Certified Ethical Hacker Study Guide 2026
Everything you need to pass the Certified Ethical Hacker exam in one place: the exam format, every topic to study, real practice questions with explanations, flashcards, and full-length practice tests. Free, no sign-up needed.
📋 Certified Ethical Hacker Exam Format at a Glance
📚 Certified Ethical Hacker Topics to Study (56)
✍️ Sample Certified Ethical Hacker Questions & Answers
1. After compromising one host, a tester uses it to attack deeper internal systems. What is this called?
Pivoting uses a compromised host as a stepping stone to reach other internal systems.
2. Which Google search operator is used to search for specific file types hosted on a target website?
The 'filetype:' Google dork operator restricts results to specific file extensions (e.g., PDF, XLS, DOC) which may expose sensitive documents.
3. A polymorphic virus evades antivirus primarily by doing what on each infection?
Polymorphic viruses mutate their code or decryption routine each time to alter their signature.
4. What distinguishes an IPS from an IDS?
An IPS is inline and can actively block or drop malicious traffic, while an IDS only detects and alerts.
5. An attacker enumerates valid usernames by observing different error messages. This is a flaw in:
Distinct responses for valid vs invalid users leak account existence (username enumeration).
6. What is the key size used by the AES algorithm in its strongest standard configuration?
AES supports 128, 192, and 256-bit keys, with 256-bit being the strongest.