ExamGecko
Search Search Login
Home Home / ECCouncil / 312-50v12

ECCouncil 312-50v12 Practice Test - Questions Answers, Page 9

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

The "Gray-box testing" methodology enforces what kind of restriction?
A new wireless client is configured to join a 802.11 network. This client uses the same hardware and software as many of the other clients on the network. The client can see the network, but cannot connect. A wireless packet sniffer shows that the Wireless Access Point (WAP) is not responding to the association requests being sent by the wireless client. What is a possible source of this problem?
In an attempt to damage the reputation of a competitor organization, Hailey, a professional hacker, gathers a list of employee and client email addresses and other related information by using various search engines, social networking sites, and web spidering tools. In this process, she also uses an automated tool to gather a list of words from the target website to further perform a brute-force attack on the previously gathered email addresses. What is the tool used by Hailey for gathering a list of words from the target website?
You are the Network Admin, and you get a complaint that some of the websites are no longer accessible. You try to ping the servers and find them to be reachable. Then you type the IP address and then you try on the browser, and find it to be accessible. But they are not accessible when you try using the URL. What may be the problem?
Which of the following types of SQL injection attacks extends the results returned by the original query, enabling attackers to run two or more statements if they have the same structure as the original one?
Upon establishing his new startup, Tom hired a cloud service provider (CSP) but was dissatisfied with their service and wanted to move to another CSP. What part of the contract might prevent him from doing so?
Clark is a professional hacker. He created and configured multiple domains pointing to the same host to switch quickly between the domains and avoid detection. Identify the behavior of the adversary In the above scenario.
A pen tester is configuring a Windows laptop for a test. In setting up Wireshark, what river and library are required to allow the NIC to work in promiscuous mode?
A penetration tester was assigned to scan a large network range to find live hosts. The network is known for using strict TCP filtering rules on its firewall, which may obstruct common host discovery techniques. The tester needs a method that can bypass these firewall restrictions and accurately identify live systems. What host discovery technique should the tester use?
Attacker Rony Installed a rogue access point within an organization's perimeter and attempted to Intrude into its internal network. Johnson, a security auditor, identified some unusual traffic in the internal network that is aimed at cracking the authentication mechanism. He immediately turned off the targeted network and tested for any weak and outdated security mechanisms that are open to attack. What is the type of vulnerability assessment performed by Johnson in the above scenario?

Question 81

Report
Export
Collapse

What kind of detection techniques is being used in antivirus software that identifies malware by collecting data from multiple protected systems and instead of analyzing files locally it's made on the provider's environment?

A.
Behavioral based
A.
Behavioral based
Answers
B.
Heuristics based
B.
Heuristics based
Answers
C.
Honeypot based
C.
Honeypot based
Answers
D.
Cloud based
D.
Cloud based
Answers
Suggested answer: D

Question 82

Report
Export
Collapse

Which of the following tools is used to analyze the files produced by several packet-capture programs such as tcpdump, WinDump, Wireshark, and EtherPeek?

A.
tcptrace
A.
tcptrace
Answers
B.
Nessus
B.
Nessus
Answers
C.
OpenVAS
C.
OpenVAS
Answers
D.
tcptraceroute
D.
tcptraceroute
Answers
Suggested answer: A

Question 83

Report
Export
Collapse

What is the way to decide how a packet will move from an untrusted outside host to a protected inside that is behind a firewall, which permits the hacker to determine which ports are open and if the packets can pass through the packet-filtering of the firewall?

A.
Session hijacking
A.
Session hijacking
Answers
B.
Firewalking
B.
Firewalking
Answers
C.
Man-in-the middle attack
C.
Man-in-the middle attack
Answers
D.
Network sniffing
D.
Network sniffing
Answers
Suggested answer: B

Question 84

Report
Export
Collapse

Which of the following is not a Bluetooth attack?

A.
Bluedriving
A.
Bluedriving
Answers
B.
Bluesmacking
B.
Bluesmacking
Answers
C.
Bluejacking
C.
Bluejacking
Answers
D.
Bluesnarfing
D.
Bluesnarfing
Answers
Suggested answer: A

Explanation:

https://github.com/verovaleros/bluedriving

Bluedriving is a bluetooth wardriving utility. It can capture bluetooth devices, lookup their services, get GPS information and present everything in a nice web page. It can search for and show a lot of information about the device, the GPS address and the historic location of devices on a map. The main motivation of this tool is to research about the targeted surveillance of people by means of its cellular phone or car. With this tool you can capture information about bluetooth devices and show, on a map, the points where you have seen the same device in the past.

