Certified Ethical Hacker (CEH v13) — Question 258
Lewis, a professional hacker, targeted the IoT cameras and devices used by a target venture-capital firm. He used an information-gathering tool to collect information about the IoT devices connected to a network, open ports and services, and the attack surface area. Using this tool, he also generated statistical reports on broad usage patterns and trends. This tool helped Lewis continually monitor every reachable server and device on the Internet, further allowing him to exploit these devices in the network.
Which of the following tools was employed by Lewis in the above scenario?
Answer options
- A. NeuVector
- B. Lacework
- C. Censys
- D. Wapiti
Correct answer: C
Explanation
The correct answer is C, Censys, as it is designed for collecting data on devices connected to the internet, including open ports and services, which fits Lewis's actions. NeuVector and Lacework focus more on container security and cloud security respectively, while Wapiti is a web application vulnerability scanner, which doesn't align with the description of monitoring IoT devices and networks.