Back to Certified Ethical Hacker (CEH)

Introduction to Ethical Hacking

Basic principles, definitions, and scope of ethical hacking.

Covers the fundamental concepts of information security, hacking methodologies, and ethical hacking objectives, including legal and regulatory considerations.
5 minutes 5 Questions

Introduction to Ethical Hacking represents the foundation of the Certified Ethical Hacker (CEH) program. Ethical hacking involves legally attempting to penetrate systems and networks to discover security vulnerabilities that malicious hackers could exploit. The key difference between ethical and ma…

Concepts covered: Information Security Controls, Information Security Overview, Cyber Kill Chain Concepts, Hacking Concepts, Ethical Hacking Concepts, Information Security Laws and Standards

Test mode:
Start practice test
CEH - Introduction to Ethical Hacking Example Questions

Test your knowledge of Introduction to Ethical Hacking

Question 1

A penetration tester named Marcus is conducting a security assessment for a financial institution. During reconnaissance, he identifies that the target organization uses an outdated web application framework. Marcus wants to assess if the application is vulnerable to injection attacks before proceeding with more advanced techniques. He notices a login page and decides to test it by entering the string: ' OR '1'='1 -- in the username field. The application unexpectedly grants him access to the system with administrative privileges. What security concept best explains the vulnerability Marcus exploited?

Correct Answer: SQL Injection vulnerability

The correct answer is 'SQL Injection vulnerability.'

Marcus used the input string ' OR '1'='1 -- in the username field, which is a classic SQL injection attack pattern. This string manipulates the SQL query that verifies login credentials by:

1. The single quote (') closes the username string parameter in the SQL query
2. OR '1'='1 creates a condition that always evaluates to TRUE
3. The double dash (--) comments out the rest of the SQL query, including password verification

When this gets inserted into a query like:
SELECT * FROM users WHERE username='[input]' AND password='[password]'

It becomes:
SELECT * FROM users WHERE username='' OR '1'='1 -- ' AND password='[password]'

Since 1=1 is always true, this returns all user records, often granting access as the first user in the database (typically an administrator).

The other options are incorrect:
- Cross-Site Scripting (XSS) involves injecting malicious scripts into webpages viewed by others, not manipulating database queries
- Session hijacking through malformed cookies would involve stealing or forging session identifiers, not manipulating input fields
- While the result was an authentication bypass, the specific mechanism was SQL injection, not broken access controls or session management

Question 2

According to the Cyber Kill Chain model, which phase is most associated with studying a target's public information, network topology, and employee details to plan an attack?

Correct Answer: Reconnaissance

The Cyber Kill Chain model, developed by Lockheed Martin, describes the stages of a cyber attack. The first phase in this model is Reconnaissance, which is exactly what the question describes - gathering intelligence about the target by studying public information, network topology, and employee details to plan an effective attack. Reconnaissance involves passive and active information gathering techniques to identify potential targets and their vulnerabilities before launching an attack. This includes activities like social engineering research, OSINT (Open Source Intelligence), scanning, and mapping network infrastructure. The other options are incorrect because: - Weaponization is the phase where attackers create malware tailored to exploit the vulnerabilities identified during reconnaissance. - Delivery is the phase where attackers transmit the weaponized payload to the target (via email attachments, websites, USB drives, etc.). - "Installation of surveillance tools for long-term intelligence gathering" describes aspects of the Installation and Command & Control phases of the kill chain, but comes after initial access has been gained, not during the initial planning stages.

Question 3

What is the term for the practice where an ethical hacker is not told anything about the target system before testing?

Correct Answer: Black Box Testing

The correct answer is "Black Box Testing." Black Box Testing is a security assessment methodology where the ethical hacker has no prior knowledge about the internal structure, design, or implementation details of the target system. The tester approaches the system as an external attacker would, with no insider information. This approach is widely recognized in the cybersecurity industry and specifically in the Certified Ethical Hacker (CEH) curriculum as a standard testing methodology. "Zero Knowledge Assessment" sounds plausible but is not the standard industry term used for this practice in ethical hacking contexts. "Blind Penetration Protocol" is a fabricated term that is not commonly used in professional security testing environments. "Complete Obscurity Testing Methodology" is also not a recognized term in ethical hacking or penetration testing frameworks.

More Introduction to Ethical Hacking questions
88 questions (total)
Start 88 question test