GAQM CEH-001 Online Practice Questions and Exam Preparation

GAQM CEH-001 Online Questions & Answers

• Question 351:

  Harold is the senior security analyst for a small state agency in New York. He has no other security professionals that work under him, so he has to do all the security-related tasks for the agency. Coming from a computer hardware background, Harold does not have a lot of experience with security methodologies and technologies, but he was the only one who applied for the position. Harold is currently trying to run a Sniffer on the agency's network to get an idea of what kind of traffic is being passed around, but the program he is using does not seem to be capturing anything. He pours through the Sniffer's manual, but cannot find anything that directly relates to his problem. Harold decides to ask the network administrator if he has any thoughts on the problem. Harold is told that the Sniffer was not working because the agency's network is a switched network, which cannot be sniffed by some programs without some tweaking. What technique could Harold use to sniff his agency's switched network?

  A. ARP spoof the default gateway
  B. Conduct MiTM against the switch
  C. Launch smurf attack against the switch
  D. Flood the switch with ICMP packets
  A. ARP spoof the default gateway

• Question 352:

  Joseph was the Web site administrator for the Mason Insurance in New York, who's main Web site was located at www.masonins.com. Joseph uses his laptop computer regularly to administer the Web site.

  One night, Joseph received an urgent phone call from his friend, Smith. According to Smith, the main Mason Insurance web site had been vandalized! All of its normal content was removed and replaced with an attacker's message ''Hacker Message: You are dead! Freaks!

  From his office, which was directly connected to Mason Insurance's internal network, Joseph surfed to the Web site using his laptop. In his browser, the Web site looked completely intact. No changes were apparent. Joseph called a friend of his at his home to help troubleshoot the problem. The Web site appeared defaced when his friend visited using his DSL connection. So, while Smith and his friend could see the defaced page, Joseph saw the intact Mason Insurance web site. To help make sense of this problem, Joseph decided to access the Web site using his dial-up ISP. He disconnected his laptop from the corporate internal network and used his modem to dial up the same ISP used by Smith.

  After his modem connected, he quickly typed www.masonins.com in his browser to reveal the following web page:

  H@cker Mess@ge:

  Y0u @re De@d! Fre@ks!

  After seeing the defaced Web site, he disconnected his dial-up line, reconnected to the internal network, and used Secure Shell (SSH) to log in directly to the Web server. He ran Tripwire against the entire Web site, and determined that every

  system file and all the Web content on the server were intact.

  How did the attacker accomplish this hack?

  A. ARP spoofing
  B. SQL injection
  C. DNS poisoning
  D. Routing table injection
  C. DNS poisoning

• Question 353:

  A penetration tester was hired to perform a penetration test for a bank. The tester began searching for IP ranges owned by the bank, performing lookups on the bank's DNS servers, reading news articles online about the bank, watching what times the bank employees come into work and leave from work, searching the bank's job postings (paying special attention to IT related jobs), and visiting the local dumpster for the bank's corporate office. What phase of the penetration test is the tester currently in?

  A. Information reporting
  B. Vulnerability assessment
  C. Active information gathering
  D. Passive information gathering
  D. Passive information gathering

• Question 354:

  What is the problem with this ASP script (login.asp)?

  

  A. The ASP script is vulnerable to Cross Site Scripting attack
  B. The ASP script is vulnerable to Session Splice attack
  C. The ASP script is vulnerable to XSS attack
  D. The ASP script is vulnerable to SQL Injection attack
  D. The ASP script is vulnerable to SQL Injection attack

• Question 355:

  Because UDP is a connectionless protocol: (Select 2)

  A. UDP recvfrom() and write() scanning will yield reliable results
  B. It can only be used for Connect scans
  C. It can only be used for SYN scans
  D. There is no guarantee that the UDP packets will arrive at their destination
  E. ICMP port unreachable messages may not be returned successfully
  D. There is no guarantee that the UDP packets will arrive at their destination
  E. ICMP port unreachable messages may not be returned successfully

• Question 356:

  What is a successful method for protecting a router from potential smurf attacks?

  A. Placing the router in broadcast mode
  B. Enabling port forwarding on the router
  C. Installing the router outside of the network's firewall
  D. Disabling the router from accepting broadcast ping messages
  D. Disabling the router from accepting broadcast ping messages

• Question 357:

  What file system vulnerability does the following command take advantage of? type c:\anyfile.exe > c:\winnt\system32\calc.exe:anyfile.exe

  A. HFS
  B. Backdoor access
  C. XFS
  D. ADS
  D. ADS

• Question 358:

  After an attacker has successfully compromised a remote computer, what would be one of the last steps that would be taken to ensure that the compromise is not traced back to the source of the problem?

  A. Install pactehs
  B. Setup a backdoor
  C. Cover your tracks
  D. Install a zombie for DDOS
  C. Cover your tracks

• Question 359:

  Which of the following is an automated vulnerability assessment tool?

  A. Whack a Mole
  B. Nmap
  C. Nessus
  D. Kismet
  E. Jill32
  C. Nessus

• Question 360:

  What is Cygwin?

  A. Cygwin is a free C++ compiler that runs on Windows
  B. Cygwin is a free Unix subsystem that runs on top of Windows
  C. Cygwin is a free Windows subsystem that runs on top of Linux
  D. Cygwin is a X Windows GUI subsytem that runs on top of Linux GNOME environment
  B. Cygwin is a free Unix subsystem that runs on top of Windows