CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. GAQM
  5. CPEH-001

Free CPEH-001 Exam Braindumps (page: 8)

Page 8 of 220
PDF with 878 Questions

How do you defend against DHCP Starvation attack?

  1. Enable ARP-Block on the switch
  2. Enable DHCP snooping on the switch
  3. Configure DHCP-BLOCK to 1 on the switch
  4. Install DHCP filters on the switch to block this attack

Answer(s): B



What type of session hijacking attack is shown in the exhibit?

  1. Cross-site scripting Attack
  2. SQL Injection Attack
  3. Token sniffing Attack
  4. Session Fixation Attack

Answer(s): D



The SYN flood attack sends TCP connections requests faster than a machine can process them. · Attacker creates a random source address for each packet · SYN flag set in each packet is a request to open a new connection to the server from the spoofed IP address
· Victim responds to spoofed IP address, then waits for confirmation that never arrives (timeout wait is about 3 minutes)
· Victim's connection table fills up waiting for replies and ignores new connections · Legitimate users are ignored and will not be able to access the server How do you protect your network against SYN Flood attacks?

  1. SYN cookies. Instead of allocating a record, send a SYN-ACK with a carefully constructed sequence number generated as a hash of the clients IP address, port number, and other information.
    When the client responds with a normal ACK, that special sequence number will be included, which the server then verifies. Thus, the server first allocates memory on the third packet of the handshake, not the first.
  2. RST cookies - The server sends a wrong SYN/ACK back to the client. The client should then generate a RST packet telling the server that something is wrong. At this point, the server knows the client is valid and will now accept incoming connections from that client normally
  3. Check the incoming packet's IP address with the SPAM database on the Internet and enable the filter using ACLs at the Firewall
  4. Stack Tweaking. TCP stacks can be tweaked in order to reduce the effect of SYN floods. Reduce the timeout before a stack frees up the memory allocated for a connection
  5. Micro Blocks. Instead of allocating a complete connection, simply allocate a micro record of 16- bytes for the incoming SYN object

Answer(s): A,B,D,E



What type of port scan is shown below?

  1. Idle Scan
  2. FIN Scan
  3. XMAS Scan
  4. Windows Scan

Answer(s): B



Page 8 of 220



Post your Comments and Discuss GAQM CPEH-001 exam with other Community members:

Arvind Sharma commented on October 27, 2024
Helpful questions for preparation foe LA exam
Anonymous
upvote

Teji commented on October 26, 2024
Good Practice Questions before appearing to exams
Anonymous
upvote

Preston commented on October 26, 2024
Hope everyone is having a wonderful day. I am because I just passed my exam. Sharing my insight... this exam dump has lots of questions from the real exam. But the exam is not easy. So I need to say that you must study hard to pass.
UNITED STATES
upvote

Alex Z commented on October 26, 2024
Great insight.
UNITED STATES
upvote

Rajesh Kumar M - commented on October 26, 2024
For the question 6- the continual improvement , the organization shall continually improve the suitability, adequacy and effectiveness of the QMS. Not Efficiency, Refer Clause 10.3 continual improvement in ISO 9001 :2015
Anonymous
upvote

PC commented on October 26, 2024
Good content
Anonymous
upvote

Lawrence commented on October 26, 2024
Absolutely excellent
Anonymous
upvote

ABC commented on October 26, 2024
I found these dumps are useful
INDIA
upvote

Rupa commented on October 26, 2024
Getting good practice with the qs
Anonymous
upvote

vinay commented on October 25, 2024
practice test
UNITED STATES
upvote

Shree commented on October 25, 2024
recomendeds . Thanks
Anonymous
upvote

Olympia commented on October 25, 2024
The free version is good but does not have all questions. However the PDF has double the amount of questions and very helpful to pass the exam.
Canada
upvote

Scruzer commented on October 25, 2024
Cleared this exam today. Questions are still valid.
EUROPEAN UNION
upvote

Vidhi Mishra commented on October 25, 2024
Nice set of questions
Anonymous
upvote

Srivats commented on October 25, 2024
Hello, Great learning. Thank you. Looks like Question 13's answer should be D. "If you plan to use the segment again, stop the publish schedule instead" as highlighted in doc.
Anonymous
upvote

Priest-Son commented on October 24, 2024
helpful questions also in other forums
UNITED STATES
upvote

Simon commented on October 24, 2024
guys waht do you think about this dump?
Anonymous
upvote

Kay commented on October 24, 2024
There's new test updated for network+: N10-009. Hope we could have it soon.
Anonymous
upvote

John Como commented on October 24, 2024
Very helpful
UNITED STATES
upvote

saif Ali commented on October 24, 2024
for Question no 50 The answer would be using lambda vdf as this provides automation
INDIA
upvote

Baghya commented on October 24, 2024
Yeh dumps use kiye aur exam mein pass ho gaya.
INDIA
upvote

Varma commented on October 24, 2024
Thanks team and Thanks to these dumps, I’ve never felt so confident about last-minute prep!
INDIA
upvote

Darko commented on October 24, 2024
Passed! let’s just say these dumps were the secret weapon.
EUROPEAN UNION
upvote

Machoo987 commented on October 24, 2024
Studying wasn’t working, so I turned to these dumps—best decision I made since pizza for breakfast!
UNITED STATES
upvote

Zuby commented on October 24, 2024
Nice Question
UNITED STATES
upvote

Chandara commented on October 24, 2024
I passed with ease, and now I have to explain to my friends how ‘studying’ got me through. hahah
INDIA
upvote

Jack commented on October 24, 2024
Muito bom as perguntas
Anonymous
upvote

Diogo Gomes commented on October 24, 2024
As Muhammad Saleem comented, question 20 is wrong. Entities are found in the Data layer and not in the Interface layer.
UNITED STATES
upvote

Neena commented on October 24, 2024
This dump PDF gets the job done
Anonymous
upvote

test commented on October 24, 2024
good one to go through
Anonymous
upvote

Kamal commented on October 24, 2024
I’m 90% sure I owe my new certification to these dumps, and 10% to coffee. LOL Questions are valid and same in the real exam.
Netherlands
upvote

Maseh commented on October 24, 2024
Who knew cramming could be so effective? These dumps saved me from a meltdown!
EUROPEAN UNION
upvote

Drew commented on October 24, 2024
Used these dumps, nailed the exam—now I’m basically a genius (or close enough).
Australia
upvote

Shawn commented on October 24, 2024
As you must know by now the exam is extremely hard. The only way to pass is to know the questions and answers and I found these dump questions very relevant to actual exam.
Canada
upvote