ExamGecko
Search Search Login
Home Home / ECCouncil / 312-50v12

ECCouncil 312-50v12 Practice Test - Questions Answers, Page 11

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

The "Gray-box testing" methodology enforces what kind of restriction?
A new wireless client is configured to join a 802.11 network. This client uses the same hardware and software as many of the other clients on the network. The client can see the network, but cannot connect. A wireless packet sniffer shows that the Wireless Access Point (WAP) is not responding to the association requests being sent by the wireless client. What is a possible source of this problem?
In an attempt to damage the reputation of a competitor organization, Hailey, a professional hacker, gathers a list of employee and client email addresses and other related information by using various search engines, social networking sites, and web spidering tools. In this process, she also uses an automated tool to gather a list of words from the target website to further perform a brute-force attack on the previously gathered email addresses. What is the tool used by Hailey for gathering a list of words from the target website?
Clark is a professional hacker. He created and configured multiple domains pointing to the same host to switch quickly between the domains and avoid detection. Identify the behavior of the adversary In the above scenario.
You are the Network Admin, and you get a complaint that some of the websites are no longer accessible. You try to ping the servers and find them to be reachable. Then you type the IP address and then you try on the browser, and find it to be accessible. But they are not accessible when you try using the URL. What may be the problem?
Which of the following types of SQL injection attacks extends the results returned by the original query, enabling attackers to run two or more statements if they have the same structure as the original one?
Upon establishing his new startup, Tom hired a cloud service provider (CSP) but was dissatisfied with their service and wanted to move to another CSP. What part of the contract might prevent him from doing so?
A pen tester is configuring a Windows laptop for a test. In setting up Wireshark, what river and library are required to allow the NIC to work in promiscuous mode?
A penetration tester was assigned to scan a large network range to find live hosts. The network is known for using strict TCP filtering rules on its firewall, which may obstruct common host discovery techniques. The tester needs a method that can bypass these firewall restrictions and accurately identify live systems. What host discovery technique should the tester use?
Attacker Rony Installed a rogue access point within an organization's perimeter and attempted to Intrude into its internal network. Johnson, a security auditor, identified some unusual traffic in the internal network that is aimed at cracking the authentication mechanism. He immediately turned off the targeted network and tested for any weak and outdated security mechanisms that are open to attack. What is the type of vulnerability assessment performed by Johnson in the above scenario?

Question 101

Report
Export
Collapse

Bob, a network administrator at BigUniversity, realized that some students are connecting their notebooks in the wired network to have Internet access. In the university campus, there are many Ethernet ports available for professors and authorized visitors but not for students.

He identified this when the IDS alerted for malware activities in the network. What should Bob do to avoid this problem?

A.
Disable unused ports in the switches
A.
Disable unused ports in the switches
Answers
B.
Separate students in a different VLAN
B.
Separate students in a different VLAN
Answers
C.
Use the 802.1x protocol
C.
Use the 802.1x protocol
Answers
D.
Ask students to use the wireless network
D.
Ask students to use the wireless network
Answers
Suggested answer: C

Question 102

Report
Export
Collapse

A company's policy requires employees to perform file transfers using protocols which encrypt traffic. You suspect some employees are still performing file transfers using unencrypted protocols because the employees do not like changes.

You have positioned a network sniffer to capture traffic from the laptops used by employees in the data ingest department. Using Wireshark to examine the captured traffic, which command can be used as display filter to find unencrypted file transfers?

A.
tcp.port = = 21
A.
tcp.port = = 21
Answers
B.
tcp.port = 23
B.
tcp.port = 23
Answers
C.
tcp.port = = 21 | | tcp.port = =22
C.
tcp.port = = 21 | | tcp.port = =22
Answers
D.
tcp.port ! = 21
D.
tcp.port ! = 21
Answers
Suggested answer: A

Question 103

Report
Export
Collapse

You just set up a security system in your network. In what kind of system would you find the following string of characters used as a rule within its configuration? alert tcp any any -> 192.168.100.0/24 21 (msg: ""FTP on the network!"";)

A.
A firewall IPTable
A.
A firewall IPTable
Answers
B.
FTP Server rule
B.
FTP Server rule
Answers
C.
A Router IPTable
C.
A Router IPTable
Answers
D.
An Intrusion Detection System
D.
An Intrusion Detection System
Answers
Suggested answer: D

Question 104

Report
Export
Collapse

Which of the following program infects the system boot sector and the executable files at the same time?

