0% found this document useful (0 votes)

47 views6 pages

CEH Module5 Vulnerability Analysis

Uploaded by

jared trujillo lopez

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

47 views6 pages

CEH Module5 Vulnerability Analysis

Uploaded by

jared trujillo lopez

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 6

ceh-v13 prep questions. Jorge - www.youtube.

com/@itbestpractice2741

CEH v13 Practice Questions – Module 5:

Vulnerability Analysis
1. What is the primary goal of vulnerability analysis?

• A. Exploit known vulnerabilities

• B. Discover and classify security weaknesses
• C. Perform brute-force attacks
• D. Capture network traffic

Answer: B

2. Which of the following tools is widely used for vulnerability scanning?

• A. Nmap
• B. Nikto
• C. Nessus
• D. Netcat

Answer: C

3. Which type of vulnerability is most commonly found in web applications?

• A. Buffer overflow
• B. Cross-site scripting (XSS)
• C. Open SMTP relays
• D. Open SNMP ports

Answer: B

4. Which of the following represents a false positive in vulnerability scanning?

• A. A vulnerability detected and successfully exploited

• B. A vulnerability reported that does not exist
• C. A vulnerability discovered via banner grabbing
• D. A vulnerability used in a red team exercise

Answer: B

5. Which protocol is often scanned for default community strings in vulnerability analysis?
ceh-v13 prep questions. Jorge - www.youtube.com/@itbestpractice2741

• A. FTP
• B. SMTP
• C. SNMP
• D. RDP

Answer: C

6. Which tool helps identify outdated software and patch levels?

• A. Sqlmap
• B. Nikto
• C. Nessus
• D. Wireshark

Answer: C

7. What does CVE stand for?

• A. Common Vulnerabilities Enumeration

• B. Certified Vulnerability Expert
• C. Common Vulnerabilities and Exposures
• D. Computer Vulnerability Engine

Answer: C

8. Which vulnerability scanning tool is open-source?

• A. Nexpose
• B. Burp Suite Professional
• C. OpenVAS
• D. Qualys

Answer: C

9. What is a major drawback of automated vulnerability scanners?

• A. They don’t detect any vulnerabilities

• B. They require no configuration
• C. They may produce false positives and false negatives
• D. They can only run on Linux

Answer: C
ceh-v13 prep questions. Jorge - www.youtube.com/@itbestpractice2741

10. Which of the following is a benefit of performing regular vulnerability assessments?

• A. It prevents ransomware attacks

• B. It ensures compliance and reduces risk exposure
• C. It replaces the need for antivirus
• D. It guarantees 100% security

Answer: B

11. Which component of a vulnerability report helps in prioritizing risks?

• A. IP address of the host

• B. Scanner log files
• C. CVSS score
• D. File size of the target

Answer: C

12. What is the typical first step in a vulnerability assessment process?

• A. Exploitation
• B. Information gathering
• C. Reporting
• D. Patch deployment

Answer: B

13. Which term describes a vulnerability with no known patch or fix?

• A. Open vulnerability
• B. Zero-day
• C. Known error
• D. Buffer flaw

Answer: B

14. Which of these is typically NOT a vulnerability scanning category?

• A. Credentialed scan
• B. Non-credentialed scan
• C. Heuristic scan
• D. Exploit scan
ceh-v13 prep questions. Jorge - www.youtube.com/@itbestpractice2741

Answer: D

15. Which scanning approach involves using system credentials for deeper insight?

• A. Passive scan
• B. Active scan
• C. Non-credentialed scan
• D. Credentialed scan

Answer: D

16. Which of the following vulnerabilities can lead to privilege escalation?

• A. Open DNS port

• B. Misconfigured sudo permissions
• C. Lack of TLS
• D. Incorrect NTP settings

Answer: B

17. What is the purpose of CVSS in vulnerability analysis?

• A. It encrypts the vulnerability scanner

• B. It standardizes vulnerability detection tools
• C. It provides a scoring system to prioritize vulnerabilities
• D. It tracks login attempts

Answer: C

18. Which tool focuses specifically on web application vulnerabilities?

• A. Nikto
• B. Netcat
• C. Traceroute
• D. Nmap

Answer: A

19. Which type of vulnerability would allow attackers to inject unauthorized SQL
commands?

• A. Path traversal
ceh-v13 prep questions. Jorge - www.youtube.com/@itbestpractice2741

• B. Cross-site request forgery

• C. SQL injection
• D. XSS

Answer: C

20. Which of the following is a limitation of non-credentialed scans?

• A. They require root privileges

• B. They miss internal OS-level vulnerabilities
• C. They patch vulnerabilities automatically
• D. They identify too many critical issues

Answer: B

21. Which command-line tool can be used for basic vulnerability checking via HTTP
headers?

• A. curl -I
• B. netstat
• C. dig
• D. arp

Answer: A

22. Which of the following is NOT typically included in a vulnerability report?

• A. Risk rating
• B. Suggested remediation
• C. Number of emails sent
• D. Affected systems

