최신GAQM Certified Ethical Hacker (CEH) - CEH-001무료샘플문제
문제1
John is discussing security with Jane. Jane had mentioned to John earlier that she suspects an LKM has been installed on her server. She believes this is the reason that the server has been acting erratically lately. LKM stands for Loadable Kernel Module.
What does this mean in the context of Linux Security?
John is discussing security with Jane. Jane had mentioned to John earlier that she suspects an LKM has been installed on her server. She believes this is the reason that the server has been acting erratically lately. LKM stands for Loadable Kernel Module.
What does this mean in the context of Linux Security?
정답: B
설명: (ITDumpsKR 회원만 볼 수 있음)
문제2
Blane is a security analyst for a law firm. One of the lawyers needs to send out an email to a client but he wants to know if the email is forwarded on to any other recipients. The client is explicitly asked not to re-send the email since that would be a violation of the lawyer's and client's agreement for this particular case. What can Blane use to accomplish this?
Blane is a security analyst for a law firm. One of the lawyers needs to send out an email to a client but he wants to know if the email is forwarded on to any other recipients. The client is explicitly asked not to re-send the email since that would be a violation of the lawyer's and client's agreement for this particular case. What can Blane use to accomplish this?
정답: A
문제3
You are the Security Administrator of Xtrinity, Inc. You write security policies and conduct assessments to protect the company's network. During one of your periodic checks to see how well policy is being observed by the employees, you discover an employee has attached cell phone 3G modem to his telephone line and workstation. He has used this cell phone 3G modem to dial in to his workstation, thereby bypassing your firewall. A security breach has occurred as a direct result of this activity. The employee explains that he used the modem because he had to download software for a department project. How would you resolve this situation?
You are the Security Administrator of Xtrinity, Inc. You write security policies and conduct assessments to protect the company's network. During one of your periodic checks to see how well policy is being observed by the employees, you discover an employee has attached cell phone 3G modem to his telephone line and workstation. He has used this cell phone 3G modem to dial in to his workstation, thereby bypassing your firewall. A security breach has occurred as a direct result of this activity. The employee explains that he used the modem because he had to download software for a department project. How would you resolve this situation?
정답: B
문제4
What is a Trojan Horse?
What is a Trojan Horse?
정답: B
설명: (ITDumpsKR 회원만 볼 수 있음)
문제5
In this attack, a victim receives an e-mail claiming from PayPal stating that their account has been disabled and confirmation is required before activation. The attackers then scam to collect not one but two credit card numbers, ATM PIN number and other personal details.
Ignorant users usually fall prey to this scam. Which of the following statement is incorrect
related to this attack?
In this attack, a victim receives an e-mail claiming from PayPal stating that their account has been disabled and confirmation is required before activation. The attackers then scam to collect not one but two credit card numbers, ATM PIN number and other personal details.
Ignorant users usually fall prey to this scam. Which of the following statement is incorrect
related to this attack?
정답: E
문제6
_________ is one of the programs used to wardial.
_________ is one of the programs used to wardial.
정답: B
설명: (ITDumpsKR 회원만 볼 수 있음)
문제7
Which of the following is a primary service of the U.S. Computer Security Incident Response Team (CSIRT)?
Which of the following is a primary service of the U.S. Computer Security Incident Response Team (CSIRT)?
정답: D
문제8
During a penetration test, a tester finds that the web application being analyzed is vulnerable to Cross Site Scripting (XSS). Which of the following conditions must be met to exploit this vulnerability?
During a penetration test, a tester finds that the web application being analyzed is vulnerable to Cross Site Scripting (XSS). Which of the following conditions must be met to exploit this vulnerability?
정답: D
문제9
In Trojan terminology, what is required to create the executable file chess.exe as shown below?
In Trojan terminology, what is required to create the executable file chess.exe as shown below?
정답: D
문제10
What are the two basic types of attacks? (Choose two.
What are the two basic types of attacks? (Choose two.
정답: A,E
설명: (ITDumpsKR 회원만 볼 수 있음)
문제11
A security engineer has been asked to deploy a secure remote access solution that will allow employees to connect to the company's internal network. Which of the following can be implemented to minimize the opportunity for the man-in-the-middle attack to occur?
A security engineer has been asked to deploy a secure remote access solution that will allow employees to connect to the company's internal network. Which of the following can be implemented to minimize the opportunity for the man-in-the-middle attack to occur?
정답: C
문제12
A Buffer Overflow attack involves:
A Buffer Overflow attack involves:
정답: C
설명: (ITDumpsKR 회원만 볼 수 있음)
문제13
An organization hires a tester to do a wireless penetration test. Previous reports indicate that the last test did not contain management or control packets in the submitted traces. Which of the following is the most likely reason for lack of management or control packets?
An organization hires a tester to do a wireless penetration test. Previous reports indicate that the last test did not contain management or control packets in the submitted traces. Which of the following is the most likely reason for lack of management or control packets?
정답: C
문제14
A program that defends against a port scanner will attempt to:
A program that defends against a port scanner will attempt to:
정답: D
문제15
What is the proper response for a FIN scan if the port is closed?
What is the proper response for a FIN scan if the port is closed?
정답: B
설명: (ITDumpsKR 회원만 볼 수 있음)
문제16
Botnets are networks of compromised computers that are controlled remotely and surreptitiously by one or more cyber criminals. How do cyber criminals infect a victim's computer with bots? (Select 4 answers)
Botnets are networks of compromised computers that are controlled remotely and surreptitiously by one or more cyber criminals. How do cyber criminals infect a victim's computer with bots? (Select 4 answers)
정답: A,B,C,E
설명: (ITDumpsKR 회원만 볼 수 있음)