A.
Polymorphic virus
A.
Polymorphic virus
Answers
B.
Stealth virus
B.
Stealth virus
Answers
C.
Multipartite Virus
C.
Multipartite Virus
Answers
D.
Macro virus
D.
Macro virus
Answers
Suggested answer: C

Question 105

Report
Export
Collapse

To determine if a software program properly handles a wide range of invalid input, a form of automated testing can be used to randomly generate invalid input in an attempt to crash the program.

What term is commonly used when referring to this type of testing?

A.
Randomizing
A.
Randomizing
Answers
B.
Bounding
B.
Bounding
Answers
C.
Mutating
C.
Mutating
Answers
D.
Fuzzing
D.
Fuzzing
Answers
Suggested answer: D

Question 106

Report
Export
Collapse

An Intrusion Detection System (IDS) has alerted the network administrator to a possibly malicious sequence of packets sent to a Web server in the network's external DMZ. The packet traffic was captured by the IDS and saved to a PCAP file. What type of network tool can be used to determine if these packets are genuinely malicious or simply a false positive?

A.
Protocol analyzer
A.
Protocol analyzer
Answers
B.
Network sniffer
B.
Network sniffer
Answers
C.
Intrusion Prevention System (IPS)
C.
Intrusion Prevention System (IPS)
Answers
D.
Vulnerability scanner
D.
Vulnerability scanner
Answers
Suggested answer: A

Question 107

Report
Export
Collapse

The Heartbleed bug was discovered in 2014 and is widely referred to under MITRE's Common Vulnerabilities and Exposures (CVE) as CVE-2014-0160. This bug affects the OpenSSL implementation of the Transport Layer Security (TLS) protocols defined in RFC6520.

What type of key does this bug leave exposed to the Internet making exploitation of any compromised system very easy?

A.
Public
A.
Public
Answers
B.
Private
B.
Private
Answers
C.
Shared
C.
Shared
Answers
D.
Root
D.
Root
Answers
Suggested answer: B

Question 108

Report
Export
Collapse

Why should the security analyst disable/remove unnecessary ISAPI filters?

A.
To defend against social engineering attacks
A.
To defend against social engineering attacks
Answers
B.
To defend against webserver attacks
B.
To defend against webserver attacks
Answers
C.
To defend against jailbreaking
C.
To defend against jailbreaking
Answers
D.
To defend against wireless attacks
D.
To defend against wireless attacks
Answers
Suggested answer: B

Question 109

Report
Export
Collapse

Which of the following is a component of a risk assessment?

A.
Administrative safeguards
A.
Administrative safeguards
Answers
B.
Physical security
B.
Physical security
Answers
C.
DMZ
C.
DMZ
Answers
D.
Logical interface
D.
Logical interface
Answers
Suggested answer: A

Question 110

Report
Export
Collapse

CompanyXYZ has asked you to assess the security of their perimeter email gateway. From your office in New York, you craft a specially formatted email message and send it across the Internet to an employee of CompanyXYZ. The employee of CompanyXYZ is aware of your test. Your email message looks like this:

From: [email protected]

To: [email protected] Subject: Test message

Date: 4/3/2017 14:37

The employee of CompanyXYZ receives your email message.

This proves that CompanyXYZ's email gateway doesn't prevent what?

A.
Email Masquerading
A.
Email Masquerading
Answers
B.
Email Harvesting
B.
Email Harvesting
Answers
C.
Email Phishing
C.
Email Phishing
Answers
D.
Email Spoofing
D.
Email Spoofing
Answers
Suggested answer: D

Explanation:

Email spoofing is the fabrication of an email header in the hopes of duping the recipient into thinking the email originated from someone or somewhere other than the intended source. Because core email protocols do not have a built-in method of authentication, it is common for spam and phishing emails to use said spoofing to trick the recipient into trusting the origin of the message.

The ultimate goal of email spoofing is to get recipients to open, and possibly even respond to, a solicitation. Although the spoofed messages are usually just a nuisance requiring little action besides removal, the more malicious varieties can cause significant problems and sometimes pose a real security threat.

Total 573 questions
Go to page: of 58
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms