GAQM Exam CPEH-001 Topic 5 Question 32 Discussion

Actual exam question for GAQM's CPEH-001 exam

Question #: 32
Topic #: 5

Network Intrusion Detection systems can monitor traffic in real time on networks. Which one of the following techniques can be very effective at avoiding proper detection?

AFragmentation of packets.

BUse of only TCP based protocols.

CUse of only UDP based protocols.

DUse of fragmented ICMP traffic only.

Show Suggested Answer

Suggested Answer: A

If the default fragmentation reassembly timeout is set to higher on the client than on the IDS then the it is possible to send an attack in fragments that will never be reassembled in the IDS but they will be reassembled and read on the client computer acting victim.

by Marti at May 08, 2022, 07:51 AM

Limited Time Offer

25%

Off

Get Premium CPEH-001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!