ExamGecko
Search Search Login
Home Home / ECCouncil / 312-50v12

ECCouncil 312-50v12 Practice Test - Questions Answers, Page 18

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

The "Gray-box testing" methodology enforces what kind of restriction?
A new wireless client is configured to join a 802.11 network. This client uses the same hardware and software as many of the other clients on the network. The client can see the network, but cannot connect. A wireless packet sniffer shows that the Wireless Access Point (WAP) is not responding to the association requests being sent by the wireless client. What is a possible source of this problem?
Clark is a professional hacker. He created and configured multiple domains pointing to the same host to switch quickly between the domains and avoid detection. Identify the behavior of the adversary In the above scenario.
In an attempt to damage the reputation of a competitor organization, Hailey, a professional hacker, gathers a list of employee and client email addresses and other related information by using various search engines, social networking sites, and web spidering tools. In this process, she also uses an automated tool to gather a list of words from the target website to further perform a brute-force attack on the previously gathered email addresses. What is the tool used by Hailey for gathering a list of words from the target website?
You are the Network Admin, and you get a complaint that some of the websites are no longer accessible. You try to ping the servers and find them to be reachable. Then you type the IP address and then you try on the browser, and find it to be accessible. But they are not accessible when you try using the URL. What may be the problem?
Which of the following types of SQL injection attacks extends the results returned by the original query, enabling attackers to run two or more statements if they have the same structure as the original one?
Upon establishing his new startup, Tom hired a cloud service provider (CSP) but was dissatisfied with their service and wanted to move to another CSP. What part of the contract might prevent him from doing so?
Jason, an attacker, targeted an organization to perform an attack on its Internet-facing web server with the intention of gaining access to backend servers, which are protected by a firewall. In this process, he used a URL https://xyz.com/ feed.php?url:externaIsile.com/feed/to to obtain a remote feed and altered the URL input to the local host to view all the local resources on the target server. What is the type of attack Jason performed In the above scenario?
A pen tester is configuring a Windows laptop for a test. In setting up Wireshark, what river and library are required to allow the NIC to work in promiscuous mode?
A penetration tester was assigned to scan a large network range to find live hosts. The network is known for using strict TCP filtering rules on its firewall, which may obstruct common host discovery techniques. The tester needs a method that can bypass these firewall restrictions and accurately identify live systems. What host discovery technique should the tester use?

Question 171

Report
Export
Collapse

This TCP flag instructs the sending system to transmit all buffered data immediately.

A.
SYN
A.
SYN
Answers
B.
RST
B.
RST
Answers
C.
PSH
C.
PSH
Answers
D.
URG
D.
URG
Answers
E.
FIN
E.
FIN
Answers
Suggested answer: C

Question 172

Report
Export
Collapse

The network administrator at Spears Technology, Inc has configured the default gateway Cisco router's access-list as below:

You are hired to conduct security testing on their network.

You successfully brute-force the SNMP community string using a SNMP crack tool.

The access-list configured at the router prevents you from establishing a successful connection.

You want to retrieve the Cisco configuration from the router. How would you proceed?

A.
Use the Cisco's TFTP default password to connect and download the configuration file
A.
Use the Cisco's TFTP default password to connect and download the configuration file
Answers
B.
Run a network sniffer and capture the returned traffic with the configuration file from the router
B.
Run a network sniffer and capture the returned traffic with the configuration file from the router
Answers
C.
Run Generic Routing Encapsulation (GRE) tunneling protocol from your computer to the router masking your IP address
C.
Run Generic Routing Encapsulation (GRE) tunneling protocol from your computer to the router masking your IP address
Answers
D.
Send a customized SNMP set request with a spoofed source IP address in the range -192.168.1.0
D.
Send a customized SNMP set request with a spoofed source IP address in the range -192.168.1.0
Answers
Suggested answer: B, D

Question 173

Report
Export
Collapse

You work for Acme Corporation as Sales Manager. The company has tight network security restrictions. You are trying to steal data from the company's Sales database (Sales.xls) and transfer them to your home computer. Your company filters and monitors traffic that leaves from the internal network to the Internet. How will you achieve this without raising suspicion?

A.
Encrypt the Sales.xls using PGP and e-mail it to your personal gmail account
A.
Encrypt the Sales.xls using PGP and e-mail it to your personal gmail account
Answers
B.
Package the Sales.xls using Trojan wrappers and telnet them back your home computer
B.
Package the Sales.xls using Trojan wrappers and telnet them back your home computer
Answers
C.
You can conceal the Sales.xls database in another file like photo.jpg or other files and send it out in an innocent looking email or file transfer using Steganography techniques
C.
You can conceal the Sales.xls database in another file like photo.jpg or other files and send it out in an innocent looking email or file transfer using Steganography techniques
Answers
D.
Change the extension of Sales.xls to sales.txt and upload them as attachment to your hotmail account
D.
Change the extension of Sales.xls to sales.txt and upload them as attachment to your hotmail account
Answers
Suggested answer: C

Question 174

Report
Export
Collapse

Study the snort rule given below and interpret the rule. alert tcp any any --> 192.168.1.0/24 111 (content:"|00 01 86 a5|"; msG. "mountd access";)

A.
An alert is generated when a TCP packet is generated from any IP on the 192.168.1.0 subnet and destined to any IP on port 111
A.
An alert is generated when a TCP packet is generated from any IP on the 192.168.1.0 subnet and destined to any IP on port 111
Answers
B.
An alert is generated when any packet other than a TCP packet is seen on the network and destined for the 192.168.1.0 subnet
B.
An alert is generated when any packet other than a TCP packet is seen on the network and destined for the 192.168.1.0 subnet
Answers
C.
An alert is generated when a TCP packet is originated from port 111 of any IP address to the 192.168.1.0 subnet
C.
An alert is generated when a TCP packet is originated from port 111 of any IP address to the 192.168.1.0 subnet
Answers
D.
An alert is generated when a TCP packet originating from any IP address is seen on the network and destined for any IP address on the 192.168.1.0 subnet on port 111
D.
An alert is generated when a TCP packet originating from any IP address is seen on the network and destined for any IP address on the 192.168.1.0 subnet on port 111
Answers
Suggested answer: D

Question 175

Report
Export
Collapse

What port number is used by LDAP protocol?

