GAQM CPEH-001 Exam Practice Test Instant Access

Question 1

Which of the following types of firewall inspects only header information in network traffic?

APacket filter

BStateful inspection

CCircuit-level gateway

DApplication-level gateway

Answer : A

Question 2

What is the proper response for a NULL scan if the port is closed?

ASYN

BACK

CFIN

DPSH

ERST

FNo response

Answer : E

Closed ports respond to a NULL scan with a reset.

Question 3

Which of the following is not an effective countermeasure against replay attacks?

ADigital signatures

BTime Stamps

CSystem identification

DSequence numbers

Answer : C

A replay attack is a form of network attack in which a valid data transmission is maliciously or fraudulently repeated or delayed. Effective countermeasures should be anything that makes it hard to delay or replay the packet (time stamps and sequence numbers) or anything that prove the package is received as it was sent from the original sender (digital signature)

Question 4

Which of the following programming languages is most vulnerable to buffer overflow attacks?

APerl

BC++

CPython

DJava

Answer : B

Question 5

When comparing the testing methodologies of Open Web Application Security Project (OWASP) and Open Source Security Testing Methodology Manual (OSSTMM) the main difference is

AOWASP is for web applications and OSSTMM does not include web applications.

BOSSTMM is gray box testing andOWASP is black box testing.

COWASP addresses controls andOSSTMM does not.

DOSSTMM addresses controls andOWASP does not.

Answer : D

Question 6

What is the tool Firewalk used for?

ATo test the IDS for proper operation

BTo test a firewall for proper operation

CTo determine what rules are in place for a firewall

DTo test the webserver configuration

EFirewalk is a firewall auto configuration tool

Answer : C

Firewalk is an active reconnaissance network security tool that attempts to determine what layer 4 protocols a given IP forwarding device 'firewall' will pass. Firewalk works by sending out TCP or UDP packets with a TTL one greater than the targeted gateway. If the gateway allows the traffic, it will forward the packets to the next hop where they will expire and elicit an ICMP_TIME_EXCEEDED message. If the gateway host does not allow the traffic, it will likely drop the packets and no response will be returned.

Question 7

To send a PGP encrypted message, which piece of information from the recipient must the sender have before encrypting the message?

ARecipient's private key

BRecipient's public key

CMaster encryption key

DSender's public key

Answer : B

GAQM Certified Professional Ethical Hacker (CPEH) CPEH-001 Exam Practice Test