New Year Sale Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: xmasmnth

Snort has been used to capture packets on the network.

  1. Home
  2. GAQM
  3. Certified Ethical Hacker CEH
  4. CEH-001
  5. CEH-001 Questions
  6. Certified Ethical Hacker (CEH) Practice Questions

Snort has been used to capture packets on the network. On studying the packets, the penetration tester finds it to be abnormal. If you were the penetration tester, why would you find this abnormal?

05/20-17:0645.061034 192.160.13.4:31337 --> 172.16.1.101:1

TCP TTL:44 TOS:0x10 ID:242

***FRP** Seq:0xA1D95  Ack:0x53  Win: 0x400

What is odd about this attack? (Choose the most appropriate statement)

A.

This is not a spoofed packet as the IP stack has increasing numbers for the three flags.

B.

This is back orifice activity as the scan comes from port 31337.

C.

The attacker wants to avoid creating a sub-carrier connection that is not normally valid.

D.

There packets were created by a tool; they were not created by a standard IP stack.

GAQM CEH-001 View All Questions

GAQM CEH-001 Summary

  • Vendor: GAQM
  • Product: CEH-001
  • Update on: Jan 2, 2026
  • Questions: 878
Price: $52.5  $149.99
Buy Now CEH-001 PDF + Testing Engine Pack
Next
Which of the following is an automated vulnerability assessment tool?
Which type of Nmap scan is the most reliable, but also the most visible, and...
Previous

Payments We Accept

Your purchase with ExamsVCE is safe and fast. Your products will be available for immediate download after your payment has been received.
The ExamsVCE website is protected by 256-bit SSL from McAfee, the leader in online security.

examsvce payment method

Contact Us

Copyright © 2013-2026 examsvce.com. All Rights Reserved
mcafee secure

TESTED 02 Jan 2026