EC-COUNCIL 312-38 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-38 Online Questions & Answers

• Question 171:

  Which among the following tools can help in identifying IoEs to evaluate human attack surface?

  A. securiCAD
  B. Amass
  C. Skybox
  D. SET
  A. securiCAD

• Question 172:

  An attacker has access to password hashes of a windows 7 computer. Which of the following attacks can the attacker use to reveal the passwords?

  A. XSS
  B. Rainbow table
  C. Brute force
  D. Dictionary attacks
  B. Rainbow table

• Question 173:

  Which of the following standards is an amendment to the original IEEE 802.11 and specifies security mechanisms for wireless networks?

  A. 802.11b
  B. 802.11e
  C. 802.11i
  D. 802.11a
  C. 802.11i

  ---

  Explanation/Reference:

  802.11i is an amendment to the original IEEE 802.11. This standard specifies security mechanisms for wireless networks. It replaced the short Authentication and privacy clause of the original standard with a detailed Security clause. In the process, it deprecated the broken WEP. 802.11i supersedes the previous security specification, Wired Equivalent Privacy (WEP), which was shown to have severe security weaknesses. Wi-Fi Protected Access (WPA) had previously been introduced by the Wi-Fi Alliance as an intermediate solution to WEP insecurities. The Wi-Fi Alliance refers to their approved, interoperable implementation of the full 802.11i as WPA2, also called RSN (Robust Security Network). 802.11i makes use of the Advanced Encryption Standard (AES) block cipher, whereas WEP and WPA use the RC4 stream cipher. Answer option D is incorrect. 802.11a is an amendment to the IEEE 802.11 specification that added a higher data rate of up to 54 Mbit/s using the 5 GHz band. It has seen widespread worldwide implementation, particularly within the corporate workspace. Using the 5 GHz band gives 802.11a a significant advantage, since the 2.4 GHz band is heavily used to the point of being crowded. Degradation caused by such conflicts can cause frequent dropped connections and degradation of service. Answer option A is incorrect. 802.11b is an amendment to the IEEE 802.11 specification that extended throughput up to 11 Mbit/s using the same 2.4 GHz band. This specification under the marketing name of Wi-Fi has been implemented all over the world. 802.11b is used in a point-to-multipoint configuration, wherein an access point communicates via an omni-directional antenna with one or more nomadic or mobile clients that are located in a coverage area around the access point. Answer option B is incorrect. The 802.11e standard is a proposed enhancement to the 802.11a and 802.11b wireless LAN (WLAN) specifications. It offers quality of service (QoS) features, including the prioritization of data, voice, and video transmissions. 802.11e enhances the 802.11 Media Access Control layer (MAC layer) with a coordinated time division multiple access (TDMA) construct, and adds error-correcting mechanisms for delay-sensitive applications such as voice and video.

• Question 174:

  Which of the following protocols is a more secure version of the Point-to-Point Tunneling Protocol (PPTP) and provides tunneling, address assignment, and authentication?

  A. IP
  B. L2TP
  C. PPP
  D. DHCP
  B. L2TP

• Question 175:

  Physical access controls help organizations monitor, record, and control access to the information assets and facility. Identify the category of physical security controls which includes security labels and warning signs.

  A. Technical control
  B. Environmental control
  C. Physical control
  D. Administrative control
  D. Administrative control

• Question 176:

  Which of the following is the practice of sending unwanted e-mail messages, frequently with commercial content, in large quantities to an indiscriminate set of recipients? Each correct answer represents a complete solution. Choose all that apply.

  A. E-mail spam
  B. Junk mail
  C. Email spoofing
  D. Email jamming
  A. E-mail spam
  B. Junk mail

  ---

  Explanation/Reference:

  E-mail spam, also known as unsolicited bulk email (UBE), junk mail, or unsolicited commercial email (UCE), is the practice of sending unwanted e-mail messages, frequently with commercial content, in large quantities to an indiscriminate set of recipients. Answer option C is incorrect. Email spoofing is a fraudulent email activity in which the sender address and other parts of the email header are altered to appear as though the email originated from a different source. Email spoofing is a technique commonly used in spam and phishing emails to hide the origin of the email message. By changing certain properties of the email, such as the From, Return-Path and Reply-To fields (which can be found in the message header), ill-intentioned users can make the email appear to be from someone other than the actual sender. The result is that, although the email appears to come from the address indicated in the From field (found in the email headers), it actually comes from another source. Answer option D is incorrect. Email jamming is the use of sensitive words in e-mails to jam the authorities that listen in on them by providing a form of a red herring and an intentional annoyance. In this attack, an attacker deliberately includes "sensitive" words and phrases in otherwise innocuous emails to ensure that these are picked up by the monitoring systems. As a result, the senders of these emails will eventually be added to a "harmless" list and their emails will be no longer intercepted, hence it will allow them to regain some privacy.

• Question 177:

  You are tasked to perform black hat vulnerability assessment for a client. You received official written permission to work with: company site, forum, Linux server with LAMP, where this site hosted. Which vulnerability assessment tool should you consider to use?

  A. dnsbrute
  B. hping
  C. OpenVAS
  D. wireshark
  C. OpenVAS

• Question 178:

  Docker provides Platform-as-a-Service (PaaS) through ________ and delivers containerized software packages.

  A. Server-level virtualization
  B. Network-level virtualization
  C. OS-level virtualization
  D. Storage-level virtualization
  C. OS-level virtualization

• Question 179:

  Which of the following is the best way of protecting important data against virus attack?

  A. Implementing a firewall.
  B. Updating the anti-virus software regularly.
  C. Taking daily backup of data.
  D. Using strong passwords to log on to the network.
  B. Updating the anti-virus software regularly.

  ---

  Explanation/Reference:

  Updating the anti-virus software regularly is the best way of protecting important data against virus attack.

• Question 180:

  You are using more than the safety of the existing network. You'll find a machine that is not in use as such, but is a software that emulates the operation of a sensitive database server. What is this?

  A. The reactive IDS
  B. Honey Pot
  C. None
  D. Virus
  E. The polymorphic virus
  B. Honey Pot