1. Home
  2. GAQM
  3. CEH-001

GAQM CEH-001 Online Practice Questions and Exam Preparation

CEH-001 Exam Details

  • Exam Code
    :CEH-001
  • Exam Name
    :Certified Ethical Hacker (CEH)
  • Certification
    :GAQM Certifications
  • Vendor
    :GAQM
  • Total Questions
    :878 Q&As
  • Last Updated
    :May 30, 2026

GAQM CEH-001 Online Questions & Answers

  • Question 741:

    Which type of scan measures a person's external features through a digital video camera?

    A. Iris scan
    B. Retinal scan
    C. Facial recognition scan
    D. Signature kinetics scan

  • Question 742:

    Most NIDS systems operate in layer 2 of the OSI model. These systems feed raw traffic into a detection engine and rely on the pattern matching and/or statistical analysis to determine what is malicious. Packets are not processed by the host's TCP/IP stack allowing the NIDS to analyze traffic the host would otherwise discard. Which of the following tools allows an attacker to intentionally craft packets to confuse pattern-matching NIDS systems, while still being correctly assembled by the host TCP/IP stack to render the attack payload?

    A. Defrag
    B. Tcpfrag
    C. Tcpdump
    D. Fragroute

  • Question 743:

    A security analyst in an insurance company is assigned to test a new web application that will be used by clients to help them choose and apply for an insurance plan. The analyst discovers that the application is developed in ASP scripting language and it uses MSSQL as a database backend. The analyst locates the application's search form and introduces the following code in the search input fielD.

    IMG SRC=vbscript:msgbox("Vulnerable");> originalAttribute="SRC" originalPath="vbscript:msgbox("Vulnerable");>"

    When the analyst submits the form, the browser returns a pop-up window that says "Vulnerable". Which web applications vulnerability did the analyst discover?

    A. Cross-site request forgery
    B. Command injection
    C. Cross-site scripting
    D. SQL injection

  • Question 744:

    Anonymizer sites access the Internet on your behalf, protecting your personal information from disclosure. An anonymizer protects all of your computer's identifying information while it surfs for you, enabling you to remain at least one step removed from the sites you visit.

    You can visit Web sites without allowing anyone to gather information on sites visited by you. Services that provide anonymity disable pop-up windows and cookies, and conceal visitor's IP address.

    These services typically use a proxy server to process each HTTP request. When the user requests a Web page by clicking a hyperlink or typing a URL into their browser, the service retrieves and displays the information using its own server.

    The remote server (where the requested Web page resides) receives information on the anonymous Web surfing service in place of your information.

    In which situations would you want to use anonymizer? (Select 3 answers)

    A. Increase your Web browsing bandwidth speed by using Anonymizer
    B. To protect your privacy and Identity on the Internet
    C. To bypass blocking applications that would prevent access to Web sites or parts of sites that you want to visit.
    D. Post negative entries in blogs without revealing your IP identity

  • Question 745:

    More sophisticated IDSs look for common shellcode signatures. But even these systems can be bypassed, by using polymorphic shellcode. This is a technique common among virus writers ?it basically hides the true nature of the shellcode in different disguises.

    How does a polymorphic shellcode work?

    A. They encrypt the shellcode by XORing values over the shellcode, using loader code to decrypt the shellcode, and then executing the decrypted shellcode
    B. They convert the shellcode into Unicode, using loader to convert back to machine code then executing them
    C. They reverse the working instructions into opposite order by masking the IDS signatures
    D. They compress shellcode into normal instructions, uncompress the shellcode using loader code and then executing the shellcode

  • Question 746:

    Charlie is the network administrator for his company. Charlie just received a new Cisco router and wants to test its capabilities out and to see if it might be susceptible to a DoS attack resulting in its locking up. The IP address of the Cisco switch is 172.16.0.45. What command can Charlie use to attempt this task?

    A. Charlie can use the commanD. ping -l 56550 172.16.0.45 -t.
    B. Charlie can try using the commanD. ping 56550 172.16.0.45.
    C. By using the command ping 172.16.0.45 Charlie would be able to lockup the router
    D. He could use the commanD. ping -4 56550 172.16.0.45.

  • Question 747:

    Which of the following countermeasure can specifically protect against both the MAC Flood and MAC Spoofing attacks?

    A. Configure Port Security on the switch
    B. Configure Port Recon on the switch
    C. Configure Switch Mapping
    D. Configure Multiple Recognition on the switch

  • Question 748:

    While testing the company's web applications, a tester attempts to insert the following test script into the search area on the company's web sitE.

    Afterwards, when the tester presses the search button, a pop-up box appears on the screen with the text: "Testing Testing Testing". Which vulnerability has been detected in the web application?

    A. Buffer overflow
    B. Cross-site request forgery
    C. Distributed denial of service
    D. Cross-site scripting

  • Question 749:

    WPA2 uses AES for wireless data encryption at which of the following encryption levels?

    A. 64 bit and CCMP
    B. 128 bit and CRC
    C. 128 bit and CCMP
    D. 128 bit and TKIP

  • Question 750:

    John the hacker is sniffing the network to inject ARP packets. He injects broadcast frames onto the wire to conduct MiTM attack. What is the destination MAC address of a broadcast frame?

    A. 0xFFFFFFFFFFFF
    B. 0xDDDDDDDDDDDD
    C. 0xAAAAAAAAAAAA
    D. 0xBBBBBBBBBBBB

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only GAQM exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CEH-001 exam preparations and GAQM certification application, do not hesitate to visit our Vcedump.com to find your solutions here.