Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = getmirror

Pass the GAQM Certified Ethical Hacker CEH CEH-001 Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.

Exam CEH-001 Premium Access

View all detail and faqs for the CEH-001 exam

Go to Exam

796 Students Passed

86% Average Score

93% Same Questions

Viewing page 4 out of 14 pages

Viewing questions 61-80 out of questions

Questions # 61:

There is a WEP encrypted wireless access point (AP) with no clients connected. In order to crack the WEP key, a fake authentication needs to be performed. What information is needed when performing fake authentication to an AP? (Choose two.)

Options:

The IP address of the AP

The MAC address of the AP

The SSID of the wireless network

A failed authentication packet

Questions # 62:

Which type of scan is used on the eye to measure the layer of blood vessels?

Options:

Facial recognition scan

Retinal scan

Iris scan

Signature kinetics scan

Questions # 63:

An attacker has been successfully modifying the purchase price of items purchased on the company's web site. The security administrators verify the web server and Oracle database have not been compromised directly. They have also verified the Intrusion Detection System (IDS) logs and found no attacks that could have caused this. What is the mostly likely way the attacker has been able to modify the purchase price?

Options:

By using SQL injection

By changing hidden form values

By using cross site scripting

By utilizing a buffer overflow attack

Questions # 64:

An engineer is learning to write exploits in C++ and is using the exploit tool Backtrack. The engineer wants to compile the newest C++ exploit and name it calc.exe. Which command would the engineer use to accomplish this?

Options:

g++ hackersExploit.cpp -o calc.exe

g++ hackersExploit.py -o calc.exe

g++ -i hackersExploit.pl -o calc.exe

g++ --compile –i hackersExploit.cpp -o calc.exe

Questions # 65:

A circuit level gateway works at which of the following layers of the OSI Model?

Options:

Layer 5 - Application

Layer 4 – TCP

Layer 3 – Internet protocol

Layer 2 – Data link

Questions # 66:

How is sniffing broadly categorized?

Options:

Active and passive

Broadcast and unicast

Unmanaged and managed

Filtered and unfiltered

Questions # 67:

A majority of attacks come from insiders, people who have direct access to a company's computer system as part of their job function or a business relationship. Who is considered an insider?

Options:

A competitor to the company because they can directly benefit from the publicity generated by making such an attack

Disgruntled employee, customers, suppliers, vendors, business partners, contractors, temps, and consultants

The CEO of the company because he has access to all of the computer systems

A government agency since they know the company's computer system strengths and weaknesses

Questions # 68:

Oregon Corp is fighting a litigation suit with Scamster Inc. Oregon has assigned a private investigative agency to go through garbage, recycled paper, and other rubbish at Scamster's office site in order to find relevant information. What would you call this kind of activity?

Options:

CI Gathering

Scanning

Dumpster Diving

Garbage Scooping

Questions # 69:

During a penetration test, the tester conducts an ACK scan using NMAP against the external interface of the DMZ firewall. NMAP reports that port 80 is unfiltered. Based on this response, which type of packet inspection is the firewall conducting?

Options:

Host

Stateful

Stateless

Application

Questions # 70:

On a Linux device, which of the following commands will start the Nessus client in the background so that the Nessus server can be configured?

Options:

nessus +

nessus *s

nessus &

nessus -d

Questions # 71:

Web servers are often the most targeted and attacked hosts on organizations' networks. Attackers may exploit software bugs in the Web server, underlying operating system, or active content to gain unauthorized access.

Question # 71

Identify the correct statement related to the above Web Server installation?

Options:

Lack of proper security policy, procedures and maintenance

Bugs in server software, OS and web applications

Installing the server with default settings

Unpatched security flaws in the server software, OS and applications

Questions # 72:

Which type of scan measures a person's external features through a digital video camera?

Options:

Iris scan

Retinal scan

Facial recognition scan

Signature kinetics scan

Questions # 73:

June, a security analyst, understands that a polymorphic virus has the ability to mutate and can change its known viral signature and hide from signature-based antivirus programs. Can June use an antivirus program in this case and would it be effective against a polymorphic virus?

Options:

Yes. June can use an antivirus program since it compares the parity bit of executable files to the database of known check sum counts and it is effective on a polymorphic virus

Yes. June can use an antivirus program since it compares the signatures of executable files to the database of known viral signatures and it is very effective against a polymorphic virus

No. June can't use an antivirus program since it compares the signatures of executable files to the database of known viral signatures and in the case the polymorphic viruses cannot be detected by a signature-based anti-virus program

No. June can't use an antivirus program since it compares the size of executable files to the database of known viral signatures and it is effective on a polymorphic virus

Questions # 74:

You want to perform advanced SQL Injection attack against a vulnerable website. You are unable to perform command shell hacks on this server. What must be enabled in SQL Server to launch these attacks?

Options:

System services

EXEC master access

xp_cmdshell

RDC

Questions # 75:

Passive reconnaissance involves collecting information through which of the following?

Options:

Social engineering

Network traffic sniffing

Man in the middle attacks

Publicly accessible sources

Questions # 76:

Bank of Timbuktu is a medium-sized, regional financial institution in Timbuktu. The bank has deployed a new Internet-accessible Web application recently. Customers can access their account balances, transfer money between accounts, pay bills and conduct online financial business using a Web browser.

John Stevens is in charge of information security at Bank of Timbuktu. After one month in production, several customers have complained about the Internet enabled banking application. Strangely, the account balances of many of the bank's customers had been changed! However, money hasn't been removed from the bank; instead, money was transferred between accounts. Given this attack profile, John Stevens reviewed the Web application's logs and found the following entries:

Question # 76

What kind of attack did the Hacker attempt to carry out at the bank?

Options:

Brute force attack in which the Hacker attempted guessing login ID and password from password cracking tools.

The Hacker attempted Session hijacking, in which the Hacker opened an account with the bank, then logged in to receive a session ID, guessed the next ID and took over Jason's session.

The Hacker used a generator module to pass results to the Web server and exploited Web application CGI vulnerability.

The Hacker first attempted logins with suspected user names, then used SQL Injection to gain access to valid bank login IDs.