Features
- Covers all the critical information students need to know to score higher on the updated CEH exam
- Addresses all exam objectives associated with ethical hacking and penetration testing
- Assumes no prior knowledge: those without experience can obtain the real-world knowledge to succeed
- Designed to help students rapidly assess where they stand, and quickly master what they need to learn
- Includes test-taking strategies, time-saving tips, Exam Notes, and two full practice exams
- Copyright 2022
- Dimensions: 6" x 9"
- Pages: 448
- Edition: 1st
-
Book
- ISBN-10: 0-13-751344-5
- ISBN-13: 978-0-13-751344-4
CEH Certified Ethical Hacker Exam Cram is the perfect study guide to help you pass the updated CEH exam. Dr. Chuck Easttom's expert real-world approach reflects both his expertise as one of the world's leading cybersecurity practitioners and instructors, as well as test-taking insights he has gained from teaching CEH preparation courses worldwide, including courses taught directly for EC-Council. Easttom assumes no prior knowledge: his expert coverage of every exam topic can help readers with little ethical hacking experience to obtain the knowledge they need to succeed.
Covers the critical information you'll need to score higher on your CEH exam!
- Review the core principles and concepts of ethical hacking
- Perform key pre-attack tasks, including reconnaissance and footprinting
- Master enumeration, vulnerability scanning, and vulnerability analysis
- Learn system hacking methodologies, how to cover your tracks, and more
- Utilize modern malware threats, including ransomware and financial malware
- Exploit packet sniffing and social engineering
- Master denial of service and session hacking attacks, tools, and countermeasures
- Evade security measures, including IDS, firewalls, and honeypots
- Hack web servers and applications, and perform SQL injection attacks
- Compromise wireless and mobile systems, from wireless encryption to recent Android exploits
- Hack Internet of Things (IoT) and Operational Technology (OT) devices and systems
- Attack cloud computing systems, misconfigurations, and containers
- Use cryptanalysis tools and attack cryptographic systems
Certified Ethical Hacker (CEH) Exam Cram, Premium Edition eBook and Practice Test
The exciting new Certified Ethical Hacker (CEH) Exam Cram, Premium Edition eBook and Practice Test is a digital-only certification preparation product combining an eBook with an enhanced Pearson IT Certification Practice Test. The Premium Edition eBook and Practice Test contains the following items:
- The Certified Ethical Hacker (CEH) Exam Cram Premium Edition Practice Test, including four full practice exams and enhanced practice test features
- PDF and EPUB formats of the Certified Ethical Hacker (CEH) Exam Cram from Pearson IT Certification, accessible via your PC, tablet, and smartphone
About the Premium Edition Practice TestThis Premium Edition contains an enhanced version of the Pearson IT Certification Practice Test (PCPT) software with four full practice exams. In addition, it contains all the chapter-opening assessment questions from the book. This integrated learning package:
- Allows you to focus on individual topic areas or take complete, timed exams
- Includes direct links from each question to detailed tutorials to help you understand the concepts behind the questions
- Provides unique sets of exam-realistic practice questions
- Tracks your performance and provides feedback on a module-by-module basis, laying out a complete assessment of your knowledge to help you focus your study where it is needed most
Pearson IT Certification Practice Test minimum system requirements:Online system requirements:Browsers: Chrome version 73 and above, Safari version 12 and above, Microsoft Edge 44 and above.Devices: Desktop and laptop computers, tablets running Android v8.0 and above or iPad OS v13 and above, smartphones running Android v8.0 and above or iOS v13 and above with a minimum screen size of 4.7.
Offline system requirements:Windows 10, Windows 8.1; Microsoft .NET Framework 4.5 Client; Pentium-class 1 GHz processor (or equivalent); 512 MB RAM; 650 MB disk space plus 50 MB for each downloaded practice exam; access to the Internet to register and download exam databases.
About the Premium Edition eBookCertified Ethical Hacker (CEH) Exam Cram, Premium Edition eBook and Practice Test focuses specifically on the objectives for Version 11 of the CEH exam. Its expert real-world approach reflects Dr. Chuck Easttom's expertise as one of the world's leading cybersecurity practitioners and instructors, plus test-taking insights he has gained from teaching CEH preparation courses worldwide. Easttom assumes no prior knowledge: His expert coverage of every exam topic can help readers with little ethical hacking experience to obtain the knowledge to succeed.
This guide's extensive preparation tools include topic overviews, exam alerts, CramSavers, CramQuizzes, chapter-ending review questions, author notes and tips, an extensive glossary, and the handy CramSheet tear-out: key facts in an easy-to-review format. Powerful Pearson Test Prep practice test software offers hundreds of exam-realistic practice questions, with many customization and reporting features: test yourself in study mode, practice exam mode, or flash card mode.
