π Cyber Security
100 Ethical Hacking Quiz Questions & Answers 2026
Kali Linux, Metasploit, penetration testing, OWASP, SQL injection and hacking tools
Ready to test your knowledge?
Take the Quiz β
Ethical Hacking Fundamentals β 25 Questions
- What is ethical hacking? (Authorized testing of systems to find vulnerabilities before malicious actors)
- What are the three types of hackers? (White hat β ethical; Black hat β malicious; Gray hat β between)
- What is penetration testing? (Simulated attack with permission to identify security weaknesses)
- What are the 5 phases of ethical hacking? (Reconnaissance, Scanning, Gaining Access, Maintaining Access, Covering Tracks)
- What is reconnaissance? (Information gathering about target β passive and active)
- What is passive reconnaissance? (Gathering info without interacting with target β OSINT)
- What is active reconnaissance? (Directly interacting with target β port scanning, ping sweeps)
- What is OSINT? (Open Source Intelligence β using publicly available information)
- What is a vulnerability assessment? (Identifying and quantifying security vulnerabilities)
- What is threat modeling? (Identifying and prioritizing potential threats to a system)
- What is a scope of engagement? (Agreed boundaries of what a pentester is authorized to test)
- What is a report in pentesting? (Documentation of findings, risks, and recommendations)
- What is CVSS? (Common Vulnerability Scoring System β rates vulnerability severity 0-10)
- What is CVE? (Common Vulnerabilities and Exposures β unique IDs for known vulnerabilities)
- What is a payload? (Code that executes on a target system after exploitation)
Hacking Tools & Techniques β 25 Questions
- What is Kali Linux? (Penetration testing Linux distribution with pre-installed security tools)
- What is Metasploit? (Framework for developing, testing, and executing exploits)
- What is Nmap? (Network scanner for port scanning and host discovery)
- What is Wireshark? (Network protocol analyzer for capturing and analyzing traffic)
- What is Burp Suite? (Web security testing platform for finding web app vulnerabilities)
- What is John the Ripper? (Password cracking tool)
- What is Hashcat? (Advanced password recovery tool)
- What is Hydra? (Network login cracker for brute force attacks)
- What is Aircrack-ng? (WiFi security auditing tools)
- What is SQLmap? (Automated tool for detecting and exploiting SQL injection)
- What is a port scan? (Checking which ports are open on a target host)
- What is a reverse shell? (Compromised system connects back to attacker)
- What is privilege escalation? (Gaining higher permissions than initially obtained)
- What is lateral movement? (Moving through a network after initial compromise)
- What is pivoting? (Using compromised host as gateway to attack internal network)
β Frequently Asked Questions
What is the difference between ethical and malicious hacking?
Ethical (white hat) hacking is authorized β performed with permission to find and fix vulnerabilities. Malicious (black hat) hacking is unauthorized and illegal. Gray hat hackers fall in between.
What certifications do ethical hackers pursue?
Top certifications: CEH (Certified Ethical Hacker), OSCP (Offensive Security Certified Professional), CompTIA Security+, CISSP, and eJPT. OSCP is considered the gold standard for practical hacking skills.
π― Practice Quizzes β Cyber Security
Ready to test what you learned? Pick a quiz below and challenge yourself:
Ready to Test Your Cyber Security Knowledge?
Take our Cyber Security quiz and see how you rank against players worldwide!