Free GAQM CPEH-001 Practice Test & Real Exam Questions

Exam Code/Number: CPEH-001
Exam Name/Title: GAQM Certified Professional Ethical Hacker (CPEH) Exam
Certification Provider: GAQM
Corresponding Certification: GAQM Information Systems Security

Exam Questions: 876
Updated On: Jun 21, 2026

Question #45

Which of the following statements best describes the term Vulnerability?

A. An agent that has the potential to take advantage of a weakness

B. The loss potential of a threat.

C. An action or event that might prejudice security

D. A weakness or error that can lead to a compromise

Discussion 0

Correct Answer: D Vote an answer

Explanation: Only visible for Pass4Leader members. You can sign-up / login (it's free).

Question #46

While footprinting a network, what port/service should you look for to attempt a zone transfer?

A. 53 TCP

B. 161 UDP

C. 25 TCP

D. 60 TCP

E. 53 UDP

F. 22 TCP

G. 25 UDP

Discussion 0

Correct Answer: A Vote an answer

Explanation: Only visible for Pass4Leader members. You can sign-up / login (it's free).

Question #47

Take a look at the following attack on a Web Server using obstructed URL:

How would you protect from these attacks?

A. Configure the Web Server to deny requests involving "hex encoded" characters

B. Create rules in IDS to alert on strange Unicode requests

C. Enable Active Scripts Detection at the firewall and routers

D. Use SSL authentication on Web Servers

Discussion 0

Correct Answer: B Vote an answer

Question #48

Vulnerability mapping occurs after which phase of a penetration test?

A. Passive information gathering

B. Host scanning

C. Analysis of host scanning

D. Network level discovery

Discussion 0

Correct Answer: C Vote an answer

Explanation: Only visible for Pass4Leader members. You can sign-up / login (it's free).

Question #49

What type of Trojan is this?

A. Destructing Trojan

B. E-Mail Trojan

C. RAT Trojan

D. Denial of Service Trojan

E. Defacement Trojan

Discussion 0

Correct Answer: E Vote an answer

Question #50

Exhibit:

The following is an entry captured by a network IDS.You are assigned the task of analyzing this entry. You notice the value 0x90, which is the most common NOOP instruction for the Intel processor. You figure that the attacker is attempting a buffer overflow attack. You also notice "/bin/sh" in the ASCII part of the output. As an analyst what would you conclude about the attack?

A. The attacker is creating a directory on the compromised machine

B. The buffer overflow attack has been neutralized by the IDS

C. The attacker is attempting an exploit that launches a command-line shell

D. The attacker is attempting a buffer overflow attack and has succeeded

Discussion 0

Correct Answer: C Vote an answer

Explanation: Only visible for Pass4Leader members. You can sign-up / login (it's free).

Question #51

John is using a special tool on his Linux platform that has a signature database and is therefore able to detect hundred of vulnerabilities in UNIX, Windows, and commonly-used web CGI scripts. Additionally, the database detects DDoS zombies and Trojans. What would be the name of this multifunctional tool?

A. nessus

B. hping

C. nmap

D. make

Discussion 0

Correct Answer: A Vote an answer

Explanation: Only visible for Pass4Leader members. You can sign-up / login (it's free).

Question #52

One of the ways to map a targeted network for live hosts is by sending an ICMP ECHO request to the broadcast or the network address. The request would be broadcasted to all hosts on the targeted network. The live hosts will send an ICMP ECHO Reply to the attacker's source IP address. You send a ping request to the broadcast address 192.168.5.255.

There are 40 computers up and running on the target network. Only 13 hosts send a reply while others do not. Why?

A. You cannot ping a broadcast address. The above scenario is wrong.

B. Linux machines will not generate an answer (ICMP ECHO Reply) to an ICMP ECHO request aimed at the broadcast address or at the network address.

C. Windows machines will not generate an answer (ICMP ECHO Reply) to an ICMP ECHO request aimed at the broadcast address or at the network address.

D. You should send a ping request with this command ping ? 192.168.5.0-255

Discussion 0

Correct Answer: C Vote an answer

Question #53

Which of the following is an example of IP spoofing?

A. ARP poisoning

B. SQL injections

C. Man-in-the-middle

D. Cross-site scripting

Discussion 0

Correct Answer: C Vote an answer

Question #54

An organization hires a tester to do a wireless penetration test. Previous reports indicate that the last test did not contain management or control packets in the submitted traces. Which of the following is the most likely reason for lack of management or control packets?

A. On Linux and Mac OS X, only 802.11 headers are received in promiscuous mode.

B. The wireless card was not turned on.

C. The wrong network card drivers were in use by Wireshark.

D. Certain operating systems and adapters do not collect the management or control packets.

Discussion 0

Correct Answer: D Vote an answer

Question #55

A circuit level gateway works at which of the following layers of the OSI Model?

A. Layer 5 - Application

B. Layer 3 - Internet protocol

C. Layer 4 - TCP

D. Layer 2 - Data link

Discussion 0

Correct Answer: C Vote an answer

Download Free GAQM CPEH-001 Demo

Simply submit your e-mail address below to get started with our free demo of your GAQM CPEH-001 exam.