Certified Ethical Hacker (CEH v11) — Question 343

Lewis, a professional hacker, targeted the IoT cameras and devices used by a target venture-capital firm. He used an information-gathering tool to collect information about the IoT devices connected to a network, open ports and services, and the attack surface area. Using this tool, he also generated statistical reports on broad usage patterns and trends. This tool helped Lewis continually monitor every reachable server and device on the Internet, further allowing him to exploit these devices in the network.
Which of the following tools was employed by Lewis in the above scenario?

Answer options

• A. NeuVector
• B. Lacework
• C. Censys
• D. Wapiti

Correct answer: C

Explanation

Censys is a tool designed for scanning and monitoring devices on the Internet, collecting data on open ports, services, and usage patterns, making it the correct choice. NeuVector and Lacework focus more on container security and cloud security respectively, while Wapiti is primarily a web application vulnerability scanner, thus they do not fit the scenario described.