CEH-001 Dumps
          CEH-001 Braindumps
          CEH-001 Real Questions
          CEH-001 Practice Test
          CEH-001 Actual Questions












































            GAQM



            CEH-001







            Certified Ethical Hacker (CEH v.11)










            https://killexams.com/pass4sure/exam-detail/CEH-001




















                QUESTION:      871




                What is SYSKEY # of    bits used for encryption?




                A.   40

                B. 64
                C.   128
                D.   256


                Answer:   C Explanation:










                System    Key  hotfix  is  an  optional  feature  which  allows  stronger  encryption  of  SAM.


                Strong encryption   protects private account   information by encrypting the password data





                using a




                128-bit   cryptographically random key, known as a password encryption key.



                QUESTION:      872


                Which of
                          the following is NOT true of cryptography?



                A.   Science of protecting information by encoding it into an unreadable format











                B.   Method of storing and transmitting data in a form that only those it is intended for can
                read and process









                C.   Most (if not all) algorithms can be broken by both technical and non-technical means







                D.   An effective way of protecting sensitive information in storage but not in transit


                Answer: D







                Explanation:    Cryptography will protect data in both storage and in transit.























                QUESTION:      873


                          the following best describes session key creation in SSL?
                Which of










                A. It is created by   the server after verifying theuser's identity B. It is created by the server







                upon   connection by the client C. It is created by the client from the server's public key








                D.   It is created by the client after verifying the server's identity






                Answer: D


                Explanation:    An SSL session always begins with an exchange of messages called    the














                SSL   handshake. The handshake allows the server to authenticate itself to the client using









                public-key   techniques, then allows the client and the server to cooperate in the creation of





                symmetric   keys used for rapid encryption, decryption, and tamper detection during the






                session   that follows. Optionally, the handshake also allows the client to authenticate itself








                to the   server.










                QUESTION:      874


                How many    bits encryption does SHA-1 use?




                A.   64 bits B. 128 bits C. 160 bits D. 256 bits






                Answer: C
















                Explanation:    SHA-1 (as well as SHA-0) produces a 160-bit digest from a message with









                   a maximum length of 264 - 1 bits, and is based on principles similar to those used by










                Professor   Ronald L. Rivest of MIT in the design of the MD4 and MD5 message digest
                algorithms.










                QUESTION:      875


                         some dispute between two network administrators at your company. Your boss
                There is






                asks   you to come and meet with the administrators to set   the record straight. Which of



                these   are true about PKI and encryption?






                Select   the best answers.







                A.   PKI provides data with encryption, compression, and restorability.









                B.   Public-key encryption was invented in 1976 by Whitfield Diffie and Martin Hellman.








                C.   When it comes to eCommerce, as long as you have authenticity, and authenticity, you

                do not   need encryption.

                D.   RSA is a type of encryption.



                Answer:   B,D


                Explanation:    PKI provides confidentiality, integrity, and authenticity of the messages







                exchanged between   these two types of systems.  The 3rd party provides the public key













                and the   receiver verifies the message with a combination of the private and   public   key.




                Public-  key encryption WAS invented in 1976 by Whitfield Diffie and Martin Hellman.












                The    famous  hashing  algorithm  Diffie-Hellman  was  named  after  them.  The  RSA



                Algorithm      is created by the RSA Security company that  also has created other widely






                used encryption   algorithms.





















                QUESTION:      876
                    A client  has approached  you with a penetration test  requirements. They are concerned

















                with    the  possibility  of  external  threat,  and  have  invested  considerable  resources  in







                protecting their   Internet exposure. However, their  main concern is the possibility of an
                employee   elevating his/her privileges and gaining   access to


                                                                           information outside of their
                respective   department.



                What   kind of penetration test would you recommend that would best address the client‘s






                concern?








                A.   A Black   Box test   B. A Black   Hat   test   C. A Grey Box test   D. A Grey Hat   test E. A






                White   Box test F. A White Hat test


                Answer: C







                QUESTION:      877




                In   which of the following should be performed first in any penetration test?








                A.   System identification



                B.   Intrusion Detection System testing

                C.   Passive information gathering


                D.   Firewall testing



                Answer: C

















                QUESTION:      878






                Vulnerability   mapping occurs after which phase of a penetration test?




                A.   Host scanning


                B.   Passive information gathering
                C.   Analysis of host scanning



                D.   Network level discovery


                Answer: C

                Explanation:





                The    order  should  be  Passive  information  gathering,  Network  level  discovery,  Host


                scanning and Analysis of
                                         host scanning.








