Certified Ethical Hacker (CEH v12) — Question 45

Infecting a system with malware and using phishing to gain credentials to a system or web application are examples of which phase of the ethical hacking methodology?

Answer options

• A. Scanning
• B. Gaining access
• C. Maintaining access
• D. Reconnaissance

Correct answer: B

Explanation

The correct answer is B, as 'Gaining access' refers to the phase where an attacker exploits vulnerabilities to enter a system. Options A (Scanning) and D (Reconnaissance) relate to gathering information and identifying targets, while C (Maintaining access) deals with keeping access once it has been established.