1. Home
  2. GAQM
  3. CEH-001

GAQM CEH-001 Online Practice Questions and Exam Preparation

CEH-001 Exam Details

  • Exam Code
    :CEH-001
  • Exam Name
    :Certified Ethical Hacker (CEH)
  • Certification
    :GAQM Certifications
  • Vendor
    :GAQM
  • Total Questions
    :878 Q&As
  • Last Updated
    :May 30, 2026

GAQM CEH-001 Online Questions & Answers

  • Question 481:

    Which property ensures that a hash function will not produce the same hashed value for two different messages?

    A. Collision resistance
    B. Bit length
    C. Key strength
    D. Entropy

  • Question 482:

    What is the IV key size used in WPA2?

    A. 32
    B. 24
    C. 16
    D. 48
    E. 128

  • Question 483:

    Which of the following steganography utilities exploits the nature of white space and allows the user to conceal information in these white spaces?

    A. Image Hide
    B. Snow
    C. Gif-It-Up
    D. NiceText

  • Question 484:

    Tess King is using the nslookup command to craft queries to list all DNS information (such as Name Servers, host names, MX records, CNAME records, glue records (delegation for child Domains), zone serial number, TimeToLive (TTL) records, etc) for a Domain. What do you think Tess King is trying to accomplish? Select the best answer.

    A. A zone harvesting
    B. A zone transfer
    C. A zone update
    D. A zone estimate

  • Question 485:

    When setting up a wireless network, an administrator enters a pre-shared key for security. Which of the following is true?

    A. The key entered is a symmetric key used to encrypt the wireless data.
    B. The key entered is a hash that is used to prove the integrity of the wireless data.
    C. The key entered is based on the Diffie-Hellman method.
    D. The key is an RSA key used to encrypt the wireless data.

  • Question 486:

    Eric has discovered a fantastic package of tools named Dsniff on the Internet. He has learnt to use these tools in his lab and is now ready for real world exploitation. He was able to effectively intercept communications between the two entities and establish credentials with both sides of the connections. The two remote ends of the communication never notice that Eric is relaying the information between the two.

    What would you call this attack?

    A. Interceptor
    B. Man-in-the-middle
    C. ARP Proxy
    D. Poisoning Attack

  • Question 487:

    Bubba has just accessed he preferred ecommerce web site and has spotted an item that he would like to buy. Bubba considers the price a bit too steep. He looks at the source code of the webpage and decides to save the page locally, so that he can modify the page variables. In the context of web application security, what do you think Bubba has changes?

    A. A hidden form field value.
    B. A hidden price value.
    C. An integer variable.
    D. A page cannot be changed locally, as it is served by a web server.

  • Question 488:

    Buffer X in an Accounting application module for Brownies Inc. can contain 200 characters. The programmer makes an assumption that 200 characters are more than enough. Because there were no proper boundary checks being conducted, Bob decided to insert 400 characters into the 200-character buffer. (Overflows the buffer). Below is the code snippet: How can you protect/fix the problem of your application as shown above?

    A. Because the counter starts with 0, we would stop when the counter is less than 200
    B. Because the counter starts with 0, we would stop when the counter is more than 200
    C. Add a separate statement to signify that if we have written less than 200 characters to the buffer, the stack should stop because it cannot hold any more data
    D. Add a separate statement to signify that if we have written 200 characters to the buffer, the stack should stop because it cannot hold any more data

  • Question 489:

    An attacker has been successfully modifying the purchase price of items purchased on the company's web site. The security administrators verify the web server and Oracle database have not been compromised directly. They have also verified the Intrusion Detection System (IDS) logs and found no attacks that could have caused this. What is the mostly likely way the attacker has been able to modify the purchase price?

    A. By using SQL injection
    B. By changing hidden form values
    C. By using cross site scripting
    D. By utilizing a buffer overflow attack

  • Question 490:

    In an attempt to secure his wireless network, Bob implements a VPN to cover the wireless communications. Immediately after the implementation, users begin complaining about how slow the wireless network is. After benchmarking the network's speed. Bob discovers that throughput has dropped by almost half even though the number of users has remained the same.

    Why does this happen in the VPN over wireless implementation?

    A. The stronger encryption used by the VPN slows down the network.
    B. Using a VPN with wireless doubles the overhead on an access point for all direct client to access point communications.
    C. VPNs use larger packets then wireless networks normally do.
    D. Using a VPN on wireless automatically enables WEP, which causes additional overhead.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only GAQM exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CEH-001 exam preparations and GAQM certification application, do not hesitate to visit our Vcedump.com to find your solutions here.