The Certified Ethical Hacker (CEH) exam is a challenging and understanding test that evaluates a candidate To succeed, it

In this article, we 15 free CEH practice questions with detailed answers and explanations. These questions cover a range of topics from the CEH v12 blueprint and are designed to help you test your knowledge, identify weak areas, and boost your confidence before exam day.

We have a full free platform to test you CEH v13 knowledge for free like real exam (Not only CEH, explore more like CHFI, Fortigate, F5 and many more):

Quiz – SecureValley – Master Cybersecurity, Unlock Your Potential

---

CEH Practice Questions and Answers

Question 1:

You are conducting a recognition phase for a penetration test. What tool would best help you identify open ports and services running on a target machine?

A. Nikto
B. Nmap
C. Metasploit
Aircrack-ng

Answer: B. Nmap
Explanation: Nmap is a widely used network scanner that helps identify live hosts, open ports, and running services on a target system.

---

Question 2:

Which of the following best descriptions "footprinting" in ethical hacking?

A. Operating vulnerabilities
B. Gaining unauthorised access
C. Gathering target information
D. Launching DoS attacks

Answer: C. Gathering target information
Explanation: Footprinting is the first step in the hacking process, where attackers collect as much information as possible about a target to identify potential entry points.

---

Question 3:

What type of attack causes sending multiple ICMP echo requests to a victim to overload their network?

A. Smurf attack
B. Man-in-the-middle attack
C. ARP poisoning
D. SQL injection

Answer: A. Smurf attack
Explanation: A Smurf attack waters a victim

---

Question 4:

Which tool is commonly used for password cracking in ethical hacking?

A. Wireshark
B. John the Ripper
C. Nikto
D. Netcat

Answer: B. John the Ripper
Explanation: John the Ripper is a fast password cracker wisely used in thought testing.

---

Question 5:

What is the default port number for HTTP?

A. 443
B. 21
C. 80
D. 22

Answer: C. 80
Explanation: Port 80 is the default port for HTTP web traffic, while 443 is used for HTTPS.

---

Question 6:

During a thought test, you use aircrack-ng. What type of system are you setting?

A. Web server
B. Wireless network
C. FTP server
D. Active Directory

Answer: B. Wireless network
Explanation: Aircrack-ng is used to crack WEP and WPA/WPA2 keys in Wi-Fi networks.

---

Question 7:

What kind of attack is primarily loved at exploiting vulnerabilities in a web application?

A. ARP spoofing
B. XSS
C. Packet sniffing
D. DNS spoofing

Answer: B. XSS
Explanation: Cross-Site Scripting (XSS) exploits wearnesses in web applications to inject malicious scripts into webpages.

---

Question 8:

Which of the following is an example of active information sharing?

A. Google search
B. Whois lookup
C. Port scanning
D. Social media profiling

Answer: C. Port scanning
Explanation: Port scanning directly interacts with the target system, making it an example of active information sharing.

---

Question 9:

What of these is a common method used for privilege escalation?

A. VPN tunneling
B. Buffer overflow
C. Port forwarding
D. Subnet masking

Answer: B. Buffer overflow
Explanation: Buffer overflow attacks exploit software vulnerabilities to gain higher privileges on a system.

---

Question 10:

What does the acronym "OWASP" stand for?

A. Open Web Application Security Project
B. Open Wireless Access Scanning Program
C. Online Web Attacks Security Protocol
D. Open Web Anonymous Security Platform

Answer: A. Open Web Application Security Project
Explanation: OWASP is a non-profit organization that focuses on improving web application security.

---

Question 11:

Which tool allows an attacker to set up a fake login page to capture credentials?

A. Nikto
B. Metasploit
C. Social Engineer Toolkit (SET)
D. Wireshark

Answer: C. Social Engineer Toolkit (SET)
Explanation: SET is designed to perform social engineering attacks, including phishing using fake web pages.

---

Question 12:

You are analytics packages to identify unusual network traffic. Which tool is most appropriate?

A. Netcat
B. Nmap
C. Burp Suite
D. Wireshark

Answer: D. Wireshark
Explanation: Wireshark captures and analytics network traffic to help identify security anomalies.

---

Question 13:

Which of the following techniques is used in session hijacking?

A. ARP spoofing
B. SQL injection
C. DNS enumeration
D. XSS

Answer: A. ARP spoofing
Explanation: ARPpoofing can help intercept network traffic and hijack sessions between users and servers.

---

Question 14:

What is the main purpose of thought testing?

A. To install firewalls and antivirus
B. To simulate real-world attacks and identify vulnerabilities
C. To monitor user behavior on the network
D. To encrypt all internal traffic

Answer: B. To simulate real-world attacks and identify vulnerabilities
Explanation: Thought testing mimics the actions of malicious hackers to discover weaknesses before they can be exploited.

---

Question 15:

What port is commonly used by SSH?

A. 21
B. 22
C. 25
D. 110

Answer: B. 22
Explanation: Port 22 is the standard port used by Secure Shell (SSH) for secure remote access.