Free GAQM CPEH-001 Practice Exam with Questions & Answers | Set: 11

Name: How to Pass CPEH-001 Exams
Brand: Examstrack
SKU: cpeh-001
Price: 36.75 USD
Availability: InStock

Questions 151

Which tool is used to automate SQL injections and exploit a database by forcing a given web application to connect to another database controlled by a hacker?

Options:

DataThief

NetCat

Cain and Abel

SQLInjector

GAQM CPEH-001 Premium Access

Santiago

26-Jun-2025

Thanks to examstrack.com, I confidently faced the CPEH-001 certification exam and succeeded!

Questions 152

The following is a sample of output from a penetration tester's machine targeting a machine with the IP address of 192.168.1.106:

CPEH-001 Question 152

What is most likely taking place?

Options:

Ping sweep of the 192.168.1.106 network

Remote service brute force attempt

Port scan of 192.168.1.106

Denial of service attack on 192.168.1.106

Questions 153

Which type of access control is used on a router or firewall to limit network activity?

Options:

Mandatory

Discretionary

Rule-based

Role-based

Questions 154

When an alert rule is matched in a network-based IDS like snort, the IDS does which of the following?

Options:

Drops the packet and moves on to the next one

Continues to evaluate the packet until all rules are checked

Stops checking rules, sends an alert, and lets the packet continue

Blocks the connection with the source IP address in the packet

Questions 155

What is the broadcast address for the subnet 190.86.168.0/22?

Options:

190.86.168.255

190.86.255.255

190.86.171.255

190.86.169.255

Questions 156

A penetration tester is hired to do a risk assessment of a company's DMZ. The rules of engagement states that the penetration test be done from an external IP address with no prior knowledge of the internal IT systems. What kind of test is being performed?

Options:

white box

grey box

red box

black box

Questions 157

Which of the following is a component of a risk assessment?

Options:

Physical security

Administrative safeguards

DMZ

Logical interface

Questions 158

Which of the following is a hardware requirement that either an IDS/IPS system or a proxy server must have in order to properly function?

Options:

Fast processor to help with network traffic analysis

They must be dual-homed

Similar RAM requirements

Fast network interface cards

Questions 159

While conducting a penetration test, the tester determines that there is a firewall between the tester's machine and the target machine. The firewall is only monitoring TCP handshaking of packets at the session layer of the OSI model. Which type of firewall is the tester trying to traverse?

Options:

Packet filtering firewall

Application-level firewall

Circuit-level gateway firewall

Stateful multilayer inspection firewall

Questions 160

What is the name of the international standard that establishes a baseline level of confidence in the security functionality of IT products by providing a set of requirements for evaluation?

Options:

Blue Book

ISO 26029

Common Criteria

The Wassenaar Agreement

Questions 161

A consultant has been hired by the V.P. of a large financial organization to assess the company's security posture. During the security testing, the consultant comes across child pornography on the V.P.'s computer. What is the consultant's obligation to the financial organization?

Options:

Say nothing and continue with the security testing.

Stop work immediately and contact the authorities.

Delete the pornography, say nothing, and continue security testing.

Bring the discovery to the financial organization's human resource department.

Questions 162

Some passwords are stored using specialized encryption algorithms known as hashes. Why is this an appropriate method?

Options:

It is impossible to crack hashed user passwords unless the key used to encrypt them is obtained.

If a user forgets the password, it can be easily retrieved using the hash key stored by administrators.

Hashing is faster compared to more traditional encryption algorithms.

Passwords stored using hashes are non-reversible, making finding the password much more difficult.

Questions 163

Which vital role does the U.S. Computer Security Incident Response Team (CSIRT) provide?

Options:

Incident response services to any user, company, government agency, or organization in partnership with the Department of Homeland Security

Maintenance of the nation’s Internet infrastructure, builds out new Internet infrastructure, and decommissions old Internet infrastructure

Registration of critical penetration testing for the Department of Homeland Security and public and private sectors

Measurement of key vulnerability assessments on behalf of the Department of Defense (DOD) and State Department, as well as private sectors

Questions 164

For messages sent through an insecure channel, a properly implemented digital signature gives the receiver reason to believe the message was sent by the claimed sender. While using a digital signature, the message digest is encrypted with which key?

Options:

Sender's public key

Receiver's private key

Receiver's public key

Sender's private key

Questions 165

Which of the following can take an arbitrary length of input and produce a message digest output of 160 bit?

Options:

SHA-1

MD5

HAVAL

MD4