CPEH-001 Exam Questions

An attacker, using a rogue wireless AP, performed an MITM attack and injected an HTML code to embed a malicious applet in all HTTP connections. When users accessed any page, the ap...

You are monitoring the network of your organizations. You notice that: There are huge outbound connections from your Internal Network to External IPs On further investigation, you...

Security Policy is a definition of what it means to be secure for a system, organization or other entity. For Information Technologies, there are sub-policies like Computer Securit...

Which of the following antennas is commonly used in communications for a frequency band of 10 MHz to VHF and UHF?

Why should the security analyst disable/remove unnecessary ISAPI filters?

Which of the following security policies defines the use of VPN for gaining access to an internal corporate network?

To determine if a software program properly handles a wide range of invalid input, a form of automated testing can be used to randomly generate invalid input in an attempt to crash...

If you want only to scan fewer ports than the default scan using Nmap tool, which option would you use?

In Risk Management, how is the term "likelihood" related to the concept of "threat?"

Which of the following statements is TRUE?

What is the least important information when you analyze a public IP address in a security alert?

You are the Network Admin, and you get a compliant that some of the websites are no longer accessible. You try to ping the servers and find them to be reachable. Then you type the...

Internet Protocol Security IPSec is actually a suite of protocols. Each protocol within the suite provides different functionality. Collective IPSec does everything except.

On performing a risk assessment, you need to determine the potential impacts when some of the critical business process of the company interrupt its service. What is the name of th...

Assume a business-crucial web-site of some company that is used to sell handsets to the customers worldwide. All the developed components are reviewed by the security team on a mon...

Bob finished a C programming course and created a small C application to monitor the network traffic and produce alerts when any origin sends "many" IP packets, based on the averag...

Which of the following is a low-tech way of gaining unauthorized access to systems?

When tuning security alerts, what is the best approach?

In an internal security audit, the white hat hacker gains control over a user account and attempts to acquire access to another account's confidential files and information. How ca...

Which regulation defines security and privacy controls for Federal information systems and organizations?

Your company performs penetration tests and security assessments for small and medium-sized business in the local area. During a routine security assessment, you discover informati...

You are a security officer of a company. You had an alert from IDS that indicates that one PC on your Intranet is connected to a blacklisted IP address (C2 Server) on the Internet....

Identify the UDP port that Network Time Protocol (NTP) uses as its primary means of communication?

It has been reported to you that someone has caused an information spillage on their computer. You go to the computer, disconnect it from the network, remove the keyboard and mouse...

Which of the following cryptography attack is an understatement for the extraction of cryptographic secrets (e.g. the password to an encrypted file) from a person by a coercion or...

In cryptanalysis and computer security, 'pass the hash' is a hacking technique that allows an attacker to authenticate to a remote server/service by using the underlying NTLM and/o...

You are looking for SQL injection vulnerability by sending a special character to web applications. Which of the following is the most useful for quick validation?

A virus that attempts to install itself inside the file it is infecting is called?

While examining audit logs, you discover that people are able to telnet into the SMTP server on port 25. You would like to block this, though you do not see any evidence of an atta...

Windows LAN Manager (LM) hashes are known to be weak. Which of the following are known weaknesses of LM? (Choose three)

Fingerprinting an Operating System helps a cracker because:

In the context of Windows Security, what is a 'null' user?

What does the following command in netcat do? nc -l -u -p55555 < /etc/passwd

What hacking attack is challenge/response authentication used to prevent?

In this attack, a victim receives an e-mail claiming from PayPal stating that their account has been disabled and confirmation is required before activation. The attackers then sca...

Bob is going to perform an active session hijack against Brownies Inc. He has found a target that allows session oriented connections (Telnet) and performs the sequence prediction...

This TCP flag instructs the sending system to transmit all buffered data immediately.

The network administrator at Spears Technology, Inc has configured the default gateway Cisco router's access-list as below: You are hired to conduct security testing on their netwo...

You work for Acme Corporation as Sales Manager. The company has tight network security restrictions. You are trying to steal data from the company's Sales database (Sales.xls) and...

Study the snort rule given below and interpret the rule. alert tcp any any --> 192.168.1.0/24 111 (content:"|00 01 86 a5|"; msG. "mountd access";)

What port number is used by LDAP protocol?

Fred is the network administrator for his company. Fred is testing an internal switch. From an external IP address, Fred wants to try and trick this switch into thinking it already...

Within the context of Computer Security, which of the following statements describes Social Engineering best?

What is a NULL scan?

What is the proper response for a NULL scan if the port is open?

Which of the following statements about a zone transfer correct? (Choose three.)

An unauthorized individual enters a building following an employee through the employee entrance after the lunch rush. What type of breach has the individual just performed?

Which of the following is the best countermeasure to encrypting ransomwares?

If an attacker uses the command SELECT*FROM user WHERE name = `x' AND userid IS NULL; --`; which type of SQL injection attack is the attacker performing?

Sophia travels a lot and worries that her laptop containing confidential documents might be stolen. What is the best protection that will work for her?