CEH-001 Exam Details

  • Exam Code
    :CEH-001
  • Exam Name
    :Certified Ethical Hacker (CEH)
  • Certification
    :GAQM Certifications
  • Vendor
    :GAQM
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 10, 2026

GAQM CEH-001 Online Questions & Answers

  • Question 841:

    What is a NULL scan?

    A. A scan in which all flags are turned off
    B. A scan in which certain flags are off
    C. A scan in which all flags are on
    D. A scan in which the packet size is set to zero
    E. A scan with a illegal packet size

  • Question 842:

    BankerFox is a Trojan that is designed to steal users' banking data related to certain banking entities.

    When they access any website of the affected banks through the vulnerable Firefox 3.5 browser, the Trojan is activated and logs the information entered by the user. All the information entered in that website will be logged by the Trojan and

    transmitted to the attacker's machine using covert channel.

    BankerFox does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer.

    What is the most efficient way an attacker located in remote location to infect this banking Trojan on a victim's machine?

    A. Physical access - the attacker can simply copy a Trojan horse to a victim's hard disk infecting the machine via Firefox add-on extensions
    B. Custom packaging - the attacker can create a custom Trojan horse that mimics the appearance of a program that is unique to that particular computer
    C. Custom packaging - the attacker can create a custom Trojan horse that mimics the appearance of a program that is unique to that particular computer
    D. Custom packaging - the attacker can create a custom Trojan horse that mimics the appearance of a program that is unique to that particular computer
    E. Downloading software from a website? An attacker can offer free software, such as shareware programs and pirated mp3 files

  • Question 843:

    Which of the following techniques can be used to mitigate the risk of an on-site attacker from connecting to an unused network port and gaining full access to the network? (Choose three.)

    A. Port Security
    B. IPSec Encryption
    C. Network Admission Control (NAC)
    D. 802.1q Port Based Authentication
    E. 802.1x Port Based Authentication
    F. Intrusion Detection System (IDS)

  • Question 844:

    Jake works as a system administrator at Acme Corp. Jason, an accountant of the firm befriends him at the canteen and tags along with him on the pretext of appraising him about potential tax benefits. Jason waits for Jake to swipe his access

    card and follows him through the open door into the secure systems area.

    How would you describe Jason's behavior within a security context?

    A. Smooth Talking
    B. Swipe Gating
    C. Tailgating
    D. Trailing

  • Question 845:

    Sally is a network admin for a small company. She was asked to install wireless accesspoints in the building. In looking at the specifications for the access-points, she sees that all of them offer WEP. Which of these are true about WEP? Select the best answer.

    A. Stands for Wireless Encryption Protocol
    B. It makes a WLAN as secure as a LAN
    C. Stands for Wired Equivalent Privacy
    D. It offers end to end security

  • Question 846:

    Which of the following is considered an acceptable option when managing a risk?

    A. Reject the risk.
    B. Deny the risk.
    C. Mitigate the risk.
    D. Initiate the risk.

  • Question 847:

    MX record priority increases as the number increases. (True/False.

    A. True
    B. False

  • Question 848:

    In the software security development life cyle process, threat modeling occurs in which phase?

    A. Design
    B. Requirements
    C. Verification
    D. Implementation

  • Question 849:

    Which definition below best describes a covert channel?

    A. A server program using a port that is not well known
    B. Making use of a protocol in a way it was not intended to be used
    C. It is the multiplexing taking place on a communication link
    D. It is one of the weak channels used by WEP that makes it insecure

  • Question 850:

    Bill is a security analyst for his company. All the switches used in the company's office are Cisco switches. Bill wants to make sure all switches are safe from ARP poisoning. How can Bill accomplish this?

    A. Bill can use the command: ip dhcp snooping.
    B. Bill can use the command: no ip snoop.
    C. Bill could use the command: ip arp no flood.
    D. He could use the command: ip arp no snoop.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only GAQM exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CEH-001 exam preparations and GAQM certification application, do not hesitate to visit our Vcedump.com to find your solutions here.