CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. GAQM
  5. CEH-001

Free CEH-001 Exam Braindumps (page: 71)

Page 70 of 220
PDF with 878 Questions

A computer science student needs to fill some information into a secured Adobe PDF job application that was received from a prospective employer. Instead of requesting a new document that allowed the forms to be completed, the student decides to write a script that pulls passwords from a list of commonly used passwords to try against the secured PDF until the correct password is found or the list is exhausted.

Which cryptography attack is the student attempting?

  1. Man-in-the-middle attack
  2. Brute-force attack
  3. Dictionary attack
  4. Session hijacking

Answer(s): C



A hacker, who posed as a heating and air conditioning specialist, was able to install a sniffer program in a switched environment network. Which attack could the hacker use to sniff all of the packets in the network?

  1. Fraggle
  2. MAC Flood
  3. Smurf
  4. Tear Drop

Answer(s): B



Which of the following conditions must be given to allow a tester to exploit a Cross-Site Request Forgery (CSRF) vulnerable web application?

  1. The victim user must open the malicious link with an Internet Explorer prior to version 8.
  2. The session cookies generated by the application do not have the HttpOnly flag set.
  3. The victim user must open the malicious link with a Firefox prior to version 3.
  4. The web application should not use random tokens.

Answer(s): D



During a wireless penetration test, a tester detects an access point using WPA2 encryption.
Which of the following attacks should be used to obtain the key?

  1. The tester must capture the WPA2 authentication handshake and then crack it.
  2. The tester must use the tool inSSIDer to crack it using the ESSID of the network.
  3. The tester cannot crack WPA2 because it is in full compliance with the IEEE 802.11i standard.
  4. The tester must change the MAC address of the wireless network card and then use the AirTraf tool to obtain the key.

Answer(s): A






Post your Comments and Discuss GAQM CEH-001 exam with other Community members:

CEH-001 Discussions & Posts