Certified Ethical Hacker (CEH) Exam Cram, Premium Edition eBook and Practice Test helps you master all topics on CEH Exam Version 11:
- Review the core principles and concepts of ethical hacking
- Perform key pre-attack tasks, including reconnaissance and footprinting
- Master enumeration, vulnerability scanning, and vulnerability analysis
- Learn system hacking methodologies, how to cover your tracks, and more
- Utilize modern malware threats, including ransomware and financial malware
- Exploit packet sniffing and social engineering
- Master denial of service and session hacking attacks, tools, and countermeasures
- Evade security measures, including IDS, firewalls, and honeypots
- Hack web servers and applications, and perform SQL injection attacks
- Compromise wireless and mobile systems, from wireless encryption to recent Android exploits
- Hack Internet of Things (IoT) and Operational Technology (OT) devices and systems
- Attack cloud computing systems, misconfigurations, and containers
- Use cryptanalysis tools and attack cryptographic systems
Online Sample Chapter
Denial of Service and Session Hijacking
Sample Pages
Download the sample pages (includes Chapter 6)
Table of Contents
Introduction. . . . . . . . . . . . . . . . . . . . . . . xx
CHAPTER 1:
Reconnaissance and Scanning.. . . . . . . . . . . . . . . . . 1
Reconnaissance Types.. . . . . . . . . . . . . . . . . . 1
Active Reconnaissance Techniques. . . . . . . . . . . . . . 22
What Next?.. . . . . . . . . . . . . . . . . . . . . 32
CHAPTER 2:
Enumeration and Vulnerability Scanning.. . . . . . . . . . . . . 33
Scanning.. . . . . . . . . . . . . . . . . . . . . . 33
Scanning Process.. . . . . . . . . . . . . . . . . . . 43
Network Packet Capture.. . . . . . . . . . . . . . . . . 52
Vulnerability Scanning. . . . . . . . . . . . . . . . . . 57
What Next?.. . . . . . . . . . . . . . . . . . . . . 63
CHAPTER 3:
System Hacking. . . . . . . . . . . . . . . . . . . . . . 65
CEH Methodology.. . . . . . . . . . . . . . . . . . . 65
Pass the Hash.. . . . . . . . . . . . . . . . . . . . . 73
Spyware. . . . . . . . . . . . . . . . . . . . . . . 79
What Next?.. . . . . . . . . . . . . . . . . . . . . 92
CHAPTER 4:
Malware.. . . . . . . . . . . . . . . . . . . . . . . . 93
Malware Types.. . . . . . . . . . . . . . . . . . . . 94
Viruses. . . . . . . . . . . . . . . . . . . . . . . 108
Protecting Against Malware.. . . . . . . . . . . . . . . . 115
What Next?.. . . . . . . . . . . . . . . . . . . . . 122
CHAPTER 5:
Packet Sniffing and Social Engineering.. . . . . . . . . . . . . 123
Social Engineering.. . . . . . . . . . . . . . . . . . . 123
Packet Sniffing.. . . . . . . . . . . . . . . . . . . . 138
What Next?.. . . . . . . . . . . . . . . . . . . . . 150
CHAPTER 6:
Denial of Service and Session Hijacking.. . . . . . . . . . . . . 151
Denial of Service. . . . . . . . . . . . . . . . . . . . 151
Session Hijacking.. . . . . . . . . . . . . . . . . . . 165
What Next?.. . . . . . . . . . . . . . . . . . . . . 172
CHAPTER 7:
Evading Security Measures. . . . . . . . . . . . . . . . . . 173
Intrusion Detection Systems. . . . . . . . . . . . . . . . 173
Firewalls and Honeypots.. . . . . . . . . . . . . . . . . 183
Virtual Private Networks.. . . . . . . . . . . . . . . . . 189
IDS Evasion Techniques.. . . . . . . . . . . . . . . . . 192
Firewall Evasion Techniques. . . . . . . . . . . . . . . . 198
What Next?.. . . . . . . . . . . . . . . . . . . . . 204
CHAPTER 8:
Hacking Web Servers and Web Applications.. . . . . . . . . . . 205
Web Servers.. . . . . . . . . . . . . . . . . . . . . 205
Web Applications.. . . . . . . . . . . . . . . . . . . 214
What Next?.. . . . . . . . . . . . . . . . . . . . . 232
CHAPTER 9:
Hacking Wireless.. . . . . . . . . . . . . . . . . . . . . 233
Wireless Technology.. . . . . . . . . . . . . . . . . . 233
Hacking Wireless.. . . . . . . . . . . . . . . . . . . 245
What Next?.. . . . . . . . . . . . . . . . . . . . . 258
CHAPTER 10:
Hacking Mobile.. . . . . . . . . . . . . . . . . . . . . . 259
Mobile Technologies.. . . . . . . . . . . . . . . . . . 259
Mobile Threats. . . . . . . . . . . . . . . . . . . . 274
What Next?.. . . . . . . . . . . . . . . . . . . . . 282
CHAPTER 11:
IOT and OT Hacking. . . . . . . . . . . . . . . . . . . . 283
IoT Fundamentals. . . . . . . . . . . . . . . . . . . 283
What Next?.. . . . . . . . . . . . . . . . . . . . . 308
CHAPTER 12:
Cloud Computing and Hacking.. . . . . . . . . . . . . . . . 309
Cloud Fundamentals.. . . . . . . . . . . . . . . . . . 309
What Next?.. . . . . . . . . . . . . . . . . . . . . 331
CHAPTER 13:
Cryptography. . . . . . . . . . . . . . . . . . . . . . . 333
Cryptography Concepts.. . . . . . . . . . . . . . . . . 333
PKI. . . . . . . . . . . . . . . . . . . . . . . . 349
Cryptographic Attacks.. . . . . . . . . . . . . . . . . . 357
What Next?.. . . . . . . . . . . . . . . . . . . . . 365
Glossary.. . . . . . . . . . . . . . . . . . . . . . . . 367
Index. . . . . . . . . . . . . . . . . . . . . . . . . . 391
12/7/2021, TOC, 978137513444