CPEH-001 Exam Questions

An attacker has installed a RAT on a host. The attacker wants to ensure that when a user Which file does the attacker need to modify?

Which of the following options represents a conceptual characteristic of an anomaly-based IDS over a signature-based IDS?

You are logged in as a local admin on a Windows 7 system and you need to launch the Computer Management Console from command line. Which command would you use?

You have the SOA presented below in your Zone. Your secondary servers have not been able to contact your primary server to synchronize information. How long will the secondary serv...

Tess King is using the nslookup command to craft queries to list all DNS information (such as Name Servers, host names, MX records, CNAME records, glue records (delegation for chil...

A zone file consists of which of the following Resource Records (RRs)?

Let's imagine three companies (A, B and C), all competing in a challenging global environment. Company A and B are working together in developing a product that will generate a maj...

Which DNS resource record can indicate how long any "DNS poisoning" could last?

From the following table, identify the wrong answer in terms of Range (ft).

What would you enter, if you wanted to perform a stealth scan using Nmap?

You are doing an internal security audit and intend to find out what ports are open on all the servers. What is the best way to find out?

Steve, a scientist who works in a governmental security agency, developed a technological solution to identify people based on walking patterns and implemented this approach to a p...

Which Intrusion Detection System is the best applicable for large environments where critical assets on the network need extra security and is ideal for observing sensitive network...

Which of the following is a serious vulnerability in the popular OpenSSL cryptographic software library? This weakness allows stealing the information protected, under normal condi...

Which protocol is used for setting up secure channels between two devices, typically in VPNs?

Which of the following Secure Hashing Algorithm (SHA) produces a 160-bit digest from a message with a maximum length of (264-1) bits and resembles the MD5 algorithm?

Bob, a system administrator at TPNQM SA, concluded one day that a DMZ is not needed if he properly configures the firewall to allow access just to servers/ports, which can have dir...

Sam is working as s pen-tester in an organization in Houston. He performs penetration testing on IDS in order to find the different ways an attacker uses to evade the IDS. Sam send...

Cross-site request forgery involves:

What does the option * indicate?

An Internet Service Provider (ISP) has a need to authenticate users connecting via analog modems, Digital Subscriber Lines (DSL), wireless data services, and Virtual Private Networ...

What network security concept requires multiple layers of security controls to be placed throughout an IT infrastructure, which improves the security posture of an organization to...

During the process of encryption and decryption, what keys are shared?

How does the Address Resolution Protocol (ARP) work?

Which mode of IPSec should you use to assure security and confidentiality of data within the same LAN?

Which of the following act requires employer's standard national numbers to identify them on standard transactions?

In Wireshark, the packet bytes panes show the data of the current packet in which format?

_________ is a set of extensions to DNS that provide to DNS clients (resolvers) origin authentication of DNS data to reduce the threat of DNS poisoning, spoofing, and similar attac...

PGP, SSL, and IKE are all examples of which type of cryptography?

Which of the following is considered as one of the most reliable forms of TCP scanning?

Which of the following scanning method splits the TCP header into several packets and makes it difficult for packet filters to detect the purpose of the packet?

Which of the following is the BEST way to defend against network sniffing?

You perform a scan of your company's network and discover that TCP port 123 is open. What services by default run on TCP port 123?

Based on the below log, which of the following sentences are true? Mar 1, 2016, 7:33:28 AM 10.240.250.23 ?54373 10.249.253.15 - 22 tcp_ip

You have successfully comprised a server having an IP address of 10.10.0.5. You would like to enumerate all machines in the same network quickly. What is the best nmap command you...

........is an attack type for a rogue Wi-Fi access point that appears to be a legitimate one offered on the premises, but actually has been set up to eavesdrop on wireless communic...

DNS cache snooping is a process of determining if the specified resource address is present in the DNS cache records. It may be useful during the examination of the network to dete...

You are working as a Security Analyst in a company XYZ that owns the whole subnet range of 23.0.0.0/8 and 192.168.0.0/8. While monitoring the data, you find a high number of outbou...

Which of the following is an adaptive SQL Injection testing technique used to discover coding errors by inputting massive amounts of random data and observing the changes in the ou...

Some clients of TPNQM SA were redirected to a malicious site when they tried to access the TPNQM main site. Bob, a system administrator at TPNQM SA, found that they were victims of...

In which of the following password protection technique, random strings of characters are added to the password before calculating their hashes?

You have successfully gained access to a Linux server and would like to ensure that the succeeding outgoing traffic from this server will not be caught by Network-Based Intrusion D...

What is the purpose of a demilitarized zone on a network?

You need to deploy a new web-based software package for your organization. The package requires three separate servers and needs to be available on the Internet. What is the recomm...

The security administrator of ABC needs to permit Internet traffic in the host 10.0.0.2 and UDP traffic in the host 10.0.0.3. He also needs to permit all FTP traffic to the rest of...

When conducting a penetration test, it is crucial to use all means to get all available information about the target network. One of the ways to do that is by sniffing the network....

A company's Web development team has become aware of a certain type of security vulnerability in their Web software. To mitigate the possibility of this vulnerability being exploit...

You want to do an ICMP scan on a remote computer using hping2. What is the proper syntax?

If executives are found liable for not properly protecting their company's assets and information systems, what type of law would apply in this situation?

The company ABC recently contracted a new accountant. The accountant will be working with the financial statements. Those financial statements need to be approved by the CFO and th...