Free Practice Questions for CertiProf CEHPC Exam

Answer : A

Comprehensive and Detailed 250 to 300 words of Explanation From Ethical Hacking documents: A Public IP address is a unique numerical label assigned to every device that connects directly to the global internet. These addresses are managed globally by ICANN and distributed to users via Internet Service Providers (ISPs). Unlike private IP addresses, which are used within a local network (LAN) and are not routable on the internet, a public IP address is visible to the entire world and serves as a digital 'mailing address' for sending and receiving data across the web.

In a typical home or office setup, the ISP assigns one public IP address to the router/modem. The router then uses a process called Network Address Translation (NAT) to share that single public IP among multiple internal devices (laptops, smartphones, IoT devices), each of which has its own private IP address. This is why when you search 'What is my IP' on multiple devices in the same house, they all show the same public address.

From an ethical hacking perspective, identifying the public IP of a target is a critical step in the reconnaissance phase. It defines the external 'boundary' of the target's network. Most active recognition techniques, such as port scanning with Nmap, are directed at the public IP to see which services (like web servers or VPN gateways) are exposed to the internet. Understanding the distinction between public and private IPs is essential for troubleshooting connections, configuring firewalls, and setting up reverse shells during a penetration test.

Answer : A

Comprehensive and Detailed 250 to 300 words of Explanation From Ethical Hacking documents: Open-Source Intelligence (OSINT) refers to the collection and analysis of information that is gathered from public or 'open' sources. In the context of ethical hacking and digital investigations, Sherlock is a powerful, terminal-based tool specifically designed to hunt for social media accounts and profiles associated with a specific username or email address. When a researcher has a target email or username, they can run Sherlock to see where else that identity exists across hundreds of different websites.

The tool works by rapidly querying hundreds of social media platforms (such as Twitter, Instagram, GitHub, Reddit, and many niche sites) to see if a profile with that specific name exists. This is vital for building a 'digital profile' of a target. For instance, an ethical hacker might find a target's professional profile on LinkedIn and then discover their personal interests or technical discussions on Reddit or GitHub. These various profiles can provide clues for password guessing, identify software the person uses, or provide a 'pretext' for a social engineering attack.

Unlike 'Seeker,' which is often used for high-accuracy geolocation phishing, or 'Shodan,' which is a search engine for internet-connected devices (the 'Google of IoT'), Sherlock is focused on human identity and cross-platform presence. It automates a process that would otherwise take hours of manual searching. From a security standpoint, tools like Sherlock illustrate why it is important for users to be mindful of their 'digital footprint' and to avoid using the same unique username across both sensitive and public accounts.

Answer : C

Comprehensive and Detailed 250 to 300 words of Explanation From Ethical Hacking documents: The Metasploit Framework is a vast repository containing thousands of exploits, payloads, and auxiliary modules. Navigating this extensive database effectively is critical during the 'Exploitation' phase of a penetration test. The primary command used to locate a specific module within the msfconsole is search. This command allows a tester to query the database using keywords related to a specific vulnerability, software name, or CVE (Common Vulnerabilities and Exposures) identifier.

The search command is highly flexible and supports various filters to narrow down results. For example, a tester can search by platform (e.g., search platform:windows), module type (e.g., search type:exploit), or even by the 'rank' of the exploit to find the most reliable ones (e.g., search rank:excellent). Once a list of matching modules is returned, the tester identifies the one that best matches the target's specific service version and operating system.

After finding the correct exploit through the search command, the tester then uses the use command followed by the module path to select it for configuration. Searching is a foundational skill because it allows an ethical hacker to quickly pivot from a vulnerability identified during the 'Scanning' phase to the corresponding exploit in the Metasploit database. Without a robust search capability, identifying the correct payload among thousands of possibilities would be nearly impossible. Mastering this command ensures efficiency and precision, which are essential when operating within the defined time limits of a professional security engagement.

Answer : C

Comprehensive and Detailed 250 to 300 words of Explanation From Ethical Hacking documents:

While Kali Linux is the most widely recognized platform for penetration testing, Parrot OS is a major contemporary security trend in the cybersecurity community. Parrot OS is a Debian-based distribution that, like Kali, comes pre-loaded with a vast array of tools for security auditing, digital forensics, and reverse engineering. It is frequently cited as a lighter, more user-friendly alternative that focuses heavily on privacy and anonymity, featuring built-in tools for routing traffic through the Tor network.

In the landscape of modern security trends, the choice of an operating system often depends on the specific requirements of the pentest. Parrot OS is designed to be highly portable and efficient on hardware with limited resources, making it a popular choice for 'Security on the Go.' It provides a 'Home' edition for daily use and a 'Security' edition tailored specifically for professional hackers. Other notable mentions in this category include BlackArch and BackBox, but Parrot OS remains one of the top contenders alongside Kali Linux for industry professionals.

Understanding these different platforms is crucial for an ethical hacker, as each offers different desktop environments and tool configurations. For example, while Kali is built for offensive operations, Parrot often places more emphasis on the developer's needs, including pre-installed compilers and IDEs alongside hacking tools. Using these specialized Linux distributions allows testers to work in a stable, standardized environment where tools are pre-configured to handle the complexities of network exploitation. By staying current with these trends, security professionals can ensure they are using the most efficient and up-to-date environments available to identify and mitigate vulnerabilities in increasingly complex digital infrastructures.

Answer : C

Kali Linux is based on Debian, making option C the correct answer. Debian is a stable, secure, and widely used Linux distribution known for its reliability and extensive package management system.

Kali Linux builds upon Debian's architecture and package repositories, adding hundreds of preinstalled tools specifically designed for penetration testing, digital forensics, and security auditing. Ethical hackers rely on Kali because it provides a ready-to-use environment for professional security assessments.

Option A is incorrect because Ubuntu, while also Debian-based, is not the direct base of Kali Linux. Option B is incorrect because Arch Linux uses a completely different package management and system design.

Understanding the base operating system is important for ethical hackers because it affects system administration, package management, and security updates. Kali uses Debian's APT package manager, which allows consistent updates and reliable tool maintenance.

Knowing Kali's Debian foundation helps professionals troubleshoot issues, manage dependencies, and maintain secure environments during penetration testing engagements.