GAQM CEH-001 Online Practice Questions and Exam Preparation

GAQM CEH-001 Online Questions & Answers

• Question 471:

  Neil is an IT security consultant working on contract for Davidson Avionics. Neil has been hired to audit the network of Davidson Avionics. He has been given permission to perform any tests necessary. Neil has created a fake company ID badge and uniform. Neil waits by one of the company's entrance doors and follows an employee into the office after they use their valid access card to gain entrance. What type of social engineering attack has Neil employed here?

  A. Neil has used a tailgating social engineering attack to gain access to the offices
  B. He has used a piggybacking technique to gain unauthorized access
  C. This type of social engineering attack is called man trapping
  D. Neil is using the technique of reverse social engineering to gain access to the offices of Davidson Avionics
  A. Neil has used a tailgating social engineering attack to gain access to the offices

• Question 472:

  Which of the following is an example of IP spoofing?

  A. SQL injections
  B. Man-in-the-middle
  C. Cross-site scripting
  D. ARP poisoning
  B. Man-in-the-middle

• Question 473:

  Which of the following tools are used for footprinting? (Choose four)

  A. Sam Spade
  B. NSLookup
  C. Traceroute
  D. Neotrace
  E. Cheops
  A. Sam Spade
  B. NSLookup
  C. Traceroute
  D. Neotrace

• Question 474:

  Which of the following represents the initial two commands that an IRC client sends to join an IRC network?

  A. USER, NICK
  B. LOGIN, NICK
  C. USER, PASS
  D. LOGIN, USER
  A. USER, NICK

• Question 475:

  One of your team members has asked you to analyze the following SOA record. What is the version? Rutgers.edu.SOA NS1.Rutgers.edu ipad.college.edu (200302028 3600 3600 604800 2400.

  A. 200303028
  B. 3600
  C. 604800
  D. 2400
  E. 60
  F. 4800
  A. 200303028

• Question 476:

  What are the three types of authentication?

  A. Something you: know, remember, prove
  B. Something you: have, know, are
  C. Something you: show, prove, are
  D. Something you: show, have, prove
  B. Something you: have, know, are

• Question 477:

  There is some dispute between two network administrators at your company. Your boss asks you to come and meet with the administrators to set the record straight. Which of these are true about PKI and encryption? Select the best answers.

  A. PKI provides data with encryption, compression, and restorability.
  B. Public-key encryption was invented in 1976 by Whitfield Diffie and Martin Hellman.
  C. When it comes to eCommerce, as long as you have authenticity, and authenticity, you do not need encryption.
  D. RSA is a type of encryption.
  B. Public-key encryption was invented in 1976 by Whitfield Diffie and Martin Hellman.
  D. RSA is a type of encryption.

• Question 478:

  A user on your Windows 2000 network has discovered that he can use L0phtcrack to sniff the SMB exchanges which carry user logons. The user is plugged into a hub with 23 other systems. However, he is unable to capture any logons though he knows that other users are logging in.

  What do you think is the most likely reason behind this?

  A. There is a NIDS present on that segment.
  B. Kerberos is preventing it.
  C. Windows logons cannot be sniffed.
  D. L0phtcrack only sniffs logons to web servers.
  B. Kerberos is preventing it.

• Question 479:

  The Slammer Worm exploits a stack-based overflow that occurs in a DLL implementing the Resolution Service. Which of the following Database Server was targeted by the slammer worm?

  A. Oracle
  B. MSSQL
  C. MySQL
  D. Sybase
  E. DB2
  B. MSSQL

• Question 480:

  Which of the following settings enables Nessus to detect when it is sending too many packets and the network pipe is approaching capacity?

  A. Netstat WMI Scan
  B. Silent Dependencies
  C. Consider unscanned ports as closed
  D. Reduce parallel connections on congestion
  D. Reduce parallel connections on congestion