GAQM Certified Ethical Hacker (CEH) CEH-001 Question # 95 Topic 10 Discussion

CEH-001 Exam Topic 10 Question 95 Discussion:

Question #: 95

Topic #: 10

Snort has been used to capture packets on the network. On studying the packets, the penetration tester finds it to be abnormal. If you were the penetration tester, why would you find this abnormal?
05/20-17:0645.061034 192.160.13.4:31337 --> 172.16.1.101:1
TCP TTL:44 TOS:0x10 ID:242
***FRP** Seq:0xA1D95 Ack:0x53 Win: 0x400
What is odd about this attack? (Choose the most appropriate statement)

This is not a spoofed packet as the IP stack has increasing numbers for the three flags.

This is back orifice activity as the scan comes from port 31337.

The attacker wants to avoid creating a sub-carrier connection that is not normally valid.

There packets were created by a tool; they were not created by a standard IP stack.

Get Premium CEH-001 Questions

Actual exam question for GAQM CEH-001 exam by Lyric84763 at Aug 2, 2025, 12:00:00 AM

Contribute your Thoughts:

Chosen Answer: A B C D
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

GAQM Certified Ethical Hacker (CEH) CEH-001 Question # 95 Topic 10 Discussion

GAQM Certified Ethical Hacker (CEH) CEH-001 Question # 95 Topic 10 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

GAQM Certified Ethical Hacker (CEH) CEH-001 Question # 95 Topic 10 Discussion

GAQM Certified Ethical Hacker (CEH) CEH-001 Question # 95 Topic 10 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Awaiting moderator approval