Palo Alto Networks

GAQM CPEH-001 Exam
Certified Professional Ethical Hacker (CPEH) Exam (Page 21 )

Updated On: 1-Feb-2026

Viewing Page 21 of 177 pages.

Download PDF version with 878 Questions

QUESTION: 619

Null sessions are un-authenticated connections (not using a username or password.) to an NT or 2000 system.
Which TCP and UDP ports must you filter to check null sessions on your network?

137 and 139
137 and 443
139 and 443
139 and 445

Answer(s): D

Explanation:

NULL sessions take advantage of "features" in the SMB (Server Message Block) protocol that exist primarily for trust relationships. You can establish a NULL session with a Windows host by logging on with a NULL user name and password. Primarily the following ports are vulnerable if they are accessible:

Show Answer Next Question

QUESTION: 620

Exhibit:

Study the following log extract and identify the attack.

Hexcode Attack
Cross Site Scripting
Multiple Domain Traversal Attack
Unicode Directory Traversal Attack

Answer(s): D

Explanation:

The "Get /msadc/....../....../....../winnt/system32/cmd.exe?" shows that a Unicode Directory Traversal Attack has been performed.

Show Answer Next Question

QUESTION: 621

Exhibit:
Based on the following extract from the log of a compromised machine, what is the hacker really trying to steal?

har.txt
SAM file
wwwroot
Repair file

Answer(s): B

Explanation:

He is actually trying to get the file har.txt but this file contains a copy of the SAM file.

Show Answer Next Question

QUESTION: 622

Exhibit:

The following is an entry captured by a network IDS.You are assigned the task of analyzing this entry. You notice the value 0x90, which is the most common NOOP instruction for the Intel processor. You figure that the attacker is attempting a buffer overflow attack. You also notice "/bin/sh" in the ASCII part of the output. As an analyst what would you conclude about the attack?

The buffer overflow attack has been neutralized by the IDS
The attacker is creating a directory on the compromised machine
The attacker is attempting a buffer overflow attack and has succeeded
The attacker is attempting an exploit that launches a command-line shell

Answer(s): D

Explanation:

This log entry shows a hacker using a buffer overflow to fill the data buffer and trying to insert the execution of /bin/sh into the executable code part of the thread. It is probably an existing exploit that is used, or a directed attack with a custom built buffer overflow with the "payload" that launches the command shell.

Show Answer Next Question

QUESTION: 623

As a securing consultant, what are some of the things you would recommend to a company to ensure DNS security? Select the best answers.

Use the same machines for DNS and other applications
Harden DNS servers
Use split-horizon operation for DNS servers
Restrict Zone transfers
Have subnet diversity between DNS servers

Answer(s): B,C,D,E

Explanation:

A is not a correct answer as it is never recommended to use a DNS server for any other application. Hardening of the DNS servers makes them less vulnerable to attack. It is recommended to split internal and external DNS servers (called split-horizon operation). Zone transfers should only be accepted from authorized DNS servers.
By having DNS servers on different subnets, you may prevent both from going down, even if one of your networks goes down.

Show Answer Next Question

…
19
20
21
22
23
…

Viewing page 21 of 177
Viewing questions 101 - 105 out of 878 questions

Post your Comments and Discuss GAQM CPEH-001 exam prep with other Community members:

Comments:

Name:

Join the CPEH-001 Discussion

Moses Commented on August 25, 2025
Practise questions very helfpul in preping for exams
Anonymous

Elsayed Tarek Commented on August 25, 2025
Q107 the right option is D not B
Anonymous

Mehmet Commented on August 25, 2025
Great free resource. All valid questions as I have seen these in sites like exam topics or exam collection. But what is the catch? Why give it all for free?
GERMANY

Gayathiri Commented on August 25, 2025
I had prepared for AWS SAA-C03 exam and after preparation, came here to revise my knowledge. I had passed AWS SAA-C03 exam. There were 15 to 20 exactly same question appeared in the exam. Understood the concepts from entire question practice test. Thanks you for providing these practice test.
Anonymous

Victor Wardi Commented on August 24, 2025
Question 17 the correct answer is C.
BRAZIL

SomebodyisNobody Commented on August 24, 2025
Luckily I checked these before my exam day. It had been super helpful and I passed my exam.
NEW ZEALAND

Uzb Commented on August 24, 2025
correct answer for 14 th question is B
EUROPEAN UNION

Jack Commented on August 24, 2025
This exam is kinda hard and tricky. These questions came very handy. But note that the full version is not free. I bought the full version and get a 50% discount code. You can try these codes: 20%OFFF this works when you are buy one exam. 50%OFF this works when you buy 2 or more exams. Cheerrrsss guys!
EUROPEAN UNION