                         6$03/( 48(67,216








            7KHVH TXHVWLRQV DUH IRU GHPR SXUSRVH RQO\  )XOO YHUVLRQ LV

            XS WR GDWH DQG FRQWDLQV DFWXDO TXHVWLRQV DQG DQVZHUV


            .LOOH[DPV FRP LV DQ RQOLQH SODWIRUP WKDW RIIHUV D ZLGH UDQJH RI VHUYLFHV UHODWHG WR FHUWLILFDWLRQ
            H[DP SUHSDUDWLRQ  7KH SODWIRUP SURYLGHV DFWXDO TXHVWLRQV  H[DP GXPSV  DQG SUDFWLFH WHVWV WR
            KHOS LQGLYLGXDOV SUHSDUH IRU YDULRXV FHUWLILFDWLRQ H[DPV ZLWK FRQILGHQFH  +HUH DUH VRPH NH\
            IHDWXUHV DQG VHUYLFHV RIIHUHG E\ .LOOH[DPV FRP


            $FWXDO ([DP 4XHVWLRQV  .LOOH[DPV FRP SURYLGHV DFWXDO H[DP TXHVWLRQV WKDW DUH H[SHULHQFHG
            LQ WHVW FHQWHUV  7KHVH TXHVWLRQV DUH XSGDWHG UHJXODUO\ WR HQVXUH WKH\ DUH XS WR GDWH DQG
            UHOHYDQW WR WKH ODWHVW H[DP V\OODEXV  %\ VWXG\LQJ WKHVH DFWXDO TXHVWLRQV  FDQGLGDWHV FDQ
            IDPLOLDUL]H WKHPVHOYHV ZLWK WKH FRQWHQW DQG IRUPDW RI WKH UHDO H[DP

            ([DP 'XPSV  .LOOH[DPV FRP RIIHUV H[DP GXPSV LQ 3') IRUPDW  7KHVH GXPSV FRQWDLQ D
            FRPSUHKHQVLYH FROOHFWLRQ RI TXHVWLRQV DQG DQVZHUV WKDW FRYHU WKH H[DP WRSLFV  %\ XVLQJ WKHVH
            GXPSV  FDQGLGDWHV FDQ HQKDQFH WKHLU NQRZOHGJH DQG LPSURYH WKHLU FKDQFHV RI VXFFHVV LQ WKH
            FHUWLILFDWLRQ H[DP


            3UDFWLFH 7HVWV  .LOOH[DPV FRP SURYLGHV SUDFWLFH WHVWV WKURXJK WKHLU GHVNWRS 9&( H[DP
            VLPXODWRU DQG RQOLQH WHVW HQJLQH  7KHVH SUDFWLFH WHVWV VLPXODWH WKH UHDO H[DP HQYLURQPHQW DQG
            KHOS FDQGLGDWHV DVVHVV WKHLU UHDGLQHVV IRU WKH DFWXDO H[DP  7KH SUDFWLFH WHVWV FRYHU D ZLGH
            UDQJH RI TXHVWLRQV DQG HQDEOH FDQGLGDWHV WR LGHQWLI\ WKHLU VWUHQJWKV DQG ZHDNQHVVHV

            *XDUDQWHHG 6XFFHVV  .LOOH[DPV FRP RIIHUV D VXFFHVV JXDUDQWHH ZLWK WKHLU H[DP GXPSV  7KH\
            FODLP WKDW E\ XVLQJ WKHLU PDWHULDOV  FDQGLGDWHV ZLOO SDVV WKHLU H[DPV RQ WKH ILUVW DWWHPSW RU WKH\
            ZLOO UHIXQG WKH SXUFKDVH SULFH  7KLV JXDUDQWHH SURYLGHV DVVXUDQFH DQG FRQILGHQFH WR LQGLYLGXDOV
            SUHSDULQJ IRU FHUWLILFDWLRQ H[DPV


            8SGDWHG &RQWHQW  .LOOH[DPV FRP UHJXODUO\ XSGDWHV LWV TXHVWLRQ EDQN DQG H[DP GXPSV WR
            HQVXUH WKDW WKH\ DUH FXUUHQW DQG UHIOHFW WKH ODWHVW FKDQJHV LQ WKH H[DP V\OODEXV  7KLV KHOSV
            FDQGLGDWHV VWD\ XS WR GDWH ZLWK WKH H[DP FRQWHQW DQG LQFUHDVHV WKHLU FKDQFHV RI VXFFHVV


            7HFKQLFDO 6XSSRUW  .LOOH[DPV FRP SURYLGHV IUHH   [  WHFKQLFDO VXSSRUW WR DVVLVW FDQGLGDWHV
            ZLWK DQ\ TXHULHV RU LVVXHV WKH\ PD\ HQFRXQWHU ZKLOH XVLQJ WKHLU VHUYLFHV  7KHLU FHUWLILHG H[SHUWV
            DUH DYDLODEOH WR SURYLGH JXLGDQFH DQG KHOS FDQGLGDWHV WKURXJKRXW WKHLU H[DP SUHSDUDWLRQ
            MRXUQH\



                             'PS .PSF FYBNT WJTJU IUUQT   LJMMFYBNT DPN WFOEPST FYBN MJTU
                                .LOO \RXU H[DP DW )LUVW $WWHPSW    *XDUDQWHHG