GAQM CEH-001 Online Practice Questions and Exam Preparation

GAQM CEH-001 Online Questions & Answers

• Question 671:

  WWW wanderers or spiders are programs that traverse many pages in the World Wide Web by recursively retrieving linked pages. Search engines like Google, frequently spider web pages for indexing. How will you stop web spiders from crawling certain directories on your website?

  A. Place robots.txt file in the root of your website with listing of directories that you don't want to be crawled
  B. Place authentication on root directories that will prevent crawling from these spiders
  C. Enable SSL on the restricted directories which will block these spiders from crawling
  D. Place "HTTP:NO CRAWL" on the html pages that you don't want the crawlers to index
  A. Place robots.txt file in the root of your website with listing of directories that you don't want to be crawled

• Question 672:

  Exhibit: You have captured some packets in Ethereal. You want to view only packets sent from 10.0.0.22. What filter will you apply?

  

  A. ip = 10.0.0.22
  B. ip.src == 10.0.0.22
  C. ip.equals 10.0.0.22
  D. ip.address = 10.0.0.22
  B. ip.src == 10.0.0.22

• Question 673:

  An organization hires a tester to do a wireless penetration test. Previous reports indicate that the last test did not contain management or control packets in the submitted traces. Which of the following is the most likely reason for lack of management or control packets?

  A. The wireless card was not turned on.
  B. The wrong network card drivers were in use by Wireshark.
  C. On Linux and Mac OS X, only 802.11 headers are received in promiscuous mode.
  D. Certain operating systems and adapters do not collect the management or control packets.
  D. Certain operating systems and adapters do not collect the management or control packets.

• Question 674:

  An ethical hacker for a large security research firm performs penetration tests, vulnerability tests, and risk assessments. A friend recently started a company and asks the hacker to perform a penetration test and vulnerability assessment of the new company as a favor. What should the hacker's next step be before starting work on this job?

  A. Start by foot printing the network and mapping out a plan of attack.
  B. Ask the employer for authorization to perform the work outside the company.
  C. Begin the reconnaissance phase with passive information gathering and then move into active information gathering.
  D. Use social engineering techniques on the friend's employees to help identify areas that may be susceptible to attack.
  B. Ask the employer for authorization to perform the work outside the company.

• Question 675:

  An Nmap scan shows the following open ports, and nmap also reports that the OS guessing results to match too many signatures hence it cannot reliably be identified: 21 ftp 23 telnet 80 http 443 https What does this suggest?

  A. This is a Windows Domain Controller
  B. The host is not firewalled
  C. The host is not a Linux or Solaris system
  D. The host is not properly patched
  C. The host is not a Linux or Solaris system

• Question 676:

  How do you defend against Privilege Escalation?

  A. Use encryption to protect sensitive data
  B. Restrict the interactive logon privileges
  C. Run services as unprivileged accounts
  D. Allow security settings of IE to zero or Low
  E. Run users and applications on the least privileges
  A. Use encryption to protect sensitive data
  B. Restrict the interactive logon privileges
  C. Run services as unprivileged accounts
  E. Run users and applications on the least privileges

• Question 677:

  Annie has just succeeded in stealing a secure cookie via a XSS attack. She is able to replay the cookie even while the session is invalid on the server. Why do you think this is possible?

  A. It works because encryption is performed at the application layer (single encryption key)
  B. The scenario is invalid as a secure cookie cannot be replayed
  C. It works because encryption is performed at the network layer (layer 1 encryption)
  D. Any cookie can be replayed irrespective of the session status
  A. It works because encryption is performed at the application layer (single encryption key)

• Question 678:

  A Buffer Overflow attack involves:

  A. Using a trojan program to direct data traffic to the target host's memory stack
  B. Flooding the target network buffers with data traffic to reduce the bandwidth available to legitimate users
  C. Using a dictionary to crack password buffers by guessing user names and passwords
  D. Poorly written software that allows an attacker to execute arbitrary code on a target system
  D. Poorly written software that allows an attacker to execute arbitrary code on a target system

• Question 679:

  A company has hired a security administrator to maintain and administer Linux and Windows-based systems. Written in the nightly report file is the followinG.

  Firewall log files are at the expected value of 4 MB. The current time is 12am. Exactly two hours later the size has decreased considerably. Another hour goes by and the log files have shrunk in size again.

  Which of the following actions should the security administrator take?

  A. Log the event as suspicious activity and report this behavior to the incident response team immediately.
  B. Log the event as suspicious activity, call a manager, and report this as soon as possible.
  C. Run an anti-virus scan because it is likely the system is infected by malware.
  D. Log the event as suspicious activity, continue to investigate, and act according to the site's security policy.
  D. Log the event as suspicious activity, continue to investigate, and act according to the site's security policy.

• Question 680:

  A security engineer is attempting to map a company's internal network. The engineer enters in the following NMAP commanD.

  NMAP S 0 80 ***.***.**.**

  What type of scan is this?

  A. Quick scan
  B. Intense scan
  C. Stealth scan
  D. Comprehensive scan
  C. Stealth scan