Certified Ethical Hacker (CEH v11) — Question 137

In an internal security audit, the white hat hacker gains control over a user account and attempts to acquire access to another account's confidential files and information. How can he achieve this?

Answer options

• A. Privilege Escalation
• B. Shoulder-Surfing
• C. Hacking Active Directory
• D. Port Scanning

Correct answer: A

Explanation

Privilege Escalation is the correct answer because it allows the hacker to gain higher access rights, enabling them to access confidential files of another account. Shoulder-Surfing is the act of observing someone to gather information, while Hacking Active Directory pertains to compromising the directory service but does not directly imply accessing another user's files. Port Scanning is a network reconnaissance technique and does not involve account access.