Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

GAQM Exam CPEH-001 Topic 4 Question 103 Discussion

Actual exam question for GAQM's CPEH-001 exam
Question #: 103
Topic #: 4
[All CPEH-001 Questions]

To scan a host downstream from a security gateway, Firewalking:

Show Suggested Answer Hide Answer
Suggested Answer: B

Firewalking uses a traceroute-like IP packet analysis to determine whether or not a particular packet can pass from the attacker's host to a destination host through a packet-filtering device. This technique can be used to map 'open' or 'pass through' ports on a gateway. More over, it can determine whether packets with various control information can pass through a given gateway.


by Rosina at Nov 15, 2024, 10:36 AM

Limited Time Offer

25%

Off

Get Premium CPEH-001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Hailey
3 days ago
I'm not sure, but I think D) Assesses the security rules that relate to the target system before it sends packets to any hops on the route to the gateway makes sense too.
upvoted 0 times
...
Micah
5 days ago
I disagree, I believe the answer is A) Sends a UDP-based packet that it knows will be blocked by the firewall to determine how specifically the firewall responds to such packets.
upvoted 0 times
...
My
11 days ago
Haha, this question is a real head-scratcher! I'm going to have to go with Option D, though. Assessing the security rules first seems like the safest approach.
upvoted 0 times
...
Vernell
16 days ago
This is a tough one, but I think Option C is the way to go. Sending an ICMP 'administratively prohibited' packet seems like a good way to test the gateway's defenses.
upvoted 0 times
Clarence
1 days ago
I think Option A might also be a valid approach to determine how the firewall responds to certain packets.
upvoted 0 times
...
Jose
4 days ago
I agree, Option C does seem like a good way to test the gateway's defenses.
upvoted 0 times
...
...
Azzie
18 days ago
I'm going with Option A. Sending a UDP packet that the firewall will block is a clever way to probe its response and gather information.
upvoted 0 times
...
Coral
20 days ago
Option B makes the most sense to me. Using the TTL function to send packets past the gateway sounds like a clever way to sneak past the firewall.
upvoted 0 times
Brent
12 days ago
User 1: I think option B is the best choice.
upvoted 0 times
...
...
Nancey
21 days ago
I think the answer is B) Uses the TTL function to send packets with a TTL value set to expire one hop past the identified security gateway.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77