New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GAQM CPEH-001 Exam - Topic 5 Question 32 Discussion

Actual exam question for GAQM's CPEH-001 exam
Question #: 32
Topic #: 5
[All CPEH-001 Questions]

Network Intrusion Detection systems can monitor traffic in real time on networks. Which one of the following techniques can be very effective at avoiding proper detection?

Show Suggested Answer Hide Answer
Suggested Answer: A

If the default fragmentation reassembly timeout is set to higher on the client than on the IDS then the it is possible to send an attack in fragments that will never be reassembled in the IDS but they will be reassembled and read on the client computer acting victim.


by Marti at May 08, 2022, 07:51 AM

Limited Time Offer

25%

Off

Get Premium CPEH-001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Veronica
4 months ago
UDP is often overlooked, but it can be tricky for detection too.
upvoted 0 times
...
Lettie
4 months ago
Wait, can fragmented ICMP traffic really bypass detection? Sounds fishy.
upvoted 0 times
...
Chi
4 months ago
I think using only TCP protocols is safer, right?
upvoted 0 times
...
Yolando
4 months ago
Totally agree, it's a classic evasion technique!
upvoted 0 times
...
Felice
5 months ago
Fragmentation of packets can really throw off detection systems.
upvoted 0 times
...
Annett
5 months ago
I vaguely remember that TCP and UDP have different behaviors in terms of detection, but I can't recall which one is more effective at avoiding detection.
upvoted 0 times
...
Monte
5 months ago
I'm leaning towards option D, but I feel like I need to double-check how ICMP traffic is treated by intrusion detection systems.
upvoted 0 times
...
Kara
5 months ago
I think we practiced a question similar to this, and I recall that using fragmented packets can confuse IDS systems.
upvoted 0 times
...
Venita
5 months ago
I remember studying how packet fragmentation can help evade detection, but I'm not entirely sure if it's the best method.
upvoted 0 times
...
Cherilyn
5 months ago
Okay, let me see... sum, addtotals, count, avg. Addtotals doesn't sound like a standard stats function, so I'll go with that one.
upvoted 0 times
...
Sophia
5 months ago
Okay, I've got this. Type 10 opaque LSAs are used for traffic engineering, and they're flooded to all areas. I'm pretty confident in that.
upvoted 0 times
...

Save Cancel