Question 85

Report
Export
Collapse

What is the role of test automation in security testing?

A.
It is an option but it tends to be very expensive.
A.
It is an option but it tends to be very expensive.
Answers
B.
It should be used exclusively. Manual testing is outdated because of low speed and possible test setup inconsistencies.
B.
It should be used exclusively. Manual testing is outdated because of low speed and possible test setup inconsistencies.
Answers
C.
Test automation is not usable in security due to the complexity of the tests.
C.
Test automation is not usable in security due to the complexity of the tests.
Answers
D.
It can accelerate benchmark tests and repeat them with a consistent test setup. But it cannot replace manual testing completely.
D.
It can accelerate benchmark tests and repeat them with a consistent test setup. But it cannot replace manual testing completely.
Answers
Suggested answer: D

Question 86

Report
Export
Collapse

Your company performs penetration tests and security assessments for small and medium-sized business in the local are a. During a routine security assessment, you discover information that suggests your client is involved with human trafficking.

What should you do?

A.
Confront the client in a respectful manner and ask her about the data.
A.
Confront the client in a respectful manner and ask her about the data.
Answers
B.
Copy the data to removable media and keep it in case you need it.
B.
Copy the data to removable media and keep it in case you need it.
Answers
C.
Ignore the data and continue the assessment until completed as agreed.
C.
Ignore the data and continue the assessment until completed as agreed.
Answers
D.
Immediately stop work and contact the proper legal authorities.
D.
Immediately stop work and contact the proper legal authorities.
Answers
Suggested answer: D

Question 87

Report
Export
Collapse

While using your bank's online servicing you notice the following string in the URL bar:

"http: // www. MyPersonalBank. com/ account?id=368940911028389&Damount=10980&Camount=21" You observe that if you modify the Damount & Camount values and submit the request, that data on the web page reflects the changes.

Which type of vulnerability is present on this site?

A.
Cookie Tampering
A.
Cookie Tampering
Answers
B.
SQL Injection
B.
SQL Injection
Answers
C.
Web Parameter Tampering
C.
Web Parameter Tampering
Answers
D.
XSS Reflection
D.
XSS Reflection
Answers
Suggested answer: C

Question 88

Report
Export
Collapse

The establishment of a TCP connection involves a negotiation called three-way handshake. What type of message does the client send to the server in order to begin this negotiation?

A.
ACK
A.
ACK
Answers
B.
SYN
B.
SYN
Answers
C.
RST
C.
RST
Answers
D.
SYN-ACK
D.
SYN-ACK
Answers
Suggested answer: B

Question 89

Report
Export
Collapse

Which type of security feature stops vehicles from crashing through the doors of a building?

A.
Bollards
A.
Bollards
Answers
B.
Receptionist
B.
Receptionist
Answers
C.
Mantrap
C.
Mantrap
Answers
D.
Turnstile
D.
Turnstile
Answers
Suggested answer: A

Question 90

Report
Export
Collapse

The company PLUS recently contracts a new accountant. The accountant will be working with the financial statements. Those financial statements need to be approved by the CFO and then they will be sent to the accountant but the CFO is worried because he wants to be sure that the information sent to the accountant was not modified once he approved it. Which of the following options can be useful to ensure the integrity of the data?

A.
The CFO can use a hash algorithm in the document once he approved the financial statements
A.
The CFO can use a hash algorithm in the document once he approved the financial statements
Answers
B.
The CFO can use an excel file with a password
B.
The CFO can use an excel file with a password
Answers
C.
The financial statements can be sent twice, one by email and the other delivered in USB and the accountant can compare both to be sure is the same document
C.
The financial statements can be sent twice, one by email and the other delivered in USB and the accountant can compare both to be sure is the same document
Answers
D.
The document can be sent to the accountant using an exclusive USB for that document
D.
The document can be sent to the accountant using an exclusive USB for that document
Answers
Suggested answer: A
Total 573 questions
Go to page: of 58
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms