CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. GAQM
  5. CEH-001

Free CEH-001 Exam Braindumps (page: 57)

Page 56 of 220
PDF with 878 Questions

Perimeter testing means determining exactly what your firewall blocks and what it allows.
To conduct a good test, you can spoof source IP addresses and source ports. Which of the
following command results in packets that will appear to originate from the system at
10.8.8.8? Such a packet is useful for determining whether the firewall is allowing random
packets in or out of your network.

  1. hping3 -T 10.8.8.8 -S netbios -c 2 -p 80
  2. hping3 -Y 10.8.8.8 -S windows -c 2 -p 80
  3. hping3 -O 10.8.8.8 -S server -c 2 -p 80
  4. hping3 -a 10.8.8.8 -S springfield -c 2 -p 80

Answer(s): D



The GET method should never be used when sensitive data such as credit card is being sent to a CGI program. This is because any GET command will appear in the URL, and will be logged by any servers. For example, let's say that you've entered your credit card information into a form that uses the GET method. The URL may appear like this:
https://www.xsecurity-bank.com/creditcard.asp?cardnumber=453453433532234
The GET method appends the credit card number to the URL. This means that anyone with access to a server log will be able to obtain this information. How would you protect from this type of attack?

  1. Never include sensitive information in a script
  2. Use HTTPS SSLv3 to send the data instead of plain HTTPS
  3. Replace the GET with POST method when sending data
  4. Encrypt the data before you send using GET method

Answer(s): C



Keystroke logging is the action of tracking (or logging) the keys struck on a keyboard, typically in a covert manner so that the person using the keyboard is unaware that their actions are being monitored.


How will you defend against hardware keyloggers when using public computers and Internet Kiosks? (Select 4 answers)

  1. Alternate between typing the login credentials and typing characters somewhere else in the focus window
  2. Type a wrong password first, later type the correct password on the login page defeating the keylogger recording
  3. Type a password beginning with the last letter and then using the mouse to move the cursor for each subsequent letter.
  4. The next key typed replaces selected text portion. E.g. if the password is "secret", one could type "s", then some dummy keys "asdfsd".
    Then these dummies could be selected with mouse, and next character from the password "e" is typed, which replaces the dummies
    "asdfsd"
  5. The next key typed replaces selected text portion. g. if the password is "secret", one could type "s", then some dummy keys "asdfsd".
    Then these dummies could be selected with mouse, and next character from the password "e" is typed, which replaces the dummies
    "asdfsd"

Answer(s): A,C,D,E



Lauren is performing a network audit for her entire company. The entire network is comprised of around 500 computers. Lauren starts an ICMP ping sweep by sending one IP packet to the broadcast address of the network, but only receives responses from around five hosts. Why did this ping sweep only produce a few responses?

  1. Only Windows systems will reply to this scan.
  2. A switched network will not respond to packets sent to the broadcast address.
  3. Only Linux and Unix-like (Non-Windows) systems will reply to this scan.
  4. Only servers will reply to this scan.

Answer(s): C






Post your Comments and Discuss GAQM CEH-001 exam with other Community members:

CEH-001 Discussions & Posts