Changed CPEH-001 Exam Questions

Certified Professional Ethical Hacker (CPEH) Questions and Answers

Question 105

Which of the following security operations is used for determining the attack surface of an organization?

Options:

Running a network scan to detect network services in the corporate DMZ

Training employees on the security policy regarding social engineering

Reviewing the need for a security clearance for each employee

Using configuration management to determine when and where to apply security patches

Question 106

If there is an Intrusion Detection System (IDS) in intranet, which port scanning technique cannot be used?

Options:

Spoof Scan

TCP Connect scan

TCP SYN

Idle Scan

Question 107

Due to a slowdown of normal network operations, IT department decided to monitor internet traffic for all of the employees. From a legal stand point, what would be troublesome to take this kind of measure?

Options:

All of the employees would stop normal work activities

IT department would be telling employees who the boss is

Not informing the employees that they are going to be monitored could be an invasion of privacy.

The network could still experience traffic slow down.

Question 108

To determine if a software program properly handles a wide range of invalid input, a form of automated testing can be used to randomly generate invalid input in an attempt to crash the program.

What term is commonly used when referring to this type of testing?

Options:

Fuzzing

Randomizing

Mutating

Bounding

Black Friday Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

Certified Professional Ethical Hacker (CPEH) Questions and Answers

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

CompTIA

Fortinet

Microsoft

Salesforce