Answer: C

23. What is a zero false-positive vulnerability assessment?

• A. One that only runs manual scans

• B. An ideal scenario with no incorrect alerts
• C. A scanner that detects phishing attacks
• D. A credentialed scan with no results

Answer: B
ceh-v13 prep questions. Jorge - www.youtube.com/@itbestpractice2741

24. Which cloud-based tool is often used for external vulnerability analysis?

• A. OpenVAS
• B. Qualys
• C. Netcat
• D. Aircrack-ng

Answer: B

CEH Module1 Introduction To Ethical Hacking
No ratings yet
CEH Module1 Introduction To Ethical Hacking
6 pages
Lab 5
No ratings yet
Lab 5
3 pages
Iaa202 - Lab 5
No ratings yet
Iaa202 - Lab 5
3 pages
CEH Module2 Footprinting and Reconnaissance
No ratings yet
CEH Module2 Footprinting and Reconnaissance
6 pages
Lab5 IAA202 HoVietAn
No ratings yet
Lab5 IAA202 HoVietAn
2 pages
CEH Module6 System Hacking
No ratings yet
CEH Module6 System Hacking
6 pages
Lab Test TP 2024-2025-Cr
No ratings yet
Lab Test TP 2024-2025-Cr
2 pages
Lab #5
No ratings yet
Lab #5
3 pages
Dương Chí Hùng SE151235 Lab05
No ratings yet
Dương Chí Hùng SE151235 Lab05
3 pages
Lab 5
No ratings yet
Lab 5
2 pages
CEH Module3 Scanning Networks
No ratings yet
CEH Module3 Scanning Networks
6 pages
Ethical Hacking
No ratings yet
Ethical Hacking
7 pages
Lab5 IAA202
No ratings yet
Lab5 IAA202
4 pages
Lab5 LeHoangKhang SE172991 IAA202 2025
No ratings yet
Lab5 LeHoangKhang SE172991 IAA202 2025
2 pages
Lab #5: How To Identify Risks, Threats & Vulnerabilities in An It Infrastructure Using Zenmap Gui (Nmap) & Nessus® Reports
100% (1)
Lab #5: How To Identify Risks, Threats & Vulnerabilities in An It Infrastructure Using Zenmap Gui (Nmap) & Nessus® Reports
4 pages
Practice Questions For CVE
No ratings yet
Practice Questions For CVE
3 pages
OpenVAS - P
No ratings yet
OpenVAS - P
2 pages
4.vulnerability Scanning and Assessment
No ratings yet
4.vulnerability Scanning and Assessment
11 pages
Cybersecurity Vulnerability Assessment
No ratings yet
Cybersecurity Vulnerability Assessment
16 pages
Chap 5 - CEH Course 2024
No ratings yet
Chap 5 - CEH Course 2024
24 pages
IAA202 Lab5 SE140810
No ratings yet
IAA202 Lab5 SE140810
2 pages
Lab - 3.4.3 - Nguyen Duc Anh - HE182570
No ratings yet
Lab - 3.4.3 - Nguyen Duc Anh - HE182570
9 pages
IS3110 LAB 5 Assesment Worksheet
100% (1)
IS3110 LAB 5 Assesment Worksheet
6 pages
Basic Q of CPSA
No ratings yet
Basic Q of CPSA
18 pages
Lab4 IAM
No ratings yet
Lab4 IAM
3 pages
Practice Questions
No ratings yet
Practice Questions
219 pages
Lab 5: How To Identify Risks, Threats & Vulnerabilities in An It Infrastructure Using Zenmap Gui (Nmap) & Nessus® Reports
No ratings yet
Lab 5: How To Identify Risks, Threats & Vulnerabilities in An It Infrastructure Using Zenmap Gui (Nmap) & Nessus® Reports
3 pages
Lab5 IAA202
No ratings yet
Lab5 IAA202
3 pages
Unit 2 Question Answer
No ratings yet
Unit 2 Question Answer
8 pages
Lec5 Vulnerability
No ratings yet
Lec5 Vulnerability
10 pages
BR0 001 Demo
No ratings yet
BR0 001 Demo
4 pages
Certified Ethical Hacker
No ratings yet
Certified Ethical Hacker
13 pages
CEH Module 5
No ratings yet
CEH Module 5
39 pages
Nptel Ans
No ratings yet
Nptel Ans
37 pages
CEH Module9 Social Engineering
No ratings yet
CEH Module9 Social Engineering
6 pages
CS GTU Study Material Presentations Unit-3 26112020052923AM
No ratings yet
CS GTU Study Material Presentations Unit-3 26112020052923AM
37 pages
CS Unit-2 VJ
No ratings yet
CS Unit-2 VJ
35 pages
CEH Practical Notes - Module 5 PDF
No ratings yet
CEH Practical Notes - Module 5 PDF
18 pages
Assignment 5 Solutions
No ratings yet
Assignment 5 Solutions
4 pages
Sessoin20 VA Answers
