1. Home
  2. GAQM
  3. CEH-001

GAQM CEH-001 Online Practice Questions and Exam Preparation

CEH-001 Exam Details

  • Exam Code
    :CEH-001
  • Exam Name
    :Certified Ethical Hacker (CEH)
  • Certification
    :GAQM Certifications
  • Vendor
    :GAQM
  • Total Questions
    :878 Q&As
  • Last Updated
    :May 30, 2026

GAQM CEH-001 Online Questions & Answers

  • Question 561:

    Jess the hacker runs L0phtCrack's built-in sniffer utility that grabs SMB password hashes and stores them for offline cracking. Once cracked, these passwords can provide easy access to whatever network resources the user account has access to. But Jess is not picking up hashes from the network. Why?

    A. The network protocol is configured to use SMB Signing
    B. The physical network wire is on fibre optic cable
    C. The network protocol is configured to use IPSEC
    D. L0phtCrack SMB sniffing only works through Switches and not Hubs

  • Question 562:

    Take a look at the following attack on a Web Server using obstructed URL:

    http://www.example.com/script.ext?template%2e%2e%2e%2e%2e%2f%2e%2f%65%74% 63%2f%70%61%73%73%77%64

    The request is made up of:

    %2e%2e%2f%2e%2e%2f%2e%2f% = ../../../

    %65%74%63 = etc

    %2f = /

    %70%61%73%73%77%64 = passwd

    How would you protect information systems from these attacks?

    A. Configure Web Server to deny requests involving Unicode characters.
    B. Create rules in IDS to alert on strange Unicode requests.
    C. Use SSL authentication on Web Servers.
    D. Enable Active Scripts Detection at the firewall and routers.

  • Question 563:

    What is the correct PCAP filter to capture all TCP traffic going to or from host 192.168.0.125 on port 25?

    A. tcp.src == 25 and ip.host == 192.168.0.125
    B. host 192.168.0.125:25
    C. port 25 and host 192.168.0.125
    D. tcp.port == 25 and ip.host == 192.168.0.125

  • Question 564:

    A company has made the decision to host their own email and basic web services. The administrator needs to set up the external firewall to limit what protocols should be allowed to get to the public part of the company's network. Which ports should the administrator open? (Choose three.)

    A. Port 22
    B. Port 23
    C. Port 25
    D. Port 53
    E. Port 80
    F. Port 139
    G. Port 445

  • Question 565:

    LAN Manager Passwords are concatenated to 14 bytes, and split in half. The two halves are hashed individually. If the password is 7 characters or less, than the second half of the hash is always:

    A. 0xAAD3B435B51404EE
    B. 0xAAD3B435B51404AA
    C. 0xAAD3B435B51404BB
    D. 0xAAD3B435B51404CC

  • Question 566:

    When referring to the Domain Name Service, what is denoted by a `zone'?

    A. It is the first domain that belongs to a company.
    B. It is a collection of resource records.
    C. It is the first resource record type in the SOA.
    D. It is a collection of domains.

  • Question 567:

    Which of the following can the administrator do to verify that a tape backup can be recovered in its entirety?

    A. Restore a random file.
    B. Perform a full restore.
    C. Read the first 512 bytes of the tape.
    D. Read the last 512 bytes of the tape.

  • Question 568:

    Which is the Novell Netware Packet signature level used to sign all packets ?

    B. 1
    C. 2
    D. 3

  • Question 569:

    Which of the following type of scanning utilizes automated process of proactively identifying vulnerabilities of the computing systems present on a network?

    A. Port Scanning
    B. Single Scanning
    C. External Scanning
    D. Vulnerability Scanning

  • Question 570:

    While attempting to discover the remote operating system on the target computer, you receive the following results from an nmap scan:

    Remote operating system guess: Too many signatures match to reliably guess the OS.

    Nmap run completed -- 1 IP address (1 host up) scanned in 277.483 seconds

    What should be your next step to identify the OS?

    A. Perform a firewalk with that system as the target IP
    B. Perform a tcp traceroute to the system using port 53
    C. Run an nmap scan with the -v-v option to give a better output
    D. Connect to the active services and review the banner information

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only GAQM exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CEH-001 exam preparations and GAQM certification application, do not hesitate to visit our Vcedump.com to find your solutions here.