1. Home
  2. GAQM
  3. CEH-001

GAQM CEH-001 Online Practice Questions and Exam Preparation

CEH-001 Exam Details

  • Exam Code
    :CEH-001
  • Exam Name
    :Certified Ethical Hacker (CEH)
  • Certification
    :GAQM Certifications
  • Vendor
    :GAQM
  • Total Questions
    :878 Q&As
  • Last Updated
    :May 30, 2026

GAQM CEH-001 Online Questions & Answers

  • Question 541:

    Yancey is a network security administrator for a large electric company. This company provides power for over 100, 000 people in Las Vegas. Yancey has worked for his company for over 15 years and has become very successful. One day, Yancey comes in to work and finds out that the company will be downsizing and he will be out of a job in two weeks. Yancey is very angry and decides to place logic bombs, viruses, Trojans, and backdoors all over the network to take down the company once he has left. Yancey does not care if his actions land him in jail for 30 or more years, he just wants the company to pay for what they are doing to him. What would Yancey be considered?

    A. Yancey would be considered a Suicide Hacker
    B. Since he does not care about going to jail, he would be considered a Black Hat
    C. Because Yancey works for the company currently; he would be a White Hat
    D. Yancey is a Hacktivist Hacker since he is standing up to a company that is downsizing

  • Question 542:

    Which of the following is a symmetric cryptographic standard?

    A. DSA
    B. PKI
    C. RSA
    D. 3DES

  • Question 543:

    Which of the following is a client-server tool utilized to evade firewall inspection?

    A. tcp-over-dns
    B. kismet
    C. nikto
    D. hping

  • Question 544:

    Exhibit: Study the following log extract and identify the attack.

    A. Hexcode Attack
    B. Cross Site Scripting
    C. Multiple Domain Traversal Attack
    D. Unicode Directory Traversal Attack

  • Question 545:

    Firewalk has just completed the second phase (the scanning phase) and a technician receives the output shown below. What conclusions can be drawn based on these scan results? TCP port 21 ?no response TCP port 22 ?no response TCP port 23 ?Time-to-live exceeded

    A. The firewall itself is blocking ports 21 through 23 and a service is listening on port 23 of the target host.
    B. The lack of response from ports 21 and 22 indicate that those services are not running on the destination server.
    C. The scan on port 23 passed through the filtering device. This indicates that port 23 was not blocked at the firewall.
    D. The scan on port 23 was able to make a connection to the destination host prompting the firewall to respond with a TTL error.

  • Question 546:

    How do employers protect assets with security policies pertaining to employee surveillance activities?

    A. Employers promote monitoring activities of employees as long as the employees demonstrate trustworthiness.
    B. Employers use informal verbal communication channels to explain employee monitoring activities to employees.
    C. Employers use network surveillance to monitor employee email traffic, network access, and to record employee keystrokes.
    D. Employers provide employees written statements that clearly discuss the boundaries of monitoring activities and consequences.

  • Question 547:

    Which of the following is NOT a reason 802.11 WEP encryption is vulnerable?

    A. There is no mutual authentication between wireless clients and access points
    B. Automated tools like AirSnort are available to discover WEP keys
    C. The standard does not provide for centralized key management
    D. The 24 bit Initialization Vector (IV) field is too small

  • Question 548:

    John has a proxy server on his network which caches and filters web access. He shuts down all unnecessary ports and services. Additionally, he has installed a firewall (Cisco PIX) that will not allow users to connect to any outbound ports. Jack, a network user has successfully connected to a remote server on port 80 using netcat. He could in turn drop a shell from the remote machine. Assuming an attacker wants to penetrate John's network, which of the following options is he likely to choose?

    A. Use ClosedVPN
    B. Use Monkey shell
    C. Use reverse shell using FTP protocol
    D. Use HTTPTunnel or Stunnel on port 80 and 443

  • Question 549:

    Which command line switch would be used in NMAP to perform operating system detection?

    A. -OS
    B. -sO
    C. -sP
    D. -O

  • Question 550:

    What type of port scan is shown below?

    A. Idle Scan
    B. Windows Scan
    C. XMAS Scan
    D. SYN Stealth Scan

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only GAQM exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CEH-001 exam preparations and GAQM certification application, do not hesitate to visit our Vcedump.com to find your solutions here.