Home / ECCouncil / 312-50v12

ECCouncil 312-50v12 Practice Test - Questions Answers, Page 21

Question list

List of questions

Question 201

(0)

Gavin owns a white-hat firm and is performing a website security audit for one of his clients. He begins by running a scan which looks for common misconfigurations and outdated software versions. W

Question 202

(0)

Which of the following statements is FALSE with respect to Intrusion Detection Systems?

Question 203

(0)

While scanning with Nmap, Patin found several hosts which have the IP ID of incremental sequences. He then decided to conduct: nmap -Pn -p- -si kiosk.adobe.com www.riaa.com . kiosk.adobe.com is

Question 204

(0)

Which command can be used to show the current TCP/IP connections?

Question 205

(0)

You are analysing traffic on the network with Wireshark. You want to routinely run a cron job which will run the capture against a specific set of IPs - 192.168.8.0/24. What command you would use?

Question 206

(0)

You are tasked to configure the DHCP server to lease the last 100 usable IP addresses in subnet to.

Question 207

(0)

You have successfully logged on a Linux system. You want to now cover your trade Your login attempt may be logged on several files located in /var/log. Which file does NOT belongs to the list:

Question 208

(0)

The tools which receive event logs from servers, network equipment, and applications, and perform analysis and correlation on those logs, and can generate alarms for security relevant issues, are kn

Question 209

(0)

What is the main security service a cryptographic hash provides?

Question 210

(0)

A pen tester is configuring a Windows laptop for a test. In setting up Wireshark, what river and library are required to allow the NIC to work in promiscuous mode?

Related questions

The "Gray-box testing" methodology enforces what kind of restriction?

A new wireless client is configured to join a 802.11 network. This client uses the same hardware and software as many of the other clients on the network. The client can see the network, but cannot connect. A wireless packet sniffer shows that the Wireless Access Point (WAP) is not responding to the association requests being sent by the wireless client. What is a possible source of this problem?

Clark is a professional hacker. He created and configured multiple domains pointing to the same host to switch quickly between the domains and avoid detection. Identify the behavior of the adversary In the above scenario.

In an attempt to damage the reputation of a competitor organization, Hailey, a professional hacker, gathers a list of employee and client email addresses and other related information by using various search engines, social networking sites, and web spidering tools. In this process, she also uses an automated tool to gather a list of words from the target website to further perform a brute-force attack on the previously gathered email addresses. What is the tool used by Hailey for gathering a list of words from the target website?

You are the Network Admin, and you get a complaint that some of the websites are no longer accessible. You try to ping the servers and find them to be reachable. Then you type the IP address and then you try on the browser, and find it to be accessible. But they are not accessible when you try using the URL. What may be the problem?

Which of the following types of SQL injection attacks extends the results returned by the original query, enabling attackers to run two or more statements if they have the same structure as the original one?

Upon establishing his new startup, Tom hired a cloud service provider (CSP) but was dissatisfied with their service and wanted to move to another CSP. What part of the contract might prevent him from doing so?

Jason, an attacker, targeted an organization to perform an attack on its Internet-facing web server with the intention of gaining access to backend servers, which are protected by a firewall. In this process, he used a URL https://xyz.com/ feed.php?url:externaIsile.com/feed/to to obtain a remote feed and altered the URL input to the local host to view all the local resources on the target server. What is the type of attack Jason performed In the above scenario?

A pen tester is configuring a Windows laptop for a test. In setting up Wireshark, what river and library are required to allow the NIC to work in promiscuous mode?

A penetration tester was assigned to scan a large network range to find live hosts. The network is known for using strict TCP filtering rules on its firewall, which may obstruct common host discovery techniques. The tester needs a method that can bypass these firewall restrictions and accurately identify live systems. What host discovery technique should the tester use?

Question 201

Gavin owns a white-hat firm and is performing a website security audit for one of his clients. He begins by running a scan which looks for common misconfigurations and outdated software versions.

Which of the following tools is he most likely using?

Nikto

Nmap

Metasploit

Armitage

Show Answer Comment (0)

Question 202

Which of the following statements is FALSE with respect to Intrusion Detection Systems?

Intrusion Detection Systems can be configured to distinguish specific content in network packets

Intrusion Detection Systems can easily distinguish a malicious payload in an encrypted traffic

Intrusion Detection Systems require constant update of the signature library

Intrusion Detection Systems can examine the contents of the data n context of the network protocol

Show Answer Comment (0)

Question 203

While scanning with Nmap, Patin found several hosts which have the IP ID of incremental sequences.

He then decided to conduct: nmap -Pn -p- -si kiosk.adobe.com www.riaa.com. kiosk.adobe.com is the host with incremental IP ID sequence. What is the purpose of using "-si" with Nmap?

Conduct stealth scan

Conduct ICMP scan

Conduct IDLE scan

Conduct silent scan

Show Answer Comment (0)

Question 204

Which command can be used to show the current TCP/IP connections?

Netsh

Netstat

Net use connection

Net use

Show Answer Comment (0)

Question 205

You are analysing traffic on the network with Wireshark. You want to routinely run a cron job which will run the capture against a specific set of IPs - 192.168.8.0/24. What command you would use?

wireshark --fetch ''192.168.8*''

wireshark --capture --local masked 192.168.8.0 ---range 24

tshark -net 192.255.255.255 mask 192.168.8.0

sudo tshark -f''net 192 .68.8.0/24''

Show Answer Comment (0)

Question 206

You are tasked to configure the DHCP server to lease the last 100 usable IP addresses in subnet to.

4.0/23. Which of the following IP addresses could be teased as a result of the new configuration?

210.1.55.200

10.1.4.254

10..1.5.200

10.1.4.156

Show Answer Comment (0)

Question 207

You have successfully logged on a Linux system. You want to now cover your trade Your login attempt may be logged on several files located in /var/log. Which file does NOT belongs to the list:

user.log

auth.fesg

wtmp

btmp

Show Answer Comment (0)

The tools which receive event logs from servers, network equipment, and applications, and perform analysis and correlation on those logs, and can generate alarms for security relevant issues, are known as what?

network Sniffer

Vulnerability Scanner

Intrusion prevention Server

Security incident and event Monitoring

Show Answer Comment (0)

Question 209

What is the main security service a cryptographic hash provides?

Integrity and ease of computation

Message authentication and collision resistance

Integrity and collision resistance

Integrity and computational in-feasibility

Show Answer Comment (0)

Question 210

A pen tester is configuring a Windows laptop for a test. In setting up Wireshark, what river and library are required to allow the NIC to work in promiscuous mode?

Libpcap

Awinpcap

Winprom

Winpcap

Show Answer Comment (0)

Total 573 questions

19 20 21 22 23

Go to page: of 58