Weekend Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = simple70

Home
GAQM
Information Systems Security
CPEH-001
Certified Professional Ethical Hacker (CPEH) Questions and Answers

Pass the GAQM Information Systems Security CPEH-001 Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.

Exam CPEH-001 Premium Access

View all detail and faqs for the CPEH-001 exam

Go to Exam

340 Students Passed

96% Average Score

98% Same Questions

Viewing page 1 out of 15 pages

Viewing questions 1-15 out of questions

Questions # 1:

If the final set of security controls does not eliminate all risk in a system, what could be done next?

Options:

Continue to apply controls until there is zero risk.

Ignore any remaining risk.

If the residual risk is low enough, it can be accepted.

Remove current controls since they are not completely effective.

Answer

Questions # 2:

One way to defeat a multi-level security solution is to leak data via

Options:

a bypass regulator.

steganography.

a covert channel.

asymmetric routing.

Answer

Questions # 3:

While checking the settings on the internet browser, a technician finds that the proxy server settings have been checked and a computer is trying to use itself as a proxy server. What specific octet within the subnet does the technician see?

Options:

10.10.10.10

127.0.0.1

192.168.1.1

192.168.168.168

Answer

Questions # 4:

A botnet can be managed through which of the following?

Options:

IRC

E-Mail

Linkedin and Facebook

A vulnerable FTP server

Answer

Questions # 5:

Which of the following settings enables Nessus to detect when it is sending too many packets and the network pipe is approaching capacity?

Options:

Netstat WMI Scan

Silent Dependencies

Consider unscanned ports as closed

Reduce parallel connections on congestion

Answer

Questions # 6:

A person approaches a network administrator and wants advice on how to send encrypted email from home. The end user does not want to have to pay for any license fees or manage server services. Which of the following is the most secure encryption protocol that the network administrator should recommend?

Options:

IP Security (IPSEC)

Multipurpose Internet Mail Extensions (MIME)

Pretty Good Privacy (PGP)

Hyper Text Transfer Protocol with Secure Socket Layer (HTTPS)

Answer

Questions # 7:

Which type of access control is used on a router or firewall to limit network activity?

Options:

Mandatory

Discretionary

Rule-based

Role-based

Answer

Questions # 8:

John the Ripper is a technical assessment tool used to test the weakness of which of the following?

Options:

Usernames

File permissions

Firewall rulesets

Passwords

Answer

Questions # 9:

What is the correct PCAP filter to capture all TCP traffic going to or from host 192.168.0.125 on port 25?

Options:

tcp.src == 25 and ip.host == 192.168.0.125

host 192.168.0.125:25

port 25 and host 192.168.0.125

tcp.port == 25 and ip.host == 192.168.0.125

Answer

Questions # 10:

During a wireless penetration test, a tester detects an access point using WPA2 encryption. Which of the following attacks should be used to obtain the key?

Options:

The tester must capture the WPA2 authentication handshake and then crack it.

The tester must use the tool inSSIDer to crack it using the ESSID of the network.

The tester cannot crack WPA2 because it is in full compliance with the IEEE 802.11i standard.

The tester must change the MAC address of the wireless network card and then use the AirTraf tool to obtain the key.

Answer

Questions # 11:

Firewalk has just completed the second phase (the scanning phase) and a technician receives the output shown below. What conclusions can be drawn based on these scan results?

Question # 11

Options:

The firewall itself is blocking ports 21 through 23 and a service is listening on port 23 of the target host.

The lack of response from ports 21 and 22 indicate that those services are not running on the destination server.

The scan on port 23 passed through the filtering device. This indicates that port 23 was not blocked at the firewall.

The scan on port 23 was able to make a connection to the destination host prompting the firewall to respond with a TTL error.

Answer

Questions # 12:

Which of the following business challenges could be solved by using a vulnerability scanner?

Options:

Auditors want to discover if all systems are following a standard naming convention.

A web server was compromised and management needs to know if any further systems were compromised.

There is an emergency need to remove administrator access from multiple machines for an employee that quit.

There is a monthly requirement to test corporate compliance with host application usage and security policies.

Answer

Questions # 13:

A security consultant decides to use multiple layers of anti-virus defense, such as end user desktop anti-virus and E-mail gateway. This approach can be used to mitigate which kind of attack?

Options:

Forensic attack

ARP spoofing attack

Social engineering attack

Scanning attack

Answer

Questions # 14:

What is one thing a tester can do to ensure that the software is trusted and is not changing or tampering with critical data on the back end of a system it is loaded on?