No ratings yet
Sessoin20 VA Answers
9 pages
Lab 5
No ratings yet
Lab 5
4 pages
5.vulnerability Analysis
100% (1)
5.vulnerability Analysis
18 pages
Mock Test1
No ratings yet
Mock Test1
26 pages
CS Unit 3
No ratings yet
CS Unit 3
35 pages
Lab5 Iaa202
No ratings yet
Lab5 Iaa202
5 pages
Ethical Hacking - 5
No ratings yet
Ethical Hacking - 5
6 pages
Ethical 3
No ratings yet
Ethical 3
6 pages
Vulnerability Assessment
No ratings yet
Vulnerability Assessment
20 pages
Cybersecurity Fundamentals MCQ
No ratings yet
Cybersecurity Fundamentals MCQ
5 pages
Stellar Exam
No ratings yet
Stellar Exam
18 pages
Module 5
No ratings yet
Module 5
12 pages
FHBJ
No ratings yet
FHBJ
63 pages
CySA (CS0-001) Practice Exam
No ratings yet
CySA (CS0-001) Practice Exam
26 pages
CEH v12 Practice Questions
No ratings yet
CEH v12 Practice Questions
1 page
Cybersecurity Recon Techniques
No ratings yet
Cybersecurity Recon Techniques
285 pages
CEH Exam Study Guide
No ratings yet
CEH Exam Study Guide
18 pages
Types of Vulnerability Assessments
No ratings yet
Types of Vulnerability Assessments
15 pages
CS Chapter 1
No ratings yet
CS Chapter 1
13 pages
Cyberattack and Its Types
No ratings yet
Cyberattack and Its Types
10 pages
One Time Pad 1 PDF
No ratings yet
One Time Pad 1 PDF
5 pages
Computer Virus
No ratings yet
Computer Virus
2 pages
Vulnerability Management Insights
No ratings yet
Vulnerability Management Insights
3 pages
Cybersecurity Writing+Incident+Reports+-+Submission
100% (1)
Cybersecurity Writing+Incident+Reports+-+Submission
3 pages
Orange Pentest Service
No ratings yet
Orange Pentest Service
2 pages
2.1 Crypto Classic
No ratings yet
2.1 Crypto Classic
9 pages
CybersecuritySimplified Ransomware
No ratings yet
CybersecuritySimplified Ransomware
1 page
Persistent Backdoor
No ratings yet
Persistent Backdoor
9 pages
What Is Cyber Crime
No ratings yet
What Is Cyber Crime
2 pages
Vocabulary: Your Computer Is Infected With A Virus, Isn't It?
No ratings yet
Vocabulary: Your Computer Is Infected With A Virus, Isn't It?
5 pages
Ab Crypt 2 Classical Encryption
No ratings yet
Ab Crypt 2 Classical Encryption
101 pages
Message
No ratings yet
Message
1 page
The Most In-Depth Hacker's Guide (Preview)
No ratings yet
The Most In-Depth Hacker's Guide (Preview)
8 pages
2 Online Safety, Security, Ethics, and Etiquette
No ratings yet
2 Online Safety, Security, Ethics, and Etiquette
73 pages
Bock Whatsapp
100% (1)
Bock Whatsapp
4 pages
Cyber Crime - Assignment
100% (1)
Cyber Crime - Assignment
8 pages
Cyber Crime Defination, Meaning and History
100% (1)
Cyber Crime Defination, Meaning and History
42 pages
Fake vs Real Hackers Explained
No ratings yet
Fake vs Real Hackers Explained
8 pages
Malwarebytes Key
0% (1)
Malwarebytes Key
1 page
The Purple Book On Cybersecurity
No ratings yet
The Purple Book On Cybersecurity
152 pages
BK Dutta Heat Transfer 3pdf PDF Free
No ratings yet
BK Dutta Heat Transfer 3pdf PDF Free
272 pages
Diploma On Network Security
No ratings yet
Diploma On Network Security
6 pages
Understanding Cyber Threats & Attacks
No ratings yet
Understanding Cyber Threats & Attacks
32 pages
9700 Key Manager Application Manual
No ratings yet
9700 Key Manager Application Manual
13 pages
Classical Encryption Techniques: Information System Security
No ratings yet
Classical Encryption Techniques: Information System Security
54 pages
The Problem of Email Spam From Ipv6
No ratings yet
The Problem of Email Spam From Ipv6
8 pages
Cybersecurity Exam Prep Guide
No ratings yet
Cybersecurity Exam Prep Guide
2 pages
Centrify Platform Ebook
No ratings yet
Centrify Platform Ebook
26 pages
Quiz#2
No ratings yet
Quiz#2
2 pages