CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. GAQM
  5. CPEH-001

Free CPEH-001 Exam Braindumps (page: 4)

Page 4 of 220
PDF with 878 Questions

You run nmap port Scan on 10.0.0.5 and attempt to gain banner/server information from services running on ports 21, 110 and 123. Here is the output of your scan results:



Which of the following nmap command did you run?

  1. nmap -A -sV -p21, 110, 123 10.0.0.5
  2. nmap -F -sV -p21, 110, 123 10.0.0.5
  3. nmap -O -sV -p21, 110, 123 10.0.0.5
  4. nmap -T -sV -p21, 110, 123 10.0.0.5

Answer(s): C



How do you defend against Privilege Escalation?

  1. Use encryption to protect sensitive data
  2. Restrict the interactive logon privileges
  3. Run services as unprivileged accounts
  4. Allow security settings of IE to zero or Low
  5. Run users and applications on the least privileges

Answer(s): A,B,C,E



What does ICMP (type 11, code 0) denote?

  1. Source Quench
  2. Destination Unreachable
  3. Time Exceeded
  4. Unknown Type

Answer(s): C



You are the security administrator of Jaco Banking Systems located in Boston. You are setting up e- banking website (http://www.ejacobank.com) authentication system. Instead of issuing banking customer with a single password, you give them a printed list of 100 unique passwords. Each time the customer needs to log into the e-banking system website, the customer enters the next password on the list. If someone sees them type the password using shoulder surfing, MiTM or keyloggers, then no damage is done because the password will not be accepted a second time. Once the list of 100 passwords is almost finished, the system automatically sends out a new password list by encrypted e-mail to the customer. You are confident that this security implementation will protect the customer from password abuse. Two months later, a group of hackers called "HackJihad" found a way to access the one-time password list issued to customers of Jaco Banking Systems. The hackers set up a fake website (http://www.e-jacobank.com) and used phishing attacks to direct ignorant customers to it. The fake website asked users for their e-banking username and password, and the next unused entry from their one-time password sheet. The hackers collected 200 customer's username/passwords this way. They transferred money from the customer's bank account to various offshore accounts. Your decision of password policy implementation has cost the bank with USD 925, 000 to hackers. You immediately shut down the e-banking website while figuring out the next best security solution.
What effective security solution will you recommend in this case?

  1. Implement Biometrics based password authentication system. Record the customers face image to the authentication database
  2. Configure your firewall to block logon attempts of more than three wrong tries
  3. Enable a complex password policy of 20 characters and ask the user to change the password immediately after they logon and do not store password histories
  4. Implement RSA SecureID based authentication system

Answer(s): D



Page 4 of 220



Post your Comments and Discuss GAQM CPEH-001 exam with other Community members:

MANISH DURAISWAMY commented on November 07, 2024
Good Practices sessions
Anonymous
upvote

Jonhsh commented on November 07, 2024
It's ok to do this quizz
Anonymous
upvote

Joan commented on November 07, 2024
Keep Trying
Anonymous
upvote

ProDumpper commented on November 07, 2024
The questions looks promising and well formatted. But has anyone passed this exam recently? I have heard the exam is very very hard.
Anonymous
upvote

Vin commented on November 07, 2024
Good content
Anonymous
upvote

Mii commented on November 07, 2024
great resource, for the exams Ireland
Anonymous
upvote

Jay Gomes commented on November 07, 2024
Very nice and very good questions
Anonymous
upvote

Jay Gomes commented on November 07, 2024
Nice v nice questions
Anonymous
upvote

Aswin commented on November 07, 2024
Good practice test
INDIA
upvote

Elias commented on November 07, 2024
Really this material supports alot
Anonymous
upvote

DN commented on November 06, 2024
Very helpful
UNITED STATES
upvote

Christine commented on November 06, 2024
Good for practice
Anonymous
upvote

Mike commented on November 06, 2024
Very good website
Anonymous
upvote

Elias commented on November 06, 2024
The revision materials are 100% helpfull.
Anonymous
upvote

Lula commented on November 06, 2024
One of the top exam dumps sites I have ever used. Very clean and decent pricing for the full version.
Singapore
upvote

Paula commented on November 06, 2024
Useful question dumps. I will leave it to that.
Anonymous
upvote

Prabhat Kumar commented on November 06, 2024
Google Google Associate Cloud Engineer
EUROPEAN UNION
upvote

Connor commented on November 06, 2024
This is wild. I did not know these study guides were available online.
UNITED KINGDOM
upvote

Mike commented on November 05, 2024
can anyone explain to me for question 77?
MALAYSIA
upvote

Non-sus user commented on November 05, 2024
good luck y'all
MALAYSIA
upvote

Jondré commented on November 05, 2024
I am writing soon hope this will help me pass first time.
Anonymous
upvote

Farid commented on November 05, 2024
This exam is hard but not as bad as others have stated here. With these question you can pass on first try.
Canada
upvote

Mohammed commented on November 05, 2024
I got a 87.4% in my exam with these questions. Just keep in mind that the full version they sell in PDF format has way way more questions that covers most of the topics in this exam.
UNITED ARAB EMIRATES
upvote

Giordano commented on November 05, 2024
Sono uguali all'esame?
Anonymous
upvote

Luntz commented on November 05, 2024
If you want to just prepare for your exam and then clear it then this is a good source. But not for deep learning.
GERMANY
upvote

Gutsy commented on November 05, 2024
Pretty clear and close to content of real exam.
UNITED STATES
upvote

Nansi commented on November 05, 2024
hope for the best
Anonymous
upvote

Amelio commented on November 04, 2024
Big win for me this week. I passed my exam and now getting ready for my second exam.
UNITED STATES
upvote

Jeeva commented on November 04, 2024
Still preparing to attend
Anonymous
upvote

Nikki Cruz commented on November 04, 2024
This was a life saver for me. I knew the material but these questions really helped me . Passed on my first attempt !
Anonymous
upvote

Emmanuel commented on November 04, 2024
Can a person pass AZ900 just by using this site only ?
SOUTH AFRICA
upvote

Tech Savvy commented on November 04, 2024
Great work team!, would be good if you list 10 questions at each page,
Anonymous
upvote

Jay commented on November 04, 2024
I tried to clear this exam for 3 times but failed. So I finally resorted to using these exam dumps which I really did not want to. But I was left with no choice.
New Zealand
upvote

Fernando commented on November 04, 2024
Very cool and very helpful. Bought 2 exams with 50% discount.
Brazil
upvote