attention, and to wrap up terms EC-Council throws into
this section—but these questions are all supposed to be
about the pen test itself. We’ve already covered the nuts
and bolts, so now we’re going to spend some time on the
finished product. And, of course, you will see most of
this material on your exam. I just hope you’ll be so
ready for it by then it’ll be like Michelangelo wiping the
dust off his last polishing of the statue of David.
STUDY TIPS This chapter is, by design, a little bit of a wrap-up.
There are things here that just don’t seem to fit elsewhere, or that
needed special attention, away from the clutter of the original EC-
Council chapter they were stuck in. Most of this generally boils down
to basic m em orization. While that m ay sound easy enough to y ou, I
think y ou’ll find that some of these term s are so closely related that
questions on the exam referencing them will be confusing at the v ery
least—and m ost likely rage-inducing by the tim e the exam ends. Pay
close attention to risk m anagement terminology —y ou’ll definitely see
a few questions on it in y our exam . Another area y ou’ll probably see at
least a couple questions on is the ethics of being a professional, ethical
hacker. Adm ittedly , som e of these will be tough to answer, as real-
world and EC-Council CEH definitions don’t alw ay s coincide, but
hopefully we’ll hav e enough information here to get y ou through.
Lastly, as I’ve said before, it’s sometimes easier to
eliminate wrong answers than it is to choose the correct
one. When you’re looking at one of these questions that
seems totally out of left field, spend your time
eliminating the choices you know aren’t correct.
Eventually all that’s left must be the correct answer.
After all, the mechanism scoring the test doesn’t care