312-50v13 Exam Dumps - Certified Ethical Hacker Exam (CEHv13)

*REST is not a specification, tool, or framework, but instead is an architectural style for web services that serves as a communication medium between various systems on the web. *RESTful APIs, which are also known as RESTful services, are designed using REST principles and HTTP communication protocols RESTful is a collection of resources that use HTTP methods such as PUT, POST, GET, and DELETE

RESTful API: RESTful API is a RESTful service that is designed using REST principles and HTTP communication protocols. RESTful is a collection of resources that use HTTP methods such as PUT, POST, GET, and DELETE. RESTful API is also designed to make applications independent to improve the overall performance, visibility, scalability, reliability, and portability of an application. APIs with the following features can be referred to as to RESTful APIs: o Stateless: The client end stores the state of the session; the server is restricted to save data during the request processing o Cacheable: The client should save responses (representations) in the cache. This feature can enhance API performance pg. 1920 CEHv11 manual.

https://cloud.google.com/files/apigee/apigee-web-api-design-the-missing-link-ebook.pdf

The HTTP methods GET, POST, PUT or PATCH, and DELETE can be used with these templates to read, create, update, and delete description resources for dogs and their owners. This API style has become popular for many reasons. It is straightforward and intuitive, and learning this pattern is similar to learning a programming language API. APIs like this one are commonly called RESTful APIs, although they do not display all of the characteristics that define REST (more on REST later).

This falls under Requirement 8 of PCI DSS: "Identify and authenticate access to system components," which supports the objective of implementing strong access control measures.

CEH v13 Reference:

Module 20: Hacking Mobile Platforms and IoT – Compliance Standards

"PCI DSS requires unique identification for each person with access to ensure accountability and access control."

Reverse engineering is the process of analyzing compiled software to reconstruct its source code or understand its structure and functionality. In the context of mobile applications:

It involves decompiling the APK (for Android) or IPA (for iOS) files.

Analysts can inspect the disassembled or decompiled code.

The goal is to uncover logic flaws, identify hardcoded secrets, debug issues, or assess security weaknesses.

According to CEH v13:

Reverse engineering is a common security assessment method to validate code quality and investigate vulnerabilities in mobile and binary applications.

Tools like JADX, Apktool, Hopper, and Ghidra are often used.

Incorrect Options:

B. App sandboxing restricts app access to system resources; it's a protection mechanism, not an analysis method.

C. Jailbreaking is the process of removing OS restrictions, not source code analysis.

D. Social engineering manipulates human behavior, unrelated to code or binary analysis.

Reference – CEH v13 Official Courseware:

Module 17: Hacking Mobile Platforms

Section: “Mobile Application Security Testing”

Subsection: “Reverse Engineering Tools and Techniques”

=

The virus described changes its own code with each execution but still performs the same actions. This is the hallmark of a Metamorphic Virus. Unlike polymorphic viruses (which use encrypted code with a changing decryptor), metamorphic viruses rewrite their own code entirely — including their decryption and execution routines — to avoid pattern detection by antivirus software.

Key characteristics of metamorphic viruses seen in the scenario:

Mutates completely on every execution.

Keeps overall functionality identical (semantics intact).

Alters its appearance and logic flow.

From CEH v13 Courseware:

Module 6: Malware Threats → Types of Viruses and Obfuscation Techniques

CEH v13 Study Guide states:

“Metamorphic viruses modify their own code structure and appearance with each iteration, without altering their underlying behavior. This makes them more difficult to detect through signature-based mechanisms.”

Incorrect Options:

A: Polymorphic viruses encrypt themselves with a changing decryptor stub but do not change their core logic.

C: “Dravidic Virus” is not a recognized term in cybersecurity.

D: Stealth viruses hide their presence (e.g., by intercepting system calls), but do not change their code structure.

In CEH v13 Module 02: Footprinting and Reconnaissance, Dark Web Footprinting is discussed as an advanced form of reconnaissance where attackers access hidden services and data using anonymity networks such as Tor (The Onion Router), I2P, or Freenet. These networks enable access to the deep web and dark web, where unindexed, and often illicit, content resides.

Key points relevant to this scenario:

The attacker encrypted browsing traffic and navigated anonymously, which strongly implies the use of tools like Tor or VPNs to mask identity.

The attacker used specialized tools/search engines like:

Torch

Ahmia

DarkSearch

Candle

The goal was to find sensitive or hidden information in government or federal systems — a common dark web footprinting objective.

The final step involved an attack that left no trace, which aligns with using the dark web for anonymity and obfuscation.

Option Analysis:

A. Dark web footprinting

Correct. This matches the behavior described: encrypted, anonymous access to sensitive information through dark web tools.

B. VoIP footprinting ❌

Incorrect. VoIP footprinting relates to identifying vulnerabilities or metadata in Voice over IP systems, not anonymous browsing or dark web activities.

C. VPN footprinting ❌

Incorrect. While VPNs may be used as part of anonymity, VPN footprinting refers to identifying systems using VPNs — not the act of gathering data anonymously.

D. Website footprinting ❌

Incorrect. Website footprinting involves gathering information from public-facing websites, like WHOIS data, robots.txt, and HTML metadata — not hidden dark web content.

Reference from CEH v13 Study Guide and Courseware:

Module 02 – Footprinting and Reconnaissance, Section: Footprinting through Dark Web and Deep Web

CEH v13 iLabs: Using Tor and Dark Web Search Engines for Reconnaissance

CEH Engage – Phase 1 (Reconnaissance): Dark Web Intelligence Gathering