Elsayed Tarek Commented on August 24, 2025
in 93: i think all the options are false because in the insertion there are 7 values but in the table there are only 6 values so it will return ORA-00913: too many values
Anonymous

Elsayed Tarek Commented on August 24, 2025
Q:87 the answer is D not A because based on oracle docs you can create NOT NUL and Default at the same column https://www.oracletutorial.com/oracle-basics/oracle-default
Anonymous

Elsayed Tarek Commented on August 24, 2025
Q86: The answer is ABC not ACD B: because drop is a DML Statement that has auto commit D: All indexes being dropped not invalidated
Anonymous

Sweta Commented on August 24, 2025
Good articulated
Anonymous

Paresh Commented on August 23, 2025
It is useful
Anonymous

Paresh Commented on August 23, 2025
good collection of Questions.
Anonymous

Paresh Commented on August 23, 2025
Nice question collection
Anonymous

WFS Fabric Engineer Commented on August 22, 2025
Nice content in page 1.
Anonymous

Wit Commented on August 22, 2025
These questions and answers are good for practice
SOUTH AFRICA

Ayobami Commented on August 22, 2025
Good material
SWITZERLAND

BakerSt Commented on August 21, 2025
This is a wonderful system for someone with test anxiety, let's you see what's coming
Anonymous

Miles and Miles LLC Commented on August 21, 2025
good information so far! thanks to the developers
UNITED STATES

Rere Commented on August 21, 2025
Perfect source to be prepared for the az-204 exam.
UNITED KINGDOM

Bokang Setlai Commented on August 20, 2025
exams practice questions questions and answers are very helpful
Anonymous

Bokang Setlai Commented on August 20, 2025
i find questions more challenging than i thought
Anonymous

Kevin Commented on August 20, 2025
Provides useful information
Anonymous

TheStoorFrom13 Commented on August 20, 2025
These practice questions are very helpful. They give good training for the AWS Solution Architect Professional exam. Working on them helps to build confidence and understand AWS design decisions. It covers different AWS services and design scenarios.
UNITED KINGDOM

Silver Commented on August 20, 2025
very helpful questions
Anonymous

ad Commented on August 19, 2025
anyone passed recently with this set?
Anonymous

Kai Commented on August 19, 2025
I share the news that I passed this exam using this practice questions questions. Very good study resource.
GERMANY

Harry Commented on August 18, 2025
Is this worth to purchase the full test?
UNITED STATES

Jin Commented on August 18, 2025
It was really useful. Without this test, I would have 100% failed.
JAPAN

Thanuja Commented on August 18, 2025
If I prepare this question and answer, will I pass
Anonymous

Stephen Commented on August 18, 2025
Very clear explanations
Anonymous

Stephen Commented on August 18, 2025
Good material
Anonymous

Sharmota Commented on August 17, 2025
Questions are all real and from the actual exam. Some answers are not correct. Double check. Over all worth the time and money.
Anonymous

Sohan Patel Commented on August 17, 2025
Nice material to pass the exam
Anonymous

Ashok Commented on August 16, 2025
Good content.. covers all topics.
Anonymous

Hermela Commented on August 16, 2025
It's very helpful.
Anonymous

Anonymous Commented on August 15, 2025
Passed this exam today with the help of these questions. Valid questions and Exam prep. I recommend.
UNITED STATES

Nitesh Commented on August 15, 2025
For 90, I think it should be A.
Anonymous

ffat Commented on August 15, 2025
perfect one
BAHRAIN

Tulip Commented on August 15, 2025
There are some doubt answer
Anonymous

FF Commented on August 15, 2025
perfect dunmps
BAHRAIN

James Commented on August 15, 2025
Wonderful resources, so helpful
Anonymous

fafa Commented on August 15, 2025
i have learned a lot and i prefer an explanation of the answer
BAHRAIN

Fofo Commented on August 15, 2025
very helpful
BAHRAIN

Dax Commented on August 14, 2025
Thanks @Raf
Anonymous

Raf Commented on August 14, 2025
Hay @Dax, Yes it is valid. I used these and studied for a bout a week. Mind that the free version contains about 60% of the questions. The full PDF version has all the questions. I ended up paying for the PDF version. Good luck man.
Anonymous

Dax Commented on August 14, 2025
Is this Valid?
Anonymous

Fatima Commented on August 14, 2025
is this the latest Exam prep ?
Anonymous

Fsdf546 Commented on August 14, 2025
QUESTION: 60 The command would be Remove-CsOnlineDialInConferencingServiceNumber -PhoneNumber "+14035554321" without the BridgeID parameter
FRANCE