CEH-001 GAQM Exam Questions and Free Practice Test

Question 7

- (Topic 5)
A pentester is using Metasploit to exploit an FTP server and pivot to a LAN. How will the pentester pivot using Metasploit?

A. Issue the pivot exploit and set the meterpreter.

B. Reconfigure the network settings in the meterpreter.

C. Set the payload to propagate through the meterpreter.

D. Create a route statement in the meterpreter.

Correct Answer:D

Question 8

- (Topic 6)
While performing ping scans into a target network you get a frantic call from the organization’s security team. They report that they are under a denial of service attack. When you stop your scan, the smurf attack event stops showing up on the organization’s IDS monitor. How can you modify your scan to prevent triggering this event in the IDS?

A. Scan more slowly.

B. Do not scan the broadcast IP.

C. Spoof the source IP address.

D. Only scan the Windows systems.

Correct Answer:B
Scanning the broadcast address makes the scan target all IP addresses on that subnet at the same time.

Question 9

- (Topic 5)
Which United States legislation mandates that the Chief Executive Officer (CEO) and the Chief Financial Officer (CFO) must sign statements verifying the completeness and accuracy of financial reports?

A. Sarbanes-Oxley Act (SOX)

B. Gramm-Leach-Bliley Act (GLBA)

C. Fair and Accurate Credit Transactions Act (FACTA)

D. Federal Information Security Management Act (FISMA)

Correct Answer:A

Question 10

- (Topic 5)
Which set of access control solutions implements two-factor authentication?

A. USB token and PIN

B. Fingerprint scanner and retina scanner

C. Password and PIN

D. Account and password

Correct Answer:A

Question 11

- (Topic 5)
A newly discovered flaw in a software application would be considered which kind of security vulnerability?

A. Input validation flaw

B. HTTP header injection vulnerability

C. 0-day vulnerability

D. Time-to-check to time-to-use flaw

Correct Answer:C

Question 12

- (Topic 3)
Bill is a security analyst for his company. All the switches used in the company's office are Cisco switches. Bill wants to make sure all switches are safe from ARP poisoning. How can Bill accomplish this?

A. Bill can use the command: ip dhcp snooping.

B. Bill can use the command: no ip snoop.

C. Bill could use the command: ip arp no flood.

D. He could use the command: ip arp no snoop.

Correct Answer:A

START CEH-001 EXAM