CPEH-001 Exam Questions

One advantage of an application-level firewall is the ability to

Which of the statements concerning proxy firewalls is correct?

On a Linux device, which of the following commands will start the Nessus client in the background so that the Nessus server can be configured?

Which of the following tools will scan a network to perform vulnerability checks and compliance auditing?

What is the best defense against privilege escalation vulnerability?

How can a rootkit bypass Windows 7 operating system's kernel mode, code signing policy?

Which of the following items of a computer system will an anti-virus program scan for viruses?

Which protocol and port number might be needed in order to send log messages to a log analysis tool that resides behind a firewall?

A pentester is using Metasploit to exploit an FTP server and pivot to a LAN. How will the pentester pivot using Metasploit?

What is the outcome of the comm"nc -l -p 2222 | nc 10.1.0.43 1234"?

Which of the following is a client-server tool utilized to evade firewall inspection?

Which tool is used to automate SQL injections and exploit a database by forcing a given web application to connect to another database controlled by a hacker?

Which of the following identifies the three modes in which Snort can be configured to run?

When using Wireshark to acquire packet capture on a network, which device would enable the capture of all traffic on the wire?

Which of the following programming languages is most vulnerable to buffer overflow attacks?

Smart cards use which protocol to transfer the certificate in a secure manner?

Which of the following is a hashing algorithm?

Which of the following problems can be solved by using Wireshark?

What is the correct PCAP filter to capture all TCP traffic going to or from host 192.168.0.125 on port 25?

Which tool would be used to collect wireless packet data?

Which of the following is an example of two factor authentication?

Diffie-Hellman (DH) groups determine the strength of the key used in the key exchange process. Which of the following is the correct bit size of the Diffie-Hellman (DH) group 5?

After gaining access to the password hashes used to protect access to a web based application, knowledge of which cryptographic algorithms would be useful to gain access to the app...

What statement is true regarding LM hashes?

A developer for a company is tasked with creating a program that will allow customers to update their billing and shipping information. The billing address field used is limited to...

A security analyst in an insurance company is assigned to test a new web application that will be used by clients to help them choose and apply for an insurance plan. The analyst d...

A security administrator notices that the log file of the company's webserver contains suspicious entries: Based on source code analysis, the analyst concludes that the login.php s...

Which solution can be used to emulate computer services, such as mail and ftp, and to capture information related to logins or actions?

Which command lets a tester enumerate alive systems in a class C network via ICMP using native Windows tools?

What results will the following command yield: 'NMAP -sS -O -p 123-153 192.168.100.3'?

Which of the following parameters enables NMAP's operating system detection feature?

Which of the following open source tools would be the best choice to scan a network for potential targets?

A hacker is attempting to see which IP addresses are currently active on a network. Which NMAP switch would the hacker use?

A hacker, who posed as a heating and air conditioning specialist, was able to install a sniffer program in a switched environment network. Which attack could the hacker use to snif...

Which of the following settings enables Nessus to detect when it is sending too many packets and the network pipe is approaching capacity?

How does an operating system protect the passwords used for account logins?

An attacker has been successfully modifying the purchase price of items purchased on the company's web site. The security administrators verify the web server and Oracle database h...

Which tool can be used to silently copy files from USB devices?

Which of the following is used to indicate a single-line comment in structured query language (SQL)?

A security engineer is attempting to map a company's internal network. The engineer enters in the following NMAP command: NMAP -n -sS -P0 -p 80 ***.***.**.** What type of scan is t...

What is the broadcast address for the subnet 190.86.168.0/22?

A company is using Windows Server 2003 for its Active Directory (AD). What is the most efficient way to crack the passwords for the AD users?

Which of the following does proper basic configuration of snort as a network intrusion detection system require?

How is sniffing broadly categorized?

What are the three types of authentication?

The use of technologies like IPSec can help guarantee the following: authenticity, integrity, confidentiality and

What is the main disadvantage of the scripting languages as opposed to compiled programming languages?

A botnet can be managed through which of the following?

Fingerprinting VPN firewalls is possible with which of the following tools?

What is a successful method for protecting a router from potential smurf attacks?