Ethical Hacking MCQs | Cloud & Circular Economy Security

Master your Certified Ethical Hacker (CEH) and OSCP exams with 300+ free penetration testing MCQs and interview questions.

CEH v12 Syllabus Penetration Testing Network Security Bug Bounty Prep
« First 10 11 12 13 Last »
« Previous Page Next Page »

201. What is "ISO 56080" standard?

  • a) Security innovation impact measurement
  • b) Network penetration testing
  • c) Malware detection
  • d) Firewall configuration
Answer: A - Quantifies effectiveness of new security tools/processes.

202. Which attack exploits "Azure Arc vulnerabilities"?

  • a) Compromising hybrid cloud management endpoints
  • b) SQL injection
  • c) Cross-site scripting
  • d) DNS spoofing
Answer: A - Misconfigured Arc agents allow lateral movement across on-prem/cloud systems.

203. What is "ISO 56090" standard?

  • a) Security innovation risk management
  • b) Network segmentation
  • c) Malware analysis
  • d) Cryptographic protocols
Answer: A - Balances experimental security tools with organizational risk tolerance.

204. Which tool performs "Istio service mesh testing"?

  • a) Kube-iptables-tailer
  • b) Nmap
  • c) Wireshark
  • d) Metasploit
Answer: A - Audits Istio mTLS configurations and sidecar proxy rules.

205. What is "ISO 56099" standard?

  • a) Security innovation maturity model
  • b) Network security controls
  • c) Malware detection
  • d) Physical security
Answer: A - Assesses organizational readiness for security R&D.

206. Which attack exploits "GCP Artifact Registry vulnerabilities"?

  • a) Uploading malicious container images/helm charts
  • b) SQL injection
  • c) Cross-site scripting
  • d) DNS spoofing
Answer: A - Compromised packages execute code in CI/CD pipelines.

207. What is "ISO 59000" series?

  • a) Circular economy security standards
  • b) Network penetration testing
  • c) Malware detection
  • d) Firewall configuration
Answer: A - Includes security for sustainable IT asset lifecycle management.

208. Which tool performs "SPF/DKIM/DMARC validation"?

  • a) Dmarcian
  • b) Nmap
  • c) Wireshark
  • d) Burp Suite
Answer: A - Tests email authentication protocols against spoofing/phishing.

209. What is "ISO 59010" standard?

  • a) Security for IT asset reuse/recycling
  • b) Network segmentation
  • c) Malware analysis
  • d) Cryptographic algorithms
Answer: A - Ensures data sanitization before device resale/disposal.

210. Which attack exploits "Azure AD Conditional Access flaws"?

  • a) Bypassing MFA via trusted locations/IP spoofing
  • b) SQL injection
  • c) Cross-site scripting
  • d) DNS spoofing
Answer: A - Exploits overly permissive "named locations" or device filters.

211. What is "ISO 59020" standard?

  • a) Security for remanufactured electronics
  • b) Network security controls
  • c) Malware detection
  • d) Physical security
Answer: A - Prevents data leakage from refurbished hardware.

212. Which tool performs "TLS 1.3 vulnerability scanning"?

  • a) testssl.sh
  • b) Nmap
  • c) Wireshark
  • d) Metasploit
Answer: A - Checks for weak ciphers/certificates in modern TLS implementations.

213. What is "ISO 59030" standard?

  • a) Security for e-waste processing
  • b) Network penetration testing
  • c) Malware detection
  • d) Firewall configuration
Answer: A - Ensures secure destruction of storage media.

214. Which attack exploits "GCP BeyondCorp implementation flaws"?

  • a) Bypassing zero-trust policies via misconfigured access levels
  • b) SQL injection
  • c) Cross-site scripting
  • d) DNS spoofing
Answer: A - Exploits overly permissive "access tiers" or context-aware policies.

215. What is "ISO 59040" standard?

  • a) Security for circular supply chains
  • b) Network segmentation
  • c) Malware analysis
  • d) Cryptographic protocols
Answer: A - Protects against compromised components in reused hardware.

216. Which tool performs "Azure Sentinel query auditing"?

  • a) Stormspotter
  • b) Nmap
  • c) Wireshark
  • d) Burp Suite
Answer: A - Identifies excessive permissions in KQL queries/log analytics.

217. What is "ISO 59050" standard?

  • a) Security for product-as-a-service models
  • b) Network security controls
  • c) Malware detection
  • d) Physical security
Answer: A - Secures leased/rented IT equipment with data access controls.

218. Which attack exploits "AWS Control Tower misconfigurations"?

  • a) Bypassing guardrails via service control policy (SCP) exceptions
  • b) SQL injection
  • c) Cross-site scripting
  • d) DNS spoofing
Answer: A - Compromised SCPs allow restricted actions in member accounts.

219. What is "ISO 59060" standard?

  • a) Security for digital product passports
  • b) Network penetration testing
  • c) Malware detection
  • d) Firewall configuration
Answer: A - Secures lifecycle tracking data for hardware components.

220. Which header prevents "Cross-Origin-Resource-Sharing (CORS) preflight attacks"?

  • a) Access-Control-Max-Age
  • b) Content-Security-Policy
  • c) X-Frame-Options
  • d) Strict-Transport-Security
Answer: A - Limits caching duration of preflight responses (e.g., Access-Control-Max-Age: 600).
« First 10 11 12 13 Last »
« Previous Page Next Page »

Ethical Hacking MCQs - Master Cybersecurity & Penetration Testing | PCBooks

🔐 Preparing for CEH, OSCP, or cybersecurity interviews? Get free practice MCQs covering ethical hacking, penetration testing, network security, and cyber defense. Perfect for:

🛡️ Ethical Hacking Fundamentals MCQs

👉 Footprinting & reconnaissance techniques
👉 Scanning networks (Nmap, Nessus)
👉 System hacking methodologies
👉 Social engineering attacks

💻 Penetration Testing MCQs

🎯 Web application security tests
- SQL injection and XSS vulnerabilities
- CSRF and session hijacking defenses
🎯 Network penetration strategies
- Firewall evasion techniques
- IDS/IPS bypass methods
🎯 Wireless security assessments

🔐 Cryptography & Security MCQs

👉 Symmetric vs asymmetric encryption
👉 SSL/TLS implementation
👉 PKI infrastructure concepts
👉 GDPR compliance requirements

🚀 Start Your Cybersecurity Practice

Ethical Hacking Practice Questions →

🏆 Trusted by 70,000+ cybersecurity aspirants for CEH, CISSP, and OSCP exam success!

ethical hacking multiple choice questions with answers PDF, Top 50 ethical hacking interview questions and answers, CEH v12 MCQ questions and answers, Basic ethical hacking quiz for beginners, OSCP interview questions and answers, Penetration testing MCQ questions, Cybersecurity multiple choice questions for beginners, Top 100 cybersecurity interview questions 2024, CISSP exam questions and answers PDF, Network security MCQ with explanations, Cybersecurity quiz for freshers, Security+ SY0-701 practice questions, Cryptography MCQ questions for interviews, Web application security interview questions, SOC analyst technical interview questions, Bug bounty hunter interview questions, Cloud security MCQ questions and answers, GDPR compliance interview questions, Free ethical hacking practice questions with answers, How to prepare for cybersecurity technical interview, Best websites for cybersecurity MCQs, Scenario-based ethical hacking interview questions, Difference between XSS and CSRF MCQ