CEH-001 GAQM Certified Ethical Hacker (CEH) exact Exam Questions

Certified Ethical Hacker (CEH)

Last Update 17 hours ago Total Questions : 878

The Certified Ethical Hacker (CEH) content is now fully updated, with all current exam questions added 17 hours ago. Deciding to include CEH-001 practice exam questions in your study plan goes far beyond basic test preparation.

You'll find that our CEH-001 exam questions frequently feature detailed scenarios and practical problem-solving exercises that directly mirror industry challenges. Engaging with these CEH-001 sample sets allows you to effectively manage your time and pace yourself, giving you the ability to finish any Certified Ethical Hacker (CEH) practice test comfortably within the allotted time.

Question # 181

Which of the following Netcat commands would be used to perform a UDP scan of the lower 1024 ports?

Netcat -h -U

Netcat -hU < host(s. >

Netcat -sU -p 1-1024 < host(s. >

Netcat -u -v -w2 < host > 1-1024

Netcat -sS -O target/1024

Question # 182

Which of the following are well know password-cracking programs?(Choose all that apply.

L0phtcrack

NetCat

Jack the Ripper

Netbus

John the Ripper

Question # 183

As a securing consultant, what are some of the things you would recommend to a company to ensure DNS security? Select the best answers.

Use the same machines for DNS and other applications

Harden DNS servers

Use split-horizon operation for DNS servers

Restrict Zone transfers

Have subnet diversity between DNS servers

Question # 184

You are a Administrator of Windows server. You want to find the port number for POP3. What file would you find the information in and where?

Select the best answer.

%windir%\\etc\\services

system32\\drivers\\etc\\services

%windir%\\system32\\drivers\\etc\\services

/etc/services

%windir%/system32/drivers/etc/services

Question # 185

You want to use netcat to generate huge amount of useless network data continuously for various performance testing between 2 hosts.

Which of the following commands accomplish this?

Machine A

#yes AAAAAAAAAAAAAAAAAAAAAA | nc –v –v –l –p 2222 > /dev/null

Machine B

#yes BBBBBBBBBBBBBBBBBBBBBB | nc machinea 2222 > /dev/null

Machine A

cat somefile | nc –v –v –l –p 2222

Machine B

cat somefile | nc othermachine 2222

Machine A

nc –l –p 1234 | uncompress –c | tar xvfp

Machine B

tar cfp - /some/dir | compress –c | nc –w 3 machinea 1234

Machine A

while true : do

nc –v –l –s –p 6000 machineb 2

Machine B

while true ; do

nc –v –l –s –p 6000 machinea 2

done

Question # 186

Sniffing is considered an active attack.

True

False

Question # 187

Which of the following keyloggers cannot be detected by anti-virus or anti-spyware products?

Covert keylogger

Stealth keylogger

Software keylogger

Hardware keylogger

Question # 188

What is the algorithm used by LM for Windows2000 SAM?

MD4

DES

SHA

SSL

Question # 189

Exhibit:

Study the following log extract and identify the attack.

Hexcode Attack

Cross Site Scripting

Multiple Domain Traversal Attack

Unicode Directory Traversal Attack

Question # 190

When Jason moves a file via NFS over the company ' s network, you want to grab a copy of it by sniffing. Which of the following tool accomplishes this?

macof

webspy

filesnarf

nfscopy

Question # 191

What type of attack is shown in the following diagram?

Man-in-the-Middle (MiTM) Attack

Session Hijacking Attack

SSL Spoofing Attack

Identity Stealing Attack

Question # 192

In what stage of Virus life does a stealth virus gets activated with the user performing certain actions such as running an infected program?

Design

Elimination

Incorporation

Replication

Launch

Detection

Question # 193

Which of the following statements would NOT be a proper definition for a Trojan Horse?

An authorized program that has been designed to capture keyboard keystroke while the user is unaware of such activity being performed

An unauthorized program contained within a legitimate program. This unauthorized program performs functions unknown (and probably unwanted) by the user

A legitimate program that has been altered by the placement of unauthorized code within it; this code performs functions unknown (and probably unwanted) by the user

Any program that appears to perform a desirable and necessary function but that (because of unauthorized code within it that is unknown to the user) performs functions unknown (and definitely unwanted) by the user

Question # 194

SNMP is a connectionless protocol that uses UDP instead of TCP packets (True or False)

true

false

Question # 195

Neil is a network administrator working in Istanbul. Neil wants to setup a protocol analyzer on his network that will receive a copy of every packet that passes through the main office switch. What type of port will Neil need to setup in order to accomplish this?

Neil will have to configure a Bridged port that will copy all packets to the protocol analyzer.

Neil will need to setup SPAN port that will copy all network traffic to the protocol analyzer.

He will have to setup an Ether channel port to get a copy of all network traffic to the analyzer.

He should setup a MODS port which will copy all network traffic.

Question # 196

Which of the following type of scanning utilizes automated process of proactively identifying vulnerabilities of the computing systems present on a network?

Port Scanning

Single Scanning

External Scanning

Vulnerability Scanning

Question # 197

What does ICMP (type 11, code 0) denote?

Source Quench

Destination Unreachable

Time Exceeded

Unknown Type

Question # 198

Jack Hacker wants to break into Brown Co. ' s computers and obtain their secret double fudge cookie recipe. Jack calls Jane, an accountant at Brown Co., pretending to be an administrator from Brown Co. Jack tells Jane that there has been a problem with some accounts and asks her to verify her password with him ' ' just to double check our records. ' ' Jane does not suspect anything amiss, and parts with her password. Jack can now access Brown Co. ' s computers with a valid user name and password, to steal the cookie recipe. What kind of attack is being illustrated here?

Reverse Psychology

Reverse Engineering

Social Engineering

Spoofing Identity

Faking Identity

Question # 199

TCP SYN Flood attack uses the three-way handshake mechanism.

1. An attacker at system A sends a SYN packet to victim at system B.

2. System B sends a SYN/ACK packet to victim A.

3. As a normal three-way handshake mechanism system A should send an ACK packet to system B, however, system A does not send an ACK packet to system B. In this case client B is waiting for an ACK packet from client A.

This status of client B is called _________________

" half-closed "

" half open "

" full-open "

" xmas-open "

Question # 200

The SYN flood attack sends TCP connections requests faster than a machine can process them.

Attacker creates a random source address for each packet

SYN flag set in each packet is a request to open a new connection to the server from the spoofed IP address

Victim responds to spoofed IP address, then waits for confirmation that never arrives (timeout wait is about 3 minutes)

Victim ' s connection table fills up waiting for replies and ignores new connections

Legitimate users are ignored and will not be able to access the server

How do you protect your network against SYN Flood attacks?

SYN cookies. Instead of allocating a record, send a SYN-ACK with a carefully constructed sequence number generated as a hash of the clients IP address, port number, and other information. When the client responds with a normal ACK, that special sequence number will be included, which the server then verifies. Thus, the server first allocates memory on the third packet of the handshake, not the first.

RST cookies - The server sends a wrong SYN/ACK back to the client. The client should then generate a RST packet telling the server that something is wrong. At this point, the server knows the client is valid and will now accept incoming connections from that client normally

Check the incoming packet ' s IP address with the SPAM database on the Internet and enable the filter using ACLs at the Firewall

Stack Tweaking. TCP stacks can be tweaked in order to reduce the effect of SYN floods. Reduce the timeout before a stack frees up the memory allocated for a connection

Micro Blocks. Instead of allocating a complete connection, simply allocate a micro record of 16-bytes for the incoming SYN object

Go to page: