1. Home
  2. GAQM
  3. CEH-001

Certified Ethical Hacker (CEH)

Exam Details

  • Exam Code
    :CEH-001
  • Exam Name
    :Certified Ethical Hacker (CEH)
  • Certification
    :GAQM Certifications
  • Vendor
    :GAQM
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jun 29, 2025

GAQM GAQM Certifications CEH-001 Questions & Answers

  • Question 521:

    A security consultant decides to use multiple layers of anti-virus defense, such as end user desktop anti-virus and E-mail gateway. This approach can be used to mitigate which kind of attack?

    A. Forensic attack

    B. ARP spoofing attack

    C. Social engineering attack

    D. Scanning attack

  • Question 522:

    A security policy will be more accepted by employees if it is consistent and has the support of

    A. coworkers.

    B. executive management.

    C. the security officer.

    D. a supervisor.

  • Question 523:

    Which of the following lists are valid data-gathering activities associated with a risk assessment?

    A. Threat identification, vulnerability identification, control analysis

    B. Threat identification, response identification, mitigation identification

    C. Attack profile, defense profile, loss profile

    D. System profile, vulnerability identification, security determination

  • Question 524:

    A network security administrator is worried about potential man-in-the-middle attacks when users access a corporate web site from their workstations. Which of the following is the best remediation against this type of attack?

    A. Implementing server-side PKI certificates for all connections

    B. Mandating only client-side PKI certificates for all connections

    C. Requiring client and server PKI certificates for all connections

    D. Requiring strong authentication for all DNS queries

  • Question 525:

    A penetration tester is attempting to scan an internal corporate network from the internet without alerting the border sensor. Which is the most efficient technique should the tester consider using?

    A. Spoofing an IP address

    B. Tunneling scan over SSH

    C. Tunneling over high port numbers

    D. Scanning using fragmented IP packets

  • Question 526:

    A circuit level gateway works at which of the following layers of the OSI Model?

    A. Layer 5 - Application

    B. Layer 4 - TCP

    C. Layer 3 - Internet protocol

    D. Layer 2 - Data link

  • Question 527:

    A security administrator notices that the log file of the company`s webserver contains suspicious entries: Based on source code analysis, the analyst concludes that the login.php script is vulnerable to

    A. command injection.

    B. SQL injection.

    C. directory traversal.

    D. LDAP injection.

  • Question 528:

    Which of the following is a detective control?

    A. Smart card authentication

    B. Security policy

    C. Audit trail

    D. Continuity of operations plan

  • Question 529:

    What is a successful method for protecting a router from potential smurf attacks?

    A. Placing the router in broadcast mode

    B. Enabling port forwarding on the router

    C. Installing the router outside of the network's firewall

    D. Disabling the router from accepting broadcast ping messages

  • Question 530:

    Which of the following tools will scan a network to perform vulnerability checks and compliance auditing?

    A. NMAP

    B. Metasploit

    C. Nessus

    D. BeEF

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only GAQM exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CEH-001 exam preparations and GAQM certification application, do not hesitate to visit our Vcedump.com to find your solutions here.