GAQM CPEH-001 Exam
Certified Professional Ethical Hacker (CPEH) Exam (Page 35 )

Updated On: 1-Feb-2026

To what does "message repudiation" refer to what concept in the realm of email security?

  1. Message repudiation means a user can validate which mail server or servers a message was passed through.
  2. Message repudiation means a user can claim damages for a mail message that damaged their reputation.
  3. Message repudiation means a recipient can be sure that a message was sent from a particular person.
  4. Message repudiation means a recipient can be sure that a message was sent from a certain host.
  5. Message repudiation means a sender can claim they did not actually send a particular message.

Answer(s): E

Explanation:

A quality that prevents a third party from being able to prove that a communication between two other parties ever took place. This is a desirable quality if you do not want your communications to be traceable.
Non-repudiation is the opposite quality--a third party can prove that a communication between two other parties took place. Non-repudiation is desirable if you want to be able to trace your communications and prove that they occurred. Repudiation ­ Denial of message submission or delivery.



Snort has been used to capture packets on the network. On studying the packets, the penetration tester finds it to be abnormal. If you were the penetration tester, why would you find this abnormal? What is odd about this attack? (Choose the most appropriate statement)

  1. This is not a spoofed packet as the IP stack has increasing numbers for the three flags.
  2. This is back orifice activity as the scan comes from port 31337.
  3. The attacker wants to avoid creating a sub-carrier connection that is not normally valid.
  4. There packets were created by a tool; they were not created by a standard IP stack.

Answer(s): B

Explanation:

Port 31337 is normally used by Back Orifice. Note that 31337 is hackers spelling of `elite', meaning `elite hackers'.



Your XYZ trainee Sandra asks you which are the four existing Regional Internet Registry (RIR's)?

  1. APNIC, PICNIC, ARIN, LACNIC
  2. RIPE NCC, LACNIC, ARIN, APNIC
  3. RIPE NCC, NANIC, ARIN, APNIC
  4. RIPE NCC, ARIN, APNIC, LATNIC

Answer(s): B

Explanation:

All other answers include non existing organizations (PICNIC, NANIC, LATNIC). See http://www.arin.net/library/internet_info/ripe.html



A very useful resource for passively gathering information about a target company is:

  1. Host scanning
  2. Whois search
  3. Traceroute
  4. Ping sweep

Answer(s): B

Explanation:

A, C & D are "Active" scans, the question says: "Passively"



You receive an email with the following message:
Hello Steve,
We are having technical difficulty in restoring user database record after the recent blackout. Your account data is corrupted. Please logon to the SuperEmailServices.com and change your password. http://www.supermailservices.com@0xde.0xad.0xbe.0xef/support/logon.htm If you do not reset your password within 7 days, your account will be permanently disabled locking you out from our e-mail services.
Sincerely,
Technical Support
SuperEmailServices
From this e-mail you suspect that this message was sent by some hacker since you have been using their e-mail services for the last 2 years and they have never sent out an e-mail such as this. You also observe the URL in the message and confirm your suspicion about 0xde.0xad.0xbde.0xef which looks like hexadecimal numbers. You immediately enter the following at Windows 2000 command prompt:
Ping 0xde.0xad.0xbe.0xef

You get a response with a valid IP address.
What is the obstructed IP address in the e-mail URL?

  1. 222.173.190.239
  2. 233.34.45.64
  3. 54.23.56.55
  4. 199.223.23.45

Answer(s): A

Explanation:

0x stands for hexadecimal and DE=222, AD=173, BE=190 and EF=239



Viewing page 35 of 177
Viewing questions 171 - 175 out of 878 questions



Post your Comments and Discuss GAQM CPEH-001 exam prep with other Community members:

Join the CPEH-001 Discussion