CEH-001 Exam Details

  • Exam Code
    :CEH-001
  • Exam Name
    :Certified Ethical Hacker (CEH)
  • Certification
    :GAQM Certifications
  • Vendor
    :GAQM
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 10, 2026

GAQM CEH-001 Online Questions & Answers

  • Question 871:

    Which of the following are variants of mandatory access control mechanisms? (Choose two.)

    A. Two factor authentication
    B. Acceptable use policy
    C. Username / password
    D. User education program
    E. Sign in register

  • Question 872:

    Bret is a web application administrator and has just read that there are a number of surprisingly common web application vulnerabilities that can be exploited by unsophisticated attackers with easily available tools on the Internet. He has also

    read that when an organization deploys a web application, they invite the world to send HTTP requests. Attacks buried in these requests sail past firewalls, filters, platform hardening, SSL, and IDS without notice because they are inside legal

    HTTP requests. Bret is determined to weed out vulnerabilities.

    What are some of the common vulnerabilities in web applications that he should be concerned about?

    A. Non-validated parameters, broken access control, broken account and session management, cross-site scripting and buffer overflows are just a few common vulnerabilities
    B. Visible clear text passwords, anonymous user account set as default, missing latest security patch, no firewall filters set and no SSL configured are just a few common vulnerabilities
    C. No SSL configured, anonymous user account set as default, missing latest security patch, no firewall filters set and an inattentive system administrator are just a few common vulnerabilities
    D. No IDS configured, anonymous user account set as default, missing latest security patch, no firewall filters set and visible clear text passwords are just a few common vulnerabilities

  • Question 873:

    You perform the above traceroute and notice that hops 19 and 20 both show the same IP address.

    This probably indicates what?

    A. A host based IDS
    B. A Honeypot
    C. A stateful inspection firewall
    D. An application proxying firewall

  • Question 874:

    A corporation hired an ethical hacker to test if it is possible to obtain users' login credentials using methods other than social engineering. Access to offices and to a network node is granted. Results from server scanning indicate all are adequately patched and physical access is denied, thus, administrators have access only through Remote Desktop. Which technique could be used to obtain login credentials?

    A. Capture every users' traffic with Ettercap.
    B. Capture LANMAN Hashes and crack them with LC6.
    C. Guess passwords using Medusa or Hydra against a network service.
    D. Capture administrators RDP traffic and decode it with Cain and Abel.

  • Question 875:

    Switches maintain a CAM Table that maps individual MAC addresses on the network to physical ports on the switch.

    In MAC flooding attack, a switch is fed with many Ethernet frames, each containing different source MAC addresses, by the attacker. Switches have a limited memory for mapping various MAC addresses to physical ports. What happens when the CAM table becomes full?

    A. Switch then acts as hub by broadcasting packets to all machines on the network
    B. The CAM overflow table will cause the switch to crash causing Denial of Service
    C. The switch replaces outgoing frame switch factory default MAC address of FF:FF:FF:FF:FF:FF
    D. Every packet is dropped and the switch sends out SNMP alerts to the IDS port

  • Question 876:

    Which of the following techniques will identify if computer files have been changed?

    A. Network sniffing
    B. Permission sets
    C. Integrity checking hashes
    D. Firewall alerts

  • Question 877:

    How can you determine if an LM hash you extracted contains a password that is less than 8 characters long?

    A. There is no way to tell because a hash cannot be reversed
    B. The right most portion of the hash is always the same
    C. The hash always starts with AB923D
    D. The left most portion of the hash is always the same
    E. A portion of the hash will be all 0's

  • Question 878:

    During a penetration test, a tester finds a target that is running MS SQL 2000 with default credentials. The tester assumes that the service is running with Local System account. How can this weakness be exploited to access the system?

    A. Using the Metasploit psexec module setting the SA / Admin credential
    B. Invoking the stored procedure xp_shell to spawn a Windows command shell
    C. Invoking the stored procedure cmd_shell to spawn a Windows command shell
    D. Invoking the stored procedure xp_cmdshell to spawn a Windows command shell

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only GAQM exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CEH-001 exam preparations and GAQM certification application, do not hesitate to visit our Vcedump.com to find your solutions here.