Review Questions
1. Which are the four regional Internet registries?
A. APNIC, PICNIC, NANIC, RIPE NCC
B. APNIC, MOSTNIC, ARIN, RIPE NCC
C. APNIC, PICNIC, NANIC, ARIN
D. APNIC, LACNIC, ARIN, RIPE NCC
2. Which of the following is a tool for performing footprinting undetected?
A. Whois search
B. Traceroute
C. Ping sweep
D. Host scanning
3. Which of the following tools are used for footprinting? (Choose 3.)
A. Whois
B. Sam Spade
C. NMAP
D. SuperScan
E. NSlookup
4. What is the next immediate step to be performed after footprinting?
A. Scanning
B. Enumeration
C. System hacking
D. Bypassing an IDS
5. Which are good sources of information about a company or its employees? (Choose all that
apply.)
A. Newsgroups
B. Job postings
C. Company website
D. Press releases
6. How does traceroute work?
A. It uses an ICMP destination-unreachable message to elicit the name of a router.
B. It sends a specially crafted IP packet to a router to locate the number of hops from the
sender to the destination network.
C. It uses a protocol that will be rejected by the gateway to determine the location.
D. It uses the TTL value in an ICMP message to determine the number of hops from the
sender to the router.
7. What is footprinting?
A. Measuring the shoe size of an ethical hacker
B. Accumulation of data by gathering information on a target
C. Scanning a target network to detect operating system types
D. Mapping the physical layout of a target’s network
8. NSlookup can be used to gather information regarding which of the following?
A. Hostnames and IP addresses
B. Whois information
C. DNS server locations
D. Name server types and operating systems
9. Which of the following is a type of social engineering?
A. Shoulder surfing
B. User identification
C. System monitoring
D. Face-to-face communication
10. Which is an example of social engineering?
A. A user who holds open the front door of an office for a potential hacker
B. Calling a help desk and convincing them to reset a password for a user account
C. Installing a hardware keylogger on a victim’s system to capture passwords
D. Accessing a database with a cracked password
11. What is the best way to prevent a social-engineering attack?
A. Installing a firewall to prevent port scans
B. Configuring an IDS to detect intrusion attempts
C. Increasing the number of help desk personnel
D. Employee training and education
12. Which of the following is the best example of reverse social engineering?
A. A hacker pretends to be a person of authority in order to get a user to give them information.
B. A help desk employee pretends to be a person of authority.
C. A hacker tries to get a user to change their password.
D. A user changes their password.
13. Using pop-up windows to get a user to give out information is which type of social-engineering
attack?
A. Human-based
B. Computer-based
C. Nontechnical
D. Coercive
14. What is it called when a hacker pretends to be a valid user on the system?
A. Impersonation
B. Third-person authorization
C. Help desk
D. Valid user
15. What is the best reason to implement a security policy?
A. It increases security.
B. It makes security harder to enforce.
C. It removes the employee’s responsibility to make judgments.
D. It decreases security.
16. Faking a website for the purpose of getting a user’s password and username is which type
of social-engineering attack?
A. Human-based
B. Computer-based
C. Web-based
D. User-based
17. Dumpster diving can be considered which type of social-engineering attack?
A. Human-based
B. Computer-based
C. Physical access
D. Paper-based
18. What information-gathering tool will give you information regarding the operating system
of a web server?
A. NSlookup
B. DNSlookup
C. tracert
D. Netcraft
19. What tool is a good source of information for employee’s names and addresses?
A. NSlookup
B. Netcraft
C. Whois
D. tracert
20. Which tool will only work on publicly traded companies?
A. EDGAR
B. NSlookup
C. Netcraft
D. Whois
Answers to Review Questions
1. D. The four Internet registries are ARIN (American Registry of Internet Numbers), RIPE
NCC (Europe, the Middle East, and parts of Central Asia), LACNIC (Latin American and
Caribbean Internet Addresses Registry), and APNIC (Asia Pacific Network Information
Centre).
2. A. Whois is the only tool listed that won’t trigger an IDS alert or otherwise be detected by
an organization.
3. A, B, E. Whois, Sam Spade, and NSlookup are all used to passively gather information
about a target. NMAP and SuperScan are host and network scanning tools.
4. A. According to CEH methodology, scanning occurs after footprinting. Enumeration and
system hacking are performed after footprinting. Bypassing an IDS would occur later in the
hacking cycle.
5. A, B, C, D. Newsgroups, job postings, company websites, and press releases are all good
sources for information gathering.
6. D. Traceroute uses the TTL values to determine how many hops the router is from the
sender. Each router decrements the TTL by one under normal conditions.
7. B. Footprinting is gathering information about a target organization. Footprinting is not
scanning a target network or mapping the physical layout of a target network.
8. A. NSlookup queries a DNS server for DNS records such as hostnames and IP addresses.
9. A. Of the choices listed here, shoulder surfing is considered a type of social engineering.
10. B. Calling a help desk and convincing them to reset a password for a user account is an
example of social engineering. Holding open a door and installing a keylogger are examples of
physical access intrusions. Accessing a database with a cracked password is system hacking.
11. D. Employee training and education is the best way to prevent a social-engineering attack.
12. A. When a hacker pretends to be a person of authority in order to get a user to ask them
for information, it’s an example of reverse social engineering.
13. B. Pop-up windows are a method of getting information from a user utilizing a computer.
The other options do not require access to a computer.
14. A. Impersonation involves a hacker pretending to be a valid user on the system.
15. C. Security policies remove the employee’s responsibility to make judgments regarding a
potential social-engineering attack.
16. B. Website faking is a form of computer-based social-engineering attack because it requires
a computer to perpetuate the attack.
17. A. Dumpster diving is a human-based social-engineering attack because it is performed by
a human being.
18. D. The Netcraft website will attempt to determine the operating system and web server
type of a target.
19. C. Whois will list a contact name address and phone number for a given website.
20. A. EDGAR is the SEC database of filings and will only work on publicly traded firms.