GAQM CEH-001 Online Practice Questions and Exam Preparation

GAQM CEH-001 Online Questions & Answers

• Question 261:

  Harold just got home from working at Henderson LLC where he works as an IT technician. He was able to get off early because they were not too busy. When he walks into his home office, he notices his teenage daughter on the computer, apparently chatting with someone online. As soon as she hears Harold enter the room, she closes all her windows and tries to act like she was playing a game. When Harold asks her what she was doing, she acts very nervous and does not give him a straight answer. Harold is very concerned because he does not want his daughter to fall victim to online predators and the sort. Harold doesn't necessarily want to install any programs that will restrict the sites his daughter goes to, because he doesn't want to alert her to his trying to figure out what she is doing. Harold wants to use some kind of program that will track her activities online, and send Harold an email of her activity once a day so he can see what she has been up to. What kind of software could Harold use to accomplish this?

  A. Install hardware Keylogger on her computer
  B. Install screen capturing Spyware on her computer
  C. Enable Remote Desktop on her computer
  D. Install VNC on her computer
  B. Install screen capturing Spyware on her computer

• Question 262:

  You are the CIO for Avantes Finance International, a global finance company based in Geneva. You are responsible for network functions and logical security throughout the entire corporation. Your company has over 250 servers running Windows Server, 5000 workstations running Windows Vista, and 200 mobile users working from laptops on Windows 7.

  Last week, 10 of your company's laptops were stolen from salesmen while at a conference in Amsterdam. These laptops contained proprietary company information. While doing damage assessment on the possible public relations nightmare this may become, a news story leaks about the stolen laptops and also that sensitive information from those computers was posted to a blog online.

  What built-in Windows feature could you have implemented to protect the sensitive information on these laptops?

  A. You should have used 3DES which is built into Windows
  B. If you would have implemented Pretty Good Privacy (PGP) which is built into Windows, the sensitive information on the laptops would not have leaked out
  C. You should have utilized the built-in feature of Distributed File System (DFS) to protect the sensitive information on the laptops
  D. You could have implemented Encrypted File System (EFS) to encrypt the sensitive files on the laptops
  D. You could have implemented Encrypted File System (EFS) to encrypt the sensitive files on the laptops

• Question 263:

  You find the following entries in your web log. Each shows attempted access to either root.exe or cmd.exe.

  What caused this?

  

  A. The Morris worm
  B. The PIF virus
  C. Trinoo
  D. Nimda
  E. Code Red
  F. Ping of Death
  D. Nimda

• Question 264:

  What results will the following command yielD. 'NMAP -sS -O -p 123-153 192.168.100.3'?

  A. A stealth scan, opening port 123 and 153
  B. A stealth scan, checking open ports 123 to 153
  C. A stealth scan, checking all open ports excluding ports 123 to 153
  D. A stealth scan, determine operating system, and scanning ports 123 to 153
  D. A stealth scan, determine operating system, and scanning ports 123 to 153

• Question 265:

  If a tester is attempting to ping a target that exists but receives no response or a response that states the destination is unreachable, ICMP may be disabled and the network may be using TCP. Which other option could the tester use to get a response from a host using TCP?

  A. Hping
  B. Traceroute
  C. TCP ping
  D. Broadcast ping
  A. Hping

• Question 266:

  Hayden is the network security administrator for her company, a large finance firm based in Miami. Hayden just returned from a security conference in Las Vegas where they talked about all kinds of old and new security threats; many of which she did not know of. Hayden is worried about the current security state of her company's network so she decides to start scanning the network from an external IP address. To see how some of the hosts on her network react, she sends out SYN packets to an IP range. A number of IPs responds with a SYN/ACK response. Before the connection is established she sends RST packets to those hosts to stop the session. She does this to see how her intrusion detection system will log the traffic. What type of scan is Hayden attempting here?

  A. Hayden is attempting to find live hosts on her company's network by using an XMAS scan
  B. She is utilizing a SYN scan to find live hosts that are listening on her network
  C. The type of scan, she is using is called a NULL scan
  D. Hayden is using a half-open scan to find live hosts on her network
  D. Hayden is using a half-open scan to find live hosts on her network

• Question 267:

  What is the outcome of the comm"nc -l -p 2222 | nc 10.1.0.43 1234"?

  A. Netcat will listen on the 10.1.0.43 interface for 1234 seconds on port 2222.
  B. Netcat will listen on port 2222 and output anything received to a remote connection on 10.1.0.43 port 1234.
  C. Netcat will listen for a connection from 10.1.0.43 on port 1234 and output anything received to port 2222.
  D. Netcat will listen on port 2222 and then output anything received to local interface 10.1.0.43.
  B. Netcat will listen on port 2222 and output anything received to a remote connection on 10.1.0.43 port 1234.

• Question 268:

  How does a denial-of-service attack work?

  A. A hacker prevents a legitimate user (or group of users) from accessing a service
  B. A hacker uses every character, word, or letter he or she can think of to defeat authentication
  C. A hacker tries to decipher a password by using a system, which subsequently crashes the network
  D. A hacker attempts to imitate a legitimate user by confusing a computer or even another person
  A. A hacker prevents a legitimate user (or group of users) from accessing a service

• Question 269:

  Which of the following business challenges could be solved by using a vulnerability scanner?

  A. Auditors want to discover if all systems are following a standard naming convention.
  B. A web server was compromised and management needs to know if any further systems were compromised.
  C. There is an emergency need to remove administrator access from multiple machines for an employee that quit.
  D. There is a monthly requirement to test corporate compliance with host application usage and security policies.
  D. There is a monthly requirement to test corporate compliance with host application usage and security policies.

• Question 270:

  A common technique for luring e-mail users into opening virus-launching attachments is to send messages that would appear to be relevant or important to many of their potential recipients. One way of accomplishing this feat is to make the virus-carrying messages appear to come from some type of business entity retailing sites, UPS, FEDEX, CITIBANK or a major provider of a common service.

  Here is a fraudulent e-mail claiming to be from FedEx regarding a package that could not be delivered. This mail asks the receiver to open an attachment in order to obtain the FEDEX tracking number for picking up the package. The attachment contained in this type of e-mail activates a virus.

  

  Vendors send e-mails like this to their customers advising them not to open any files attached with the mail, as they do not include attachments.

  Fraudulent e-mail and legit e-mail that arrives in your inbox contain the fedex.com as the sender of the mail.

  How do you ensure if the e-mail is authentic and sent from fedex.com?

  A. Verify the digital signature attached with the mail, the fake mail will not have Digital ID at all
  B. Check the Sender ID against the National Spam Database (NSD)
  C. Fake mail will have spelling/grammatical errors
  D. Fake mail uses extensive images, animation and flash content
  A. Verify the digital signature attached with the mail, the fake mail will not have Digital ID at all