A.
110
A.
110
Answers
B.
389
B.
389
Answers
C.
464
C.
464
Answers
D.
445
D.
445
Answers
Suggested answer: B

Question 176

Report
Export
Collapse

Fred is the network administrator for his company. Fred is testing an internal switch.

From an external IP address, Fred wants to try and trick this switch into thinking it already has established a session with his computer. How can Fred accomplish this?

A.
Fred can accomplish this by sending an IP packet with the RST/SIN bit and the source address of his computer.
A.
Fred can accomplish this by sending an IP packet with the RST/SIN bit and the source address of his computer.
Answers
B.
He can send an IP packet with the SYN bit and the source address of his computer.
B.
He can send an IP packet with the SYN bit and the source address of his computer.
Answers
C.
Fred can send an IP packet with the ACK bit set to zero and the source address of the switch.
C.
Fred can send an IP packet with the ACK bit set to zero and the source address of the switch.
Answers
D.
Fred can send an IP packet to the switch with the ACK bit and the source address of his machine.
D.
Fred can send an IP packet to the switch with the ACK bit and the source address of his machine.
Answers
Suggested answer: D

Question 177

Report
Export
Collapse

Within the context of Computer Security, which of the following statements describes Social Engineering best?

A.
Social Engineering is the act of publicly disclosing information
A.
Social Engineering is the act of publicly disclosing information
Answers
B.
Social Engineering is the means put in place by human resource to perform time accounting
B.
Social Engineering is the means put in place by human resource to perform time accounting
Answers
C.
Social Engineering is the act of getting needed information from a person rather than breaking into a system
C.
Social Engineering is the act of getting needed information from a person rather than breaking into a system
Answers
D.
Social Engineering is a training program within sociology studies
D.
Social Engineering is a training program within sociology studies
Answers
Suggested answer: C

Question 178

Report
Export
Collapse

In Trojan terminology, what is a covert channel?

A.
A channel that transfers information within a computer system or network in a way that violates the security policy
A.
A channel that transfers information within a computer system or network in a way that violates the security policy
Answers
B.
A legitimate communication path within a computer system or network for transfer of data
B.
A legitimate communication path within a computer system or network for transfer of data
Answers
C.
It is a kernel operation that hides boot processes and services to mask detection
C.
It is a kernel operation that hides boot processes and services to mask detection
Answers
D.
It is Reverse tunneling technique that uses HTTPS protocol instead of HTTP protocol to establishconnections
D.
It is Reverse tunneling technique that uses HTTPS protocol instead of HTTP protocol to establishconnections
Answers
Suggested answer: A

Question 179

Report
Export
Collapse

When a normal TCP connection starts, a destination host receives a SYN (synchronize/start) packet from a source host and sends back a SYN/ACK (synchronize acknowledge). The destination host must then hear an ACK (acknowledge) of the SYN/ACK before the connection is established. This is referred to as the "TCP three-way handshake." While waiting for the ACK to the SYN ACK, a connection queue of finite size on the destination host keeps track of connections waiting to be completed. This queue typically empties quickly since the ACK is expected to arrive a few milliseconds after the SYN ACK.

How would an attacker exploit this design by launching TCP SYN attack?

A.
Attacker generates TCP SYN packets with random destination addresses towards a victim host
A.
Attacker generates TCP SYN packets with random destination addresses towards a victim host
Answers
B.
Attacker floods TCP SYN packets with random source addresses towards a victim host
B.
Attacker floods TCP SYN packets with random source addresses towards a victim host
Answers
C.
Attacker generates TCP ACK packets with random source addresses towards a victim host
C.
Attacker generates TCP ACK packets with random source addresses towards a victim host
Answers
D.
Attacker generates TCP RST packets with random source addresses towards a victim host
D.
Attacker generates TCP RST packets with random source addresses towards a victim host
Answers
Suggested answer: B

Question 180

Report
Export
Collapse

Yancey is a network security administrator for a large electric company. This company provides power for over 100, 000 people in Las Vegas. Yancey has worked for his company for over 15 years and has become very successful. One day, Yancey comes in to work and finds out that the company will be downsizing and he will be out of a job in two weeks. Yancey is very angry and decides to place logic bombs, viruses, Trojans, and backdoors all over the network to take down the company once he has left. Yancey does not care if his actions land him in jail for 30 or more years, he just wants the company to pay for what they are doing to him.

What would Yancey be considered?

A.
Yancey would be considered a Suicide Hacker
A.
Yancey would be considered a Suicide Hacker
Answers
B.
Since he does not care about going to jail, he would be considered a Black Hat
B.
Since he does not care about going to jail, he would be considered a Black Hat
Answers
C.
Because Yancey works for the company currently; he would be a White Hat
C.
Because Yancey works for the company currently; he would be a White Hat
Answers
D.
Yancey is a Hacktivist Hacker since he is standing up to a company that is downsizing
D.
Yancey is a Hacktivist Hacker since he is standing up to a company that is downsizing
Answers
Suggested answer: A
Total 573 questions
Go to page: of 58
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms