughes Training, The University of Alabama System, and various private companies as a consultant and/or instructor. Kenneth attended the University of Alabama at Birmingham (UAB) in Birmingham, Alabama where he received both a Bachelor and Master of Science degree in Electrical Engineering. He currently holds the following certifications: (ISC)² CISSP, EC-Council CEH, CND and CHFI, CompTIA CASP, PenTest+, CySA+, Security+, and Network+, Cisco CCNA Route and Switch, CCNA Security, CCNA Voice, CCNA CyberOps, and CCDA, Axelos ITIL, Metasploit Pro Certified Specialist, and Nexpose Certified Administrator. He has taught many of the certifications he holds. Kenneth lives in Colorado with his wife, Nadean, and their two children Shelby and Gavin.

Introduction

This exam book is designed to give the CEH candidate a realistic idea of what the CEH exam will look like. As a candidate, you should be familiar with Wireshark, Nmap, and other tools. To get the most out of these exams, you should consider constructing a virtual lab and practicing with the tools to become familiar with viewing the logs that are generated. In preparing for the CEH exam, you will benefit greatly by using YouTube. YouTube is a goldmine of information—and it's free. It is also recommended that you keep up with the latest malware and cybersecurity news provided online. Most cybersecurity-related websites provide insight on the latest vulnerabilities and exploits that are in the wild. Keeping up-to-date with this information will only add value to your CEH knowledge and will help solidify your understanding even more.

What Is a CEH?

The Certified Ethical Hacker exam is to validate that those holding the certification under-stand the broad range of subject matter that is required for someone to be an effective ethical hacker. The reality is that most days, if you are paying attention to the news, you will see a news story about a company that has been compromised and had data stolen, a government that has been attacked, or even enormous denial-of-service attacks, making it difficult for users to gain access to business resources.

The CEH is a certification that recognizes the importance of identifying security issues to get them remediated. This is one way companies can protect themselves against attacks—by getting there before the attackers do. It requires someone who knows how to follow tech-niques that attackers would normally use. Just running scans using automated tools is insuf-ficient because as good as security scanners may be, they will identify false positives—cases where the scanner indicates an issue that isn’t really an issue. Additionally, they will miss a lot of vulnerabilities—false negatives—for a variety of reasons, including the fact that the vulnerability or attack may not be known.

Because companies need to understand where they are vulnerable to attack, they need people who are able to identify those vulnerabilities, which can be very complex. Scanners are a good start, but being able to find holes in complex networks can take the creative intel-ligence that humans offer. This is why we need ethical hackers. These are people who can take extensive knowledge of a broad range of technical subjects and use it to identify vulner-abilities that can be exploited.

The important part of that two-word phrase, by the way, is “ethical.” Companies have protections in place because they have resources they don’t want stolen or damaged. When they bring in someone who is looking for vulnerabilities to exploit, they need to be certain that nothing will be stolen or damaged. They also need to be certain that anything that may be seen or reviewed isn’t shared with anyone else. This is especially true when it comes to any vulnerabilities that have been identified.

The CEH exam, then, has a dual purpose. It not only tests deeply technical knowledge but also binds anyone who is a certification holder to a code of conduct. Not only will you be expected to know the content and expectations of that code of conduct, you will be expected to live by that code. When companies hire or contract to people who have their CEH certification, they can be assured they have brought on someone with discretion who can keep their secrets and provide them with professional service in order to help improve their security posture and keep their important resources protected.

About the Exam

The CEH exam has much the same parameters as other professional certification exams. You will take a computerized, proctored exam. You will have 4 hours to complete 125 questions. That means you will have, on average, roughly 2 minutes per question. The questions are all multiple choice. The exam can be taken through the ECC Exam Center or at a Pearson VUE center.

Should you want to take your certification even further, you could go after the CEH Prac-tical exam. For this exam you must perform an actual penetration test and write a report at the end of it. This demonstrates that in addition to knowing the body of material covered by the exam, you can put that knowledge to use in a practical way. You will be expected to know how to compromise systems and identify vulnerabilities.

To pass the exam, you will have to correctly answer a certain number of questions, though the actual number will vary. The passing grade varies depending on the difficulty of the questions asked. The harder the questions that are asked out of the complete pool of questions, the fewer questions you need to get right to pass the exam. If you get easier ques-tions, you will need to get more of the questions right to pass. There are some sources of information that will tell you that you need to get 70 percent of the questions right, and that may be okay for general guidance and preparation as a rough low-end marker. However, keep in mind that when you sit down to take the actual test at the testing center, the passing grade will vary. The score you will need to achieve will range from 60 to 85 percent.

The good news is that you will know whether you passed before you leave the testing center. You will get your score when you finish the exam, and you will also get a piece of paper indicating the details of your grade. You will get feedback associated with the different scoring areas and how you performed in each of them.

Who Is Eligible

Not everyone is eligible to sit for the CEH exam. Before you go too far down the road, you should check your qualifications. Just as a starting point, you have to be at least 18 years of age. The other eligibility standards are as follows:

Anyone who has versions 1–7 of the CEH certification. The CEH certification is ANSI certified now, but early versions of the exam were available before the certification. Anyone who wants to take the ANSI-accredited certification who has the early version of the CEH certification can take the exam.

Minimum of two years of related work experience. Anyone who has the experience will have to pay a nonrefundable application fee of $100.

Have taken an EC-Council training.

If you meet these qualification standards, you can apply for the certification, along with paying the fee if it is applicable to you (if you take one of the EC-Council trainings, the fee is included). The application will be valid for three months.

Further Resources

Finally, this exam book should not be the only resource you use to prepare. You should use other exam books and study guides as well. The more diverse the exposure in terms of reading and preparation material, the better. Take your time studying; invest at least one hour per day prior to your exam date.

If you have not already read CEHv11: Certified Ethical Hacker Version 11 Study Guide (Sybex, 2021) and you're not seeing passing grades on these practice tests, it is an excellent resource to master any CEH topics causing problems. The study guide maps every official exam objective to the corresponding chapter in the book to help track your exam preparation objective by objective. There are also challenging review questions in each chapter to prepare for exam day and online test prep materials including flashcards and additional practice tests.

How to Register for the Online Testbanks

All the questions in this book are also available in Sybex’s online practice test tool. To get access to this online learning environment, go to www.wiley.com/go/sybextestprep and start by registering your book. You’ll receive a PIN code and instructions on where to create an online test bank account. Once you have access, you can use the online version to create your own sets of practice tests from the book questions and practice in a timed and graded setting.