Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
SAP
ServiceNow
All Vendors
  1. Home
  2. GAQM
  3. CPEH-001

GAQM CPEH-001 Exam (page: 1)
GAQM Certified Professional Ethical Hacker (CPEH) Exam
Updated on: 31-Mar-2026

Viewing Page 1 of 177
CPEH-001 PDF 878 Questions

Which of the following countermeasure can specifically protect against both the MAC Flood and MAC Spoofing attacks?

  1. Configure Port Security on the switch
  2. Configure Port Recon on the switch
  3. Configure Switch Mapping
  4. Configure Multiple Recognition on the switch

Answer(s): A



Jimmy, an attacker, knows that he can take advantage of poorly designed input validation routines to create or alter SQL commands to gain access to private data or execute commands in the database.
What technique does Jimmy use to compromise a database?

  1. Jimmy can submit user input that executes an operating system command to compromise a target system
  2. Jimmy can gain control of system to flood the target system with requests, preventing legitimate users from gaining access
  3. Jimmy can utilize an incorrect configuration that leads to access with higher-than expected privilege of the database
  4. Jimmy can utilize this particular database threat that is an SQL injection technique to penetrate a target system

Answer(s): D



This IDS defeating technique works by splitting a datagram (or packet) into multiple fragments and the IDS will not spot the true nature of the fully assembled datagram. The datagram is not reassembled until it reaches its final destination. It would be a processor-intensive task for IDS to reassemble all fragments itself, and on a busy system the packet will slip through the IDS onto the network.
What is this technique called?

  1. IP Routing or Packet Dropping
  2. IDS Spoofing or Session Assembly
  3. IP Fragmentation or Session Splicing
  4. IP Splicing or Packet Reassembly

Answer(s): C



If a competitor wants to cause damage to your organization, steal critical secrets, or put you out of business, they just have to find a job opening, prepare someone to pass the interview, have that person hired, and they will be in the organization.



How would you prevent such type of attacks?

  1. It is impossible to block these attacks
  2. Hire the people through third-party job agencies who will vet them for you
  3. Conduct thorough background checks before you engage them
  4. Investigate their social networking profiles

Answer(s): C



This type of Port Scanning technique splits TCP header into several packets so that the packet filters are not able to detect what the packets intends to do.

  1. UDP Scanning
  2. IP Fragment Scanning
  3. Inverse TCP flag scanning
  4. ACK flag scanning

Answer(s): B



Viewing Page 1 of 177



Share your comments for GAQM CPEH-001 exam with other users:

Thembelani 5/30/2023 2:45:00 AM

need this dumps
Anonymous


Abduraimov 4/19/2023 12:43:00 AM

preparing for this exam is overwhelming. you cannot pass without the help of these exam dumps.
UNITED KINGDOM


Puneeth 10/5/2023 2:06:00 AM

new to this site but i feel it is good
EUROPEAN UNION


Ashok Kumar 1/2/2024 6:53:00 AM

the correct answer to q8 is b. explanation since the mule app has a dependency, it is necessary to include project modules and dependencies to make sure the app will run successfully on the runtime on any other machine. source code of the component that the mule app is dependent of does not need to be included in the exported jar file, because the source code is not being used while executing an app. compiled code is being used instead.
Anonymous


Merry 7/30/2023 6:57:00 AM

good questions
Anonymous


VoiceofMidnight 12/17/2023 4:07:00 PM

Delayed the exam until December 29th.
UNITED STATES


Umar Ali 8/29/2023 2:59:00 PM

A and D are True
Anonymous


vel 8/28/2023 9:17:09 AM

good one with explanation
Anonymous


Gurdeep 1/18/2024 4:00:15 PM

This is one of the most useful study guides I have ever used.
CANADA