Certified Ethical Hacker (CEH v11) — Question 96

Infecting a system with malware and using phishing to gain credentials to a system or web application are examples of which phase of the ethical hacking methodology?

Answer options

• A. Scanning
• B. Gaining access
• C. Maintaining access
• D. Reconnaissance

Correct answer: B

Explanation

The correct answer is B, Gaining access, because this phase involves exploiting vulnerabilities to gain unauthorized access to systems. Options A (Scanning) and D (Reconnaissance) refer to earlier phases focused on gathering information, while C (Maintaining access) pertains to the phase of ensuring continued control over a compromised system.