EC-COUNCIL 312-38 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-38 Online Questions & Answers

• Question 561:

  Which of the following can be used to disallow a system/user from accessing all applications except a specific folder on a system?

  A. Hash rule
  B. Path rule
  C. Internet zone rule
  D. Certificate rule
  A. Hash rule

• Question 562:

  Which phase of vulnerability management deals with the actions taken for correcting the discovered vulnerability?

  A. Verification
  B. Mitigation
  C. Remediation
  D. Assessment
  C. Remediation

• Question 563:

  Which of the following IEEE standards defines a physical bus topology?

  A. 802.4
  B. 802.5
  C. 802.6
  D. 802.3
  A. 802.4

• Question 564:

  How is application whitelisting different from application blacklisting?

  A. It allows all applications other than the undesirable applications
  B. It allows execution of trusted applications in a unified environment
  C. It allows execution of untrusted applications in an isolated environment
  D. It rejects all applications other than the allowed applications
  D. It rejects all applications other than the allowed applications

• Question 565:

  Which of the following analyzes network traffic to trace specific transactions and can intercept and log traffic passing over a digital network? Each correct answer represents a complete solution. Choose all that apply.

  A. Wireless sniffer
  B. Spectrum analyzer
  C. Protocol analyzer
  D. Performance Monitor
  A. Wireless sniffer
  C. Protocol analyzer

  ---

  Explanation/Reference:

  Protocol analyzer (also known as a network analyzer, packet analyzer or sniffer, or for particular types of networks, an Ethernet sniffer or wireless sniffer) is computer software or computer hardware that can intercept and log traffic passing over a digital network. As data streams flow across the network, the sniffer captures each packet and, if needed, decodes and analyzes its content according to the appropriate RFC or other specifications. Answer option D is incorrect. Performance Monitor is used to get statistical information about the hardware and software components of a server. Answer option B is incorrect. A spectrum analyzer, or spectral analyzer, is a device that is used to examine the spectral composition of an electrical, acoustic, or optical waveform. It may also measure the power spectrum.

• Question 566:

  John has been working a* a network administrator at an IT company. He wants to prevent misuse of accounts by unauthorized users. He wants to ensure that no accounts have empty passwords. Which of the following commands does John use to list all the accounts with an empty password?

  

  A. Option A
  B. Option B
  C. Option C
  D. Option D
  A. Option A

• Question 567:

  Fill in the blank with the appropriate term. is the process, policies, and procedures related to preparing for recovery or continuation of technology infrastructure critical to an organization after a natural or human-induced disaster.

  Disaster recovery

  Explanation/Reference:

  Disaster recovery is the process, policies, and procedures related to preparing for recovery or continuation of technology infrastructure critical to an organization after a natural or human-induced disaster. Disaster recovery planning is a subset of a larger process known as business continuity planning and should include planning for resumption of applications, data, hardware, communications (such as networking) and other IT infrastructure. A business continuity plan (BCP) includes planning for non-IT related aspects such as key personnel, facilities, crisis communication and reputation protection, and should refer to the disaster recovery plan (DRP) for IT related infrastructure recovery / continuity.

• Question 568:

  Jason works as a System Administrator for www.company.com Inc. The company has a Windows-based network. Sam, an employee of the company, accidentally changes some of the applications and system settings. He complains to Jason that his system is not working properly. To troubleshoot the problem, Jason diagnoses the internals of his computer and observes that some changes have been made in Sam's computer registry. To rectify the issue, Jason has to restore the registry. Which of the following utilities can Jason use to accomplish the task? Each correct answer represents a complete solution. Choose all that apply.

  A. Reg.exe
  B. EventCombMT
  C. Regedit.exe
  D. Resplendent registrar
  A. Reg.exe
  B. EventCombMT
  C. Regedit.exe
  D. Resplendent registrar

• Question 569:

  A network administrator is monitoring the network traffic with Wireshark. Which of the following filters will she use to view the packets moving without setting a flag to detect TCP Null Scan attempts?

  A. TCRflags==0x000
  B. Tcp.flags==0X029
  C. Tcp.dstport==7
  D. Tcp.flags==0x003
  A. TCRflags==0x000

• Question 570:

  Which of the following data security technology can ensure information protection by obscuring specific areas of information?

  A. Data retention
  B. Data encryption
  C. Data hashing
  D. Data masking
  D. Data masking