Downloadable EC-Council 312-50v11 Exams Online

NEW QUESTION 1
One of your team members has asked you to analyze the following SOA record. What is the version? Rutgers.edu.SOA NS1.Rutgers.edu ipad.college.edu (200302028 3600 3600 604800 2400.) (Choose four.)

• A. 200303028
• B. 3600
• C. 604800
• D. 2400
• E. 60
• F. 4800

Answer: A

NEW QUESTION 2
The network administrator at Spears Technology, Inc has configured the default gateway Cisco router's access-list as below:
You are hired to conduct security testing on their network.
You successfully brute-force the SNMP community string using a SNMP crack tool.
The access-list configured at the router prevents you from establishing a successful connection. You want to retrieve the Cisco configuration from the router. How would you proceed?

• A. Use the Cisco's TFTP default password to connect and download the configuration file
• B. Run a network sniffer and capture the returned traffic with the configuration file from the router
• C. Run Generic Routing Encapsulation (GRE) tunneling protocol from your computer to the router masking your IP address
• D. Send a customized SNMP set request with a spoofed source IP address in the range -192.168.1.0

Answer: BD

NEW QUESTION 3
Which of the following statements is FALSE with respect to Intrusion Detection Systems?

• A. Intrusion Detection Systems can be configured to distinguish specific content in network packets
• B. Intrusion Detection Systems can easily distinguish a malicious payload in an encrypted traffic
• C. Intrusion Detection Systems require constant update of the signature library
• D. Intrusion Detection Systems can examine the contents of the data n context of the network protocol

Answer: B

NEW QUESTION 4
Hackers often raise the trust level of a phishing message by modeling the email to look similar to the internal email used by the target company. This includes using logos, formatting, and names of the target company. The phishing message will often use the name of the company CEO, President, or Managers. The time a hacker spends performing research to locate this information about a company is known as?

• A. Exploration
• B. Investigation
• C. Reconnaissance
• D. Enumeration

Answer: C

NEW QUESTION 5
Nathan is testing some of his network devices. Nathan is using Macof to try and flood the ARP cache of these switches.
If these switches' ARP cache is successfully flooded, what will be the result?

• A. The switches will drop into hub mode if the ARP cache is successfully flooded.
• B. If the ARP cache is flooded, the switches will drop into pix mode making it less susceptible to attacks.
• C. Depending on the switch manufacturer, the device will either delete every entry in its ARP cache or reroute packets to the nearest switch.
• D. The switches will route all traffic to the broadcast address created collisions.

Answer: A

NEW QUESTION 6
Which of the following programming languages is most susceptible to buffer overflow attacks, due to its lack of a built-in bounds checking mechanism?
Code:
#include <string.h> int main(){char buffer[8];
strcpy(buffer, ““11111111111111111111111111111””);} Output: Segmentation fault

• A. C#
• B. Python
• C. Java
• D. C++

Answer: D

NEW QUESTION 7
What type of analysis is performed when an attacker has partial knowledge of inner-workings of the application?

• A. Black-box
• B. Announced
• C. White-box
• D. Grey-box

Answer: D

NEW QUESTION 8
Which service in a PKI will vouch for the identity of an individual or company?

• A. KDC
• B. CR
• C. CBC
• D. CA

Answer: D

NEW QUESTION 9
Vlady works in a fishing company where the majority of the employees have very little understanding of IT let alone IT Security. Several information security issues that Vlady often found includes, employees sharing password, writing his/her password on a post it note and stick it to his/her desk, leaving the computer unlocked, didn’t log out from emails or other social media accounts, and etc.
After discussing with his boss, Vlady decided to make some changes to improve the security environment in his company. The first thing that Vlady wanted to do is to make the employees understand the importance of keeping confidential information, such as password, a secret and they should not share it with other persons.
Which of the following steps should be the first thing that Vlady should do to make the employees in his company understand to importance of keeping confidential information a secret?

• A. Warning to those who write password on a post it note and put it on his/her desk
• B. Developing a strict information security policy
• C. Information security awareness training
• D. Conducting a one to one discussion with the other employees about the importance of information security

Answer: A

NEW QUESTION 10
Which of the following represents the initial two commands that an IRC client sends to join an IRC network?

• A. USER, NICK
• B. LOGIN, NICK
• C. USER, PASS
• D. LOGIN, USER

Answer: A

NEW QUESTION 11
To determine if a software program properly handles a wide range of invalid input, a form of automated testing can be used to randomly generate invalid input in an attempt to crash the program.
What term is commonly used when referring to this type of testing?

• A. Randomizing
• B. Bounding
• C. Mutating
• D. Fuzzing

Answer: D

NEW QUESTION 12
Shellshock allowed an unauthorized user to gain access to a server. It affected many Internet-facing services, which OS did it not directly affect?

• A. Linux
• B. Unix
• C. OS X
• D. Windows

Answer: D

NEW QUESTION 13
Based on the following extract from the log of a compromised machine, what is the hacker really trying to steal?

• A. har.txt
• B. SAM file
• C. wwwroot
• D. Repair file

Answer: B

NEW QUESTION 14
Your company was hired by a small healthcare provider to perform a technical assessment on the network. What is the best approach for discovering vulnerabilities on a Windows-based computer?

• A. Use the built-in Windows Update tool
• B. Use a scan tool like Nessus
• C. Check MITRE.org for the latest list of CVE findings
• D. Create a disk image of a clean Windows installation

Answer: B

NEW QUESTION 15
You have gained physical access to a Windows 2008 R2 server which has an accessible disc drive. When you attempt to boot the server and log in, you are unable to guess the password. In your toolkit, you have an Ubuntu 9.10 Linux LiveCD. Which Linux-based tool can change any user’s password or activate disabled Windows accounts?

• A. John the Ripper
• B. SET
• C. CHNTPW
• D. Cain & Abel

Answer: C

NEW QUESTION 16
Which of the following program infects the system boot sector and the executable files at the same time?

• A. Polymorphic virus
• B. Stealth virus
• C. Multipartite Virus
• D. Macro virus

Answer: C

NEW QUESTION 17
If you want to only scan fewer ports than the default scan using Nmap tool, which option would you use?

• A. –r
• B. –F
• C. –P
• D. –sP

Answer: B

NEW QUESTION 18
You are performing a penetration test for a client and have gained shell access to a Windows machine on the internal network. You intend to retrieve all DNS records for the internal domain, if the DNS server is at 192.168.10.2 and the domain name is abccorp.local, what command would you type at the nslookup prompt to attempt a zone transfer?

• A. list server=192.168.10.2 type=all
• B. is-d abccorp.local
• C. Iserver 192.168.10.2-t all
• D. List domain=Abccorp.local type=zone

Answer: B

NEW QUESTION 19
E- mail scams and mail fraud are regulated by which of the following?

• A. 18 U.S.
• B. pa
• C. 1030 Fraud and Related activity in connection with Computers
• D. 18 U.S.
• E. pa
• F. 1029 Fraud and Related activity in connection with Access Devices
• G. 18 U.S.
• H. pa
• I. 1362 Communication Lines, Stations, or Systems
• J. 18 U.S.
• K. pa
• L. 2510 Wire and Electronic Communications Interception and Interception of Oral Communication

Answer: A

NEW QUESTION 20
Peter is surfing the internet looking for information about DX Company. Which hacking process is Peter doing?

• A. Scanning
• B. Footprinting
• C. Enumeration
• D. System Hacking

Answer: B

NEW QUESTION 21
Which of the following tools can be used for passive OS fingerprinting?

• A. nmap
• B. tcpdump
• C. tracert
• D. ping

Answer: B

NEW QUESTION 22
An incident investigator asks to receive a copy of the event logs from all firewalls, proxy servers, and Intrusion Detection Systems (IDS) on the network of an organization that has experienced a possible breach of security. When the investigator attempts to correlate the information in all of the logs, the sequence of many of the logged events do not match up.
What is the most likely cause?

• A. The network devices are not all synchronized.
• B. Proper chain of custody was not observed while collecting the logs.
• C. The attacker altered or erased events from the logs.
• D. The security breach was a false positive.

Answer: A

NEW QUESTION 23
Every company needs a formal written document which spells out to employees precisely what they are allowed to use the company's systems for, what is prohibited, and what will happen to them if they break the rules. Two printed copies of the policy should be given to every employee as soon as possible after they join the organization. The employee should be asked to sign one copy, which should be safely filed by the company. No one should be allowed to use the company's computer systems until they have signed the policy in acceptance of its terms.
What is this document called?

• A. Information Audit Policy (IAP)
• B. Information Security Policy (ISP)
• C. Penetration Testing Policy (PTP)
• D. Company Compliance Policy (CCP)

Answer: B

NEW QUESTION 24
What tool can crack Windows SMB passwords simply by listening to network traffic?

• A. This is not possible
• B. Netbus
• C. NTFSDOS
• D. L0phtcrack

Answer: D

NEW QUESTION 25
Which of the following steps for risk assessment methodology refers to vulnerability identification?

• A. Determines if any flaws exist in systems, policies, or procedures
• B. Assigns values to risk probabilities; Impact values.
• C. Determines risk probability that vulnerability will be exploited (Hig
• D. Medium, Low)
• E. Identifies sources of harm to an IT syste
• F. (Natural, Huma
• G. Environmental)

Answer: C

NEW QUESTION 26
......