GAQM Certification Exam Practice Tests & PDFs

cpeh-001

Practice makes perfect! Take this quiz now to test your knowledge and boost your confidence for the real exam.

1 / 9

Joel and her team have been going through tons of garbage, recycled paper, and other rubbish in order to find some information about the target they are attempting to penetrate. How would you call this type of activity?

A. Garbage Scooping

B. CI Gathering

C. Dumpster Diving

D. Scanning

2 / 9

What type of attack is shown in the following diagram?

A. Man-in-the-Middle (MiTM) Attack

B. SSL Spoofing Attack

C. Session Hijacking Attack

D. Identity Stealing Attack

3 / 9

If a competitor wants to cause damage to your organization, steal critical secrets, or put you out of business, they just have to find a job opening, prepare someone to pass the interview, have that person hired, and they will be in the organization. How would you prevent such type of attacks?

A. Investigate their social networking profiles

B. It is impossible to block these attacks

C. Conduct thorough background checks before you engage them

D. Hire the people through third-party job agencies who will vet them for you

4 / 9

Jack Hacker wants to break into Brown Co.'s computers and obtain their secret double fudge cookie recipe. Jack calls Jane, an accountant at Brown Co., pretending to be an administrator from Brown Co. Jack tells Jane that there has been a problem with some accounts and asks her to verify her password with him ''just to double check our records.'' Jane does not suspect anything amiss, and parts with her password. Jack can now access Brown Co.'s computers with a valid user name and password, to steal the cookie recipe. What kind of attack is being illustrated here? E. Faking Identity

A. Spoofing Identity

B. Social Engineering

C. Reverse Engineering

D. Reverse Psychology

5 / 9

Which of the following countermeasure can specifically protect against both the MAC Flood and MAC Spoofing attacks?

A. Configure Switch Mapping

B. Configure Port Recon on the switch

C. Configure Port Security on the switch

D. Configure Multiple Recognition on the switch

6 / 9

This type of Port Scanning technique splits TCP header into several packets so that the packet filters are not able to detect what the packets intends to do.

A. ACK flag scanning

B. IP Fragment Scanning

C. Inverse TCP flag scanning

D. UDP Scanning

7 / 9

Jimmy, an attacker, knows that he can take advantage of poorly designed input validation routines to create or alter SQL commands to gain access to private data or execute commands in the database. What technique does Jimmy use to compromise a database? system users from gaining access privilege of the database target system

A. Jimmy can utilize this particular database threat that is an SQL injection technique to penetrate a

B. Jimmy can submit user input that executes an operating system command to compromise a target

C. Jimmy can utilize an incorrect configuration that leads to access with higher-than expected

D. Jimmy can gain control of system to flood the target system with requests, preventing legitimate

8 / 9

How do you defend against ARP Spoofing? Select three.

A. Use private VLANS

B. Tune IDS Sensors to look for large amount of ARP traffic on local subnets

C. Place static ARP entries on servers, workstation and routers

D. Use ARPWALL system and block ARP spoofing attacks

9 / 9

This IDS defeating technique works by splitting a datagram (or packet) into multiple fragments and the IDS will not spot the true nature of the fully assembled datagram. The datagram is not reassembled until it reaches its final destination. It would be a processor-intensive task for IDS to reassemble all fragments itself, and on a busy system the packet will slip through the IDS onto the network. What is this technique called?

A. IP Fragmentation or Session Splicing

B. IP Routing or Packet Dropping

C. IDS Spoofing or Session Assembly

D. IP Splicing or Packet Reassembly

Your score is

0%

Use copon code and enjoy the whole of 50% discount

Free Demo

24/7 Support.

Secure Online Payments

Fast & Reliable Service

Main Links

Useful Links

Our Top Categories

Contact Us:

Gmail

Phone

Address