Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. GAQM
  5. CPEH-001

GAQM CPEH-001 Exam Questions
Certified Professional Ethical Hacker (CPEH) Exam (Page 22 )

Updated On: 24-Feb-2026
Page 22 of 177
PDF with 878 Questions

What sequence of packets is sent during the initial TCP three-way handshake?

  1. SYN, SYN-ACK, ACK
  2. SYN, URG, ACK
  3. SYN, ACK, SYN-ACK
  4. FIN, FIN-ACK, ACK

Answer(s): A



Steve scans the network for SNMP enabled devices.
Which port number Steve should scan?

  1. 150
  2. 161
  3. 169
  4. 69

Answer(s): B



You are footprinting an organization and gathering competitive intelligence. You visit the company's website for contact information and telephone numbers but do not find them listed there. You know they had the entire staff directory listed on their website 12 months ago but now it is not there. Is there any way you can retrieve information from a website that is outdated?

  1. Visit Google's search engine and view the cached copy
  2. Crawl the entire website and store them into your computer
  3. Visit Archive.org web site to retrieve the Internet archive of the company's website
  4. Visit the company's partners and customers website for this information

Answer(s): C

Explanation:

The Internet Archive (IA) is a non-profit organization dedicated to maintaining an archive of Web and multimedia resources. Located at the Presidio in San Francisco, California, this archive includes "snapshots of the World Wide Web" (archived copies of pages, taken at various points in time), software, movies, books, and audio recordings (including recordings of live concerts from bands that allow it). This site is found at www.archive.org.



You are the CIO for Avantes Finance International, a global finance company based in Geneva. You are responsible for network functions and logical security throughout the entire corporation. Your company has over 250 servers running Windows Server, 5000 workstations running Windows Vista, and 200 mobile users working from laptops on Windows 7. Last week, 10 of your company's laptops were stolen from salesmen while at a conference in Amsterdam. These laptops contained proprietary company information.
While doing damage assessment on the possible public relations nightmare this may become, a news story leaks about the stolen laptops and also that sensitive information from those computers was posted to a blog online.
What built-in Windows feature could you have implemented to protect the sensitive information on these laptops?

  1. You should have used 3DES which is built into Windows
  2. If you would have implemented Pretty Good Privacy (PGP) which is built into Windows, the sensitive information on the laptops would not have leaked out
  3. You should have utilized the built-in feature of Distributed File System (DFS) to protect the sensitive information on the laptops
  4. You could have implemented Encrypted File System (EFS) to encrypt the sensitive files on the laptops

Answer(s): D



A Trojan horse is a destructive program that masquerades as a benign application. The software initially appears to perform a desirable function for the user prior to installation and/or execution, but in addition to the expected function steals information or harms the system.



The challenge for an attacker is to send a convincing file attachment to the victim, which gets easily executed on the victim machine without raising any suspicion. Today's end users are quite knowledgeable about malwares and viruses. Instead of sending games and fun executables, Hackers today are quite successful in spreading the Trojans using Rogue security software.
What is Rogue security software?

  1. A flash file extension to Firefox that gets automatically installed when a victim visits rogue software disabling websites
  2. A Fake AV program that claims to rid a computer of malware, but instead installs spyware or other malware onto the computer. This kind of software is known as rogue security software.
  3. Rogue security software is based on social engineering technique in which the attackers lures victim to visit spear phishing websites
  4. This software disables firewalls and establishes reverse connecting tunnel between the victim's machine and that of the attacker

Answer(s): B






Post your Comments and Discuss GAQM CPEH-001 exam dumps with other Community members:

Join the CPEH-001 Discussion