Free GAQM CPEH-001 Practice Exam with Questions & Answers | Set: 7

Name: How to Pass CPEH-001 Exams
Brand: Examstrack
SKU: cpeh-001
Price: 42 USD
Availability: InStock

Questions 91

Which of the following is a form of penetration testing that relies heavily on human interaction and often involves tricking people into breaking normal security procedures?

Options:

Social Engineering

Piggybacking

Tailgating

Eavesdropping

GAQM CPEH-001 Premium Access

Santiago

26-Jun-2025

Thanks to examstrack.com, I confidently faced the CPEH-001 certification exam and succeeded!

Questions 92

Which of the following will perform an Xmas scan using NMAP?

Options:

nmap -sA 192.168.1.254

nmap -sP 192.168.1.254

nmap -sX 192.168.1.254

nmap -sV 192.168.1.254

Questions 93

What does a type 3 code 13 represent? (Choose two.)

Options:

Echo request

Destination unreachable

Network unreachable

Administratively prohibited

Port unreachable

Time exceeded

Questions 94

Backing up data is a security must. However, it also has certain level of risks when mishandled. Which of the following is the greatest threat posed by backups?

Options:

A backup is the source of Malware or illicit information

A backup is incomplete because no verification was performed

A backup is unavailable during disaster recovery

An unencrypted backup can be misplaced or stolen

Questions 95

The following are types of Bluetooth attack EXCEPT_____?

Options:

Bluejacking

Bluesmaking

Bluesnarfing

Bluedriving

Questions 96

In IPv6 what is the major difference concerning application layer vulnerabilities compared to IPv4?

Options:

Implementing IPv4 security in a dual-stack network offers protection from IPv6 attacks too.

Vulnerabilities in the application layer are independent of the network layer. Attacks and mitigation techniques are almost identical.

Due to the extensive security measures built in IPv6, application layer vulnerabilities need not be addresses.

Vulnerabilities in the application layer are greatly different from IPv4.

Questions 97

Using Windows CMD, how would an attacker list all the shares to which the current user context has access?

Options:

NET USE

NET CONFIG

NET FILE

NET VIEW

Questions 98

Which of the following is a command line packet analyzer similar to GUI-based Wireshark?

Options:

tcpdump

nessus

etherea

Jack the ripper

Questions 99

You've gained physical access to a Windows 2008 R2 server which has an accessible disc drive. When you attempt to boot the server and log in, you are unable to guess the password. In your tool kit you have an Ubuntu 9.10 Linux LiveCD. Which Linux based tool has the ability to change any user's password or to activate disabled Windows accounts?

Options:

CHNTPW

Cain & Abel

SET

John the Ripper

Questions 100

What is the process of logging, recording, and resolving events that take place in an organization?

Options:

Incident Management Process

Security Policy

Internal Procedure

Metrics

Questions 101

This tool is an 802.11 WEP and WPA-PSK keys cracking program that can recover keys once enough data packets have been captured. It implements the standard FMS attack along with some optimizations like KoreK attacks, as well as the PTW attack, thus making the attack much faster compared to other WEP cracking tools.

Which of the following tools is being described?

Options:

Aircrack-ng

Airguard

WLAN-crack

wificracker

Questions 102

When you are collecting information to perform a data analysis, Google commands are very useful to find sensitive information and files. These files may contain information about passwords, system functions, or documentation.

What command will help you to search files using Google as a search engine?

Options:

site: target.com filetype:xls username password email

inurl: target.com filename:xls username password email

domain: target.com archive:xls username password email

site: target.com file:xls username password email

Questions 103

You have compromised a server on a network and successfully opened a shell. You aimed to identify all operating systems running on the network. However, as you attempt to fingerprint all machines in the network using the nmap syntax below, it is not going through.

CPEH-001 Question 103

What seems to be wrong?

Options:

OS Scan requires root privileges.

The nmap syntax is wrong.

This is a common behavior for a corrupted nmap application.

The outgoing TCP/IP fingerprinting is blocked by the host firewall.

Questions 104

You've just been hired to perform a pen test on an organization that has been subjected to a large-scale attack. The CIO is concerned with mitigating threats and vulnerabilities to totally eliminate risk.

What is one of the first things you should do when given the job?

Options:

Explain to the CIO that you cannot eliminate all risk, but you will be able to reduce risk to acceptable levels.

Interview all employees in the company to rule out possible insider threats.

Establish attribution to suspected attackers.

Start the wireshark application to start sniffing network traffic.

Questions 105

Your team has won a contract to infiltrate an organization. The company wants to have the attack be as realistic as possible; therefore, they did not provide any information besides the company name.

What should be the first step in security testing the client?

Options:

Reconnaissance

Enumeration

Scanning

Escalation