GAQM Certified Professional Ethical Hacker (CPEH) Exam (CPEH-001) Free Practice Test

Question 1

What are the default passwords used by SNMP? (Choose two.)

A. Administrator

B. Private

C. SA

D. Blank

E. Password

F. Public

Correct Answer: B,F

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 2

If an attacker's computer sends an IPID of 24333 to a zombie (Idle Scanning) computer on a closed port, what will be the response?

A. The zombie computer will respond with an IPID of 24335.

B. The zombie computer will not send a response.

C. The zombie computer will respond with an IPID of 24333.

D. The zombie computer will respond with an IPID of 24334.

Correct Answer: D

Question 3

The network administrator at Spears Technology, Inc has configured the default gateway Cisco router's access-list as below:

You are hired to conduct security testing on their network. You successfully brute-force the SNMP community string using a SNMP crack tool. The access-list configured at the router prevents you from establishing a successful connection. You want to retrieve the Cisco configuration from the router. How would you proceed?

A. Run Generic Routing Encapsulation (GRE) tunneling protocol from your computer to the router masking your IP address

B. Use the Cisco's TFTP default password to connect and download the configuration file

C. Run a network sniffer and capture the returned traffic with the configuration file from the router

D. Send a customized SNMP set request with a spoofed source IP address in the range - 192.168.1.0

Correct Answer: C,D

Question 4

Choose one of the following pseudo codes to describe this statement:
"If we have written 200 characters to the buffer variable, the stack should stop because it cannot hold any more data."

A. If (I >= 200) then exit (1)

B. If (I <= 200) then exit (1)

C. If (I > 200) then exit (1)

D. If (I < 200) then exit (1)

Correct Answer: A

Question 5

Why would an attacker want to perform a scan on port 137?

A. To disrupt the NetBIOS SMB service on the target host

B. To discover information about a target host using NBTSTAT

C. To discover proxy servers on a network

D. To check for file and print sharing on Windows systems

Correct Answer: B

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 6

Jake is a network administrator who needs to get reports from all the computer and network devices on his network. Jake wants to use SNMP but is afraid that won't be secure since passwords and messages are in clear text. How can Jake gather network information in a secure manner?

A. He can use SecWMI

B. Jake can use SNMPrev5

C. He can use SNMPv3

D. Jake can use SecSNMP

Correct Answer: C

Question 7

Which of the following is not considered to be a part of active sniffing?

A. SMAC Fueling

B. MAC Duplicating

C. ARP Spoofing

D. MAC Flooding

Correct Answer: A

Question 8

What hacking attack is challenge/response authentication used to prevent?

A. Replay attacks

B. Password cracking attacks

C. Session hijacking attacks

D. Scanning attacks

Correct Answer: A

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 9

Who is an Ethical Hacker?

A. A person who hacks for defensive purposes

B. A person who hacks for offensive purposes

C. A person who hacks for an ethical cause

D. A person who hacks for ethical reasons

Correct Answer: A

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 10

What is the best defense against privilege escalation vulnerability?

A. Run services with least privileged accounts and implement multi-factor authentication and authorization.

B. Patch systems regularly and upgrade interactive login privileges at the system administrator level.

C. Run administrator and applications on least privileges and use a content registry for tracking.

D. Review user roles and administrator privileges for maximum utilization of automation services.

Correct Answer: A

Question 11

Eve decides to get her hands dirty and tries out a Denial of Service attack that is relatively new to her. This time she envisages using a different kind of method to attack Brownies Inc. Eve tries to forge the packets and uses the broadcast address. She launches an attack similar to that of fraggle. What is the technique that Eve used in the case above?

A. Ping of Death

B. Smurf

C. SYN Flood

D. Bubonic

Correct Answer: B

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Welcome to TestSimulate

GAQM Certified Professional Ethical Hacker (CPEH) (CPEH-001) Free Practice Test