EC-COUNCIL 312-50V10 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V10 Online Questions & Answers

• Question 671:

  During the process of encryption and decryption, what keys are shared? During the process of encryption and decryption, what keys are shared?

  A. Private keys
  B. User passwords
  C. Public keys
  D. Public and private keys
  C. Public keys

• Question 672:

  Which solution can be used to emulate computer services, such as mail and ftp, and to capture information related to logins or actions?

  A. Firewall
  B. Honeypot
  C. Core server
  D. Layer 4 switch
  B. Honeypot

• Question 673:

  In both pharming and phishing attacks an attacker can create websites that look similar to legitimate sites with the intent of collecting personal identifiable information from its victims. What is the difference between pharming and phishing attacks?

  A. In a pharming attack a victim is redirected to a fake website by modifying their host configuration file or by exploiting vulnerabilities in DNS. In a phishing attack an attacker provides the victim with a URL that is either misspelled or looks similar to the actual websites domain name.
  B. Both pharming and phishing attacks are purely technical and are not considered forms of social engineering.
  C. Both pharming and phishing attacks are identical.
  D. In a phishing attack a victim is redirected to a fake website by modifying their host configuration file or by exploiting vulnerabilities in DNS. In a pharming attack an attacker provides the victim with a URL that is either misspelled or looks very similar to the actual websites domain name.
  A. In a pharming attack a victim is redirected to a fake website by modifying their host configuration file or by exploiting vulnerabilities in DNS