Free CEH-001 Exam Braindumps (page: 45)

Page 44 of 220

This TCP flag instructs the sending system to transmit all buffered data immediately.

  1. SYN
  2. RST
  3. PSH
  4. URG
  5. FIN

Answer(s): C



The network administrator at Spears Technology, Inc has configured the default gateway Cisco router's access-list as below:
You are hired to conduct security testing on their network. You successfully brute-force the SNMP community string using a SNMP crack tool. The access-list configured at the router prevents you from establishing a successful connection. You want to retrieve the Cisco configuration from the router. How would you proceed?

  1. Use the Cisco's TFTP default password to connect and download the configuration file
  2. Run a network sniffer and capture the returned traffic with the configuration file from the router
  3. Run Generic Routing Encapsulation (GRE) tunneling protocol from your computer to the router masking your IP address
  4. Send a customized SNMP set request with a spoofed source IP address in the range -
    192.168.1.0

Answer(s): B,D



You work for Acme Corporation as Sales Manager. The company has tight network security restrictions. You are trying to steal data from the company's Sales database (Sales.xls) and transfer them to your home computer. Your company filters and monitors traffic that leaves from the internal network to the Internet. How will you achieve this without raising suspicion?

  1. Encrypt the Sales.xls using PGP and e-mail it to your personal gmail account
  2. Package the Sales.xls using Trojan wrappers and telnet them back your home computer
  3. You can conceal the Sales.xls database in another file like photo.jpg or other files and send it out in an innocent looking email or file transfer using Steganography techniques
  4. Change the extension of Sales.xls to sales.txt and upload them as attachment to your hotmail account

Answer(s): C



Study the snort rule given below and interpret the rule.
alert tcp any any --> 192.168.1.0/24 111 (content:"|00 01 86 a5|"; msG. "mountd access";)

  1. An alert is generated when a TCP packet is generated from any IP on the 192.168.1.0 subnet and destined to any IP on port 111
  2. An alert is generated when any packet other than a TCP packet is seen on the network and destined for the 192.168.1.0 subnet
  3. An alert is generated when a TCP packet is originated from port 111 of any IP address to the 192.168.1.0 subnet
  4. An alert is generated when a TCP packet originating from any IP address is seen on the
    network and destined for any IP address on the 192.168.1.0 subnet on port 111

Answer(s): D






Post your Comments and Discuss GAQM CEH-001 exam with other Community members:

CEH-001 Discussions & Posts