GAQM CPEH-001 Exam Practice Test Instant Access

Question 1

What type of port scan is represented here.

AStealth Scan

BFull Scan

CXMAS Scan

DFIN Scan

Answer : A

Question 2

In the context of Trojans, what is the definition of a Wrapper?

AAn encryption tool to protect the Trojan

BA tool used to bind the Trojan with a legitimate file

CA tool used to calculate bandwidth and CPU cycles wasted by the Trojan

DA tool used to encapsulate packets within a new header and footer

Answer : B

Wrapper does not change header or footer of any packets but it mix between legitimate file and Trojan file.

Question 3

Some passwords are stored using specialized encryption algorithms known as hashes. Why is this an appropriate method?

AIt is impossible to crack hashed user passwordsunless the key used to encrypt them is obtained.

BIf a user forgets the password, it can be easily retrieved using the hash key stored by administrators.

CHashing is faster compared to more traditional encryption algorithms.

DPasswords stored using hashes are non-reversible, making finding the password much more difficult.

Answer : D

Question 4

Vulnerability mapping occurs after which phase of a penetration test?

AHost scanning

BPassive information gathering

CAnalysis of host scanning

DNetwork level discovery

Answer : C

The order should be Passive information gathering, Network level discovery, Host scanning and Analysis of host scanning.

Question 5

This type of Port Scanning technique splits TCP header into several packets so that the packet filters are not able to detect what the packets intends to do.

AUDP Scanning

BIP Fragment Scanning

CInverse TCP flag scanning

DACK flag scanning

Answer : B

Question 6

What is the outcome of the comm''nc -l -p 2222 | nc 10.1.0.43 1234"?

ANetcat will listen on the 10.1.0.43 interface for 1234 secondson port 2222.

BNetcat will listen on port 2222 and output anything received to a remote connection on 10.1.0.43port 1234.

CNetcat will listen for a connection from 10.1.0.43 on port 1234 and output anything received to port 2222.

DNetcat will listen on port 2222 and then output anything received to local interface 10.1.0.43.

Answer : B

Question 7

RC4 is known to be a good stream generator. RC4 is used within the WEP standard on wireless LAN. WEP is known to be insecure even if we are using a stream cipher that is known to be secured. What is the most likely cause behind this?

AThere are some flaws in the implementation.

BThere is no key management.

CThe IV range is too small.

DAll of the above.

ENone of the above.

Answer : D

Because RC4 is a stream cipher, the same traffic key must never be used twice. The purpose of an IV, which is transmitted as plain text, is to prevent any repetition, but a 24-bit IV is not long enough to ensure this on a busy network. The way the IV was used also opened WEP to a related key attack. For a 24-bit IV, there is a 50% probability the same IV will repeat after 5000 packets.

Many WEP systems require a key in hexadecimal format. Some users choose keys that spell words in the limited 0-9, A-F hex character set, for example C0DE C0DE C0DE C0DE. Such keys are often easily guessed.

GAQM CPEH-001 Certified Professional Ethical Hacker (CPEH) Exam Practice Test