GAQM Certified Professional Ethical Hacker (CPEH) - CPEH-001무료 덤프문제 풀어보기

페이지 수: 1 / 68
총876문항
최신버전 보기
The network administrator at Spears Technology, Inc has configured the default gateway Cisco router's access-list as below:

You are hired to conduct security testing on their network. You successfully brute-force the SNMP community string using a SNMP crack tool. The access-list configured at the router prevents you from establishing a successful connection. You want to retrieve the Cisco configuration from the router. How would you proceed?

정답: A,C
If you come across a sheepdip machine at your client's site, what should you do?

정답: C
설명: (Fast2test 회원만 볼 수 있음)
If you receive a RST packet while doing an ACK scan, it indicates that the port is open.(True/False).

정답: A
설명: (Fast2test 회원만 볼 수 있음)
What is the tool Firewalk used for?

정답: C
설명: (Fast2test 회원만 볼 수 있음)
Steven the hacker realizes that the network administrator of XYZ is using syskey to protect organization resources in the Windows 2000 Server. Syskey independently encrypts the hashes so that physical access to the server, tapes, or ERDs is only first step to cracking the passwords. Steven must break through the encryption used by syskey before he can attempt to brute force dictionary attacks on the hashes. Steven runs a program called "SysCracker" targeting the Windows 2000 Server machine in attempting to crack the hash used by Syskey. He needs to configure the encryption level before he can launch attach. How many bits does Syskey use for encryption?

정답: B
설명: (Fast2test 회원만 볼 수 있음)
What ports should be blocked on the firewall to prevent NetBIOS traffic from not coming through the firewall if your network is comprised of Windows NT, 2000, and XP?(Choose all that apply.

정답: A,B,C
설명: (Fast2test 회원만 볼 수 있음)
You work as security technician at XYZ.com. While doing web application testing, you might be required to look through multiple web pages online which can take a long time. Which of the processes listed below would be a more efficient way of doing this type of validation?

정답: C
설명: (Fast2test 회원만 볼 수 있음)
What is the key advantage of Session Hijacking?

정답: C
설명: (Fast2test 회원만 볼 수 있음)
If a tester is attempting to ping a target that exists but receives no response or a response that states the destination is unreachable, ICMP may be disabled and the network may be using TCP. Which other option could the tester use to get a response from a host using TCP?

정답: D
Joe the Hacker breaks into XYZ's Linux system and plants a wiretap program in order to sniff passwords and user accounts off the wire. The wiretap program is embedded as a Trojan horse in one of the network utilities. Joe is worried that network administrator might detect the wiretap program by querying the interfaces to see if they are running in promiscuous mode.

What can Joe do to hide the wiretap program from being detected by ifconfig command?

정답: B
설명: (Fast2test 회원만 볼 수 있음)
Basically, there are two approaches to network intrusion detection: signature detection, and anomaly detection. The signature detection approach utilizes well-known signatures for network traffic to identify potentially malicious traffic. The anomaly detection approach utilizes a previous history of network traffic to search for patterns that are abnormal, which would indicate an intrusion. How can an attacker disguise his buffer overflow attack signature such that there is a greater probability of his attack going undetected by the IDS?

정답: C
설명: (Fast2test 회원만 볼 수 있음)
Which type of password cracking technique works like dictionary attack but adds some numbers and symbols to the words from the dictionary and tries to crack the password?

정답: D
A security policy will be more accepted by employees if it is consistent and has the support of

정답: A
페이지 수: 1 / 68
총 876 문항

우리와 연락하기

문의할 점이 있으시면 메일을 보내오세요. 12시간이내에 답장드리도록 하고 있습니다.

근무시간: ( UTC+9 ) 9:00-24:00
월요일~토요일

서포트: 바로 연락하기 

English Deutsch 繁体中文 日本語

유용한 링크

최신 업데이트