Log in Start practising free
Certified Ethical Hacker (CEH)

System Hacking & Malware

35 free practice questions with explanations

Practise all 35 questions free →

PassNova has 35 free Certified Ethical Hacker (CEH) practice questions on System Hacking & Malware, each with a clear explanation. Practise them in the browser with instant feedback — 100% free, no sign-up, on any device. Updated for 2026.

Sample questions

System Hacking & Malware: example questions & answers

Here are 6 example questions from this topic. Practise the full set of 35 free in the browser.

  1. Which framework is most commonly used by ethical hackers to develop, test, and execute exploit code against a target?

    • A Wireshark
    • B Metasploit Framework
    • C Nikto
    • D Maltego

    Answer: The Metasploit Framework provides a modular platform of exploits, payloads, and post-exploitation tools widely used to validate vulnerabilities.

  2. After gaining a low-privileged shell, an attacker exploits a kernel flaw to gain administrative rights. What is this stage called?

    • A Lateral movement
    • B Privilege escalation
    • C Footprinting
    • D Covering tracks

    Answer: Privilege escalation is the act of moving from a lower-privileged account to higher (e.g., root or SYSTEM) privileges, often by abusing a vulnerability or misconfiguration.

  3. Which technique attempts to recover plaintext passwords by hashing every possible character combination until a match is found?

    • A Dictionary attack
    • B Brute-force attack
    • C Rainbow-table attack
    • D Pass-the-hash attack

    Answer: A brute-force attack systematically tries every possible combination of characters, guaranteeing success eventually but at high computational cost.

  4. In a pass-the-hash attack, what does the attacker actually use to authenticate?

    • A The user's plaintext password
    • B The captured NTLM password hash, without ever cracking it
    • C A valid Kerberos TGT only
    • D The user's biometric data

    Answer: Pass-the-hash reuses a captured NTLM hash directly for authentication, so the attacker never needs to recover the plaintext password.

  5. Which type of malware disguises itself as legitimate software but delivers a malicious payload when executed?

    • A Trojan horse
    • B Logic bomb
    • C Rootkit
    • D Worm

    Answer: A Trojan horse appears to be a benign or useful program but conceals malicious functionality that activates once the user runs it.

  6. What distinguishes a worm from a virus?

    • A A worm self-replicates and spreads across networks without needing a host file or user action
    • B A worm can only run on Linux systems
    • C A worm always encrypts files for ransom
    • D A worm requires a user to open an email attachment to spread

    Answer: A worm is self-propagating malware that spreads across networks on its own, whereas a virus must attach to a host file and typically relies on user action to execute.

Start practising System Hacking & Malware →
More Certified Ethical Hacker (CEH) topics

Practise another topic

Footprinting & Reconnaissance35 questions Scanning & Enumeration34 questions Wireless, Cryptography & Cloud34 questions Sniffing, Social Engineering & DoS34 questions Web, Application & SQL Injection Attacks28 questions
← Back to Certified Ethical Hacker (CEH)