Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = getmirror

Pass the GAQM Information Systems Security CPEH-001 Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.

Exam CPEH-001 Premium Access

View all detail and faqs for the CPEH-001 exam

Go to Exam

697 Students Passed

84% Average Score

91% Same Questions

Viewing page 4 out of 15 pages

Viewing questions 46-60 out of questions

Questions # 46:

If there is an Intrusion Detection System (IDS) in intranet, which port scanning technique cannot be used?

Options:

Spoof Scan

TCP Connect scan

TCP SYN

Idle Scan

Questions # 47:

You want to do an ICMP scan on a remote computer using hping2. What is the proper syntax?

Options:

hping2 host.domain.com

hping2 --set-ICMP host.domain.com

hping2 -i host.domain.com

hping2 -1 host.domain.com

Questions # 48:

Which of these is capable of searching for and locating rogue access points?

Options:

HIDS

WISS

WIPS

NIDS

Questions # 49:

Cryptography is the practice and study of techniques for secure communication in the presence of third parties (called adversaries.) More generally, it is about constructing and analyzing protocols that overcome the influence of adversaries and that are related to various aspects in information security such as data confidentiality, data integrity, authentication, and non-repudiation. Modern cryptography intersects the disciplines of mathematics, computer science, and electrical engineering. Applications of cryptography include ATM cards, computer passwords, and electronic commerce.

Basic example to understand how cryptography works is given below:

Question # 49

Which of the following choices is true about cryptography?

Options:

Algorithm is not the secret, key is the secret.

Symmetric-key algorithms are a class of algorithms for cryptography that use the different cryptographic keys for both encryption of plaintext and decryption of ciphertext.

Secure Sockets Layer (SSL) use the asymmetric encryption both (public/private key pair) to deliver the shared session key and to achieve a communication way.

Public-key cryptography, also known as asymmetric cryptography, public key is for decrypt, private key is for encrypt.

Questions # 50:

To maintain compliance with regulatory requirements, a security audit of the systems on a network must be performed to determine their compliance with security policies. Which one of the following tools would most likely be used in such an audit?

Options:

Vulnerability scanner

Protocol analyzer

Port scanner

Intrusion Detection System

Questions # 51:

Risks = Threats x Vulnerabilities is referred to as the:

Options:

Risk equation

Threat assessment

BIA equation

Disaster recovery formula

Questions # 52:

Which method of password cracking takes the most time and effort?

Options:

Brute force

Rainbow tables

Dictionary attack

Shoulder surfing

Questions # 53:

Todd has been asked by the security officer to purchase a counter-based authentication system. Which of the following best describes this type of system?

Options:

A biometric system that bases authentication decisions on behavioral attributes.

A biometric system that bases authentication decisions on physical attributes.

An authentication system that creates one-time passwords that are encrypted with secret keys.

An authentication system that uses passphrases that are converted into virtual passwords.

Questions # 54:

Emil uses nmap to scan two hosts using this command.

nmap -sS -T4 -O 192.168.99.1 192.168.99.7

He receives this output:

Question # 54

What is his conclusion?

Options:

Host 192.168.99.7 is an iPad.

He performed a SYN scan and OS scan on hosts 192.168.99.1 and 192.168.99.7.

Host 192.168.99.1 is the host that he launched the scan from.

Host 192.168.99.7 is down.

Questions # 55:

An Intrusion Detection System (IDS) has alerted the network administrator to a possibly malicious sequence of packets sent to a Web server in the network's external DMZ. The packet traffic was captured by the IDS and saved to a PCAP file.

What type of network tool can be used to determine if these packets are genuinely malicious or simply a false positive?

Options:

Protocol analyzer

Intrusion Prevention System (IPS)

Network sniffer

Vulnerability scanner

Questions # 56:

The "white box testing" methodology enforces what kind of restriction?

Options:

The internal operation of a system is completely known to the tester.

Only the external operation of a system is accessible to the tester.

Only the internal operation of a system is known to the tester.

The internal operation of a system is only partly accessible to the tester.

Questions # 57:

Which of the following programming languages is most susceptible to buffer overflow attacks, due to its lack of a built-in-bounds checking mechanism?

Question # 57

Output:

Segmentation fault

Options:

Python

Java

C++

Questions # 58:

To determine if a software program properly handles a wide range of invalid input, a form of automated testing can be used to randomly generate invalid input in an attempt to crash the program.

What term is commonly used when referring to this type of testing?

Options:

Fuzzing

Randomizing

Mutating

Bounding

Questions # 59:

Bob learned that his username and password for a popular game has been compromised. He contacts the company and resets all the information. The company suggests he use two-factor authentication, which option below offers that?