EC-COUNCIL 312-50V10 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V10 Online Questions & Answers

• Question 421:

  LM hash is a compromised password hashing function. Which of the following parameters describe LM Hash:?

  I -The maximum password length is 14 characters.

  II -There are no distinctions between uppercase and lowercase.

  III -It's a simple algorithm, so 10,000,000 hashes can be generated per second.

  A. I
  B. I, II, and III
  C. II
  D. I and II
  B. I, II, and III

• Question 422:

  While testing the company's web applications, a tester attempts to insert the following test script into the search area on the company's web site:

  Afterwards, when the tester presses the search button, a pop-up box appears on the screen with the text: "Testing Testing Testing". Which vulnerability has been detected in the web application?

  A. Buffer overflow
  B. Cross-site request forgery
  C. Distributed denial of service
  D. Cross-site scripting
  D. Cross-site scripting

• Question 423:

  OpenSSL on Linux servers includes a command line tool for testing TLS. What is the name of the tool and the correct syntax to connect to a web server?

  A. openssl s_client -site www.website.com:443
  B. openssl_client -site www.website.com:443
  C. openssl s_client -connect www.website.com:443
  D. openssl_client -connect www.website.com:443
  C. openssl s_client -connect www.website.com:443

• Question 424:

  You've just discovered a server that is currently active within the same network with the machine you recently compromised. You ping it but it did not respond. What could be the case?

  A. TCP/IP doesn't support ICMP
  B. ARP is disabled on the target server
  C. ICMP could be disabled on the target server
  D. You need to run the ping command with root privileges
  C. ICMP could be disabled on the target server

• Question 425:

  You receive an e-mail like the one shown below. When you click on the link contained in the mail, you are redirected to a website seeking you to download free Anti-Virus software.

  Dear valued customers,

  We are pleased to announce the newest version of Antivirus 2010 for Windows which will probe you with total security against the latest spyware, malware, viruses, Trojans and other online threats. Simply visit the link below and enter your

  antivirus code:

  

  or you may contact us at the following address:

  Media Internet Consultants, Edif. Neptuno, Planta

  Baja, Ave. Ricardo J. Alfaro, Tumba Muerto, n/a Panama How will you determine if this is Real Anti-Virus or Fake Anti-Virus website?

  A. Look at the website design, if it looks professional then it is a Real Anti-Virus website
  B. Connect to the site using SSL, if you are successful then the website is genuine
  C. Search using the URL and Anti-Virus product name into Google and lookout for suspicious warnings against this site
  D. Download and install Anti-Virus software from this suspicious looking site, your Windows 7 will prompt you and stop the installation if the downloaded file is a malware
  E. Download and install Anti-Virus software from this suspicious looking site, your Windows 7 will prompt you and stop the installation if the downloaded file is a malware
  C. Search using the URL and Anti-Virus product name into Google and lookout for suspicious warnings against this site

• Question 426:

  Which of the following is a design pattern based on distinct pieces of software providing application functionality as services to other applications?

  A. Service Oriented Architecture
  B. Object Oriented Architecture
  C. Lean Coding
  D. Agile Process
  A. Service Oriented Architecture

• Question 427:

  Which command line switch would be used in NMAP to perform operating system detection?

  A. -OS
  B. -sO
  C. -sP
  D. -O
  D. -O

• Question 428:

  The company ABC recently discovered that their new product was released by the opposition before their premiere. They contract an investigator who discovered that the maid threw away papers with confidential information about the new product and the opposition found it in the garbage. What is the name of the technique used by the opposition?

  A. Hack attack
  B. Sniffing
  C. Dumpster diving
  D. Spying
  C. Dumpster diving

• Question 429:

  A network administrator discovers several unknown files in the root directory of his Linux FTP server. One of the files is a tarball, two are shell script files, and the third is a binary file is named "nc." The FTP server's access logs show that the anonymous user account logged in to the server, uploaded the files, and extracted the contents of the tarball and ran the script using a function provided by the FTP server's software. The ps command shows that the nc file is running as process, and the netstat command shows the nc process is listening on a network port.

  What kind of vulnerability must be present to make this remote attack possible?

  A. File system permissions
  B. Privilege escalation
  C. Directory traversal
  D. Brute force login
  A. File system permissions

• Question 430:

  Which of the following is an application that requires a host application for replication?

  A. Micro
  B. Worm
  C. Trojan
  D. Virus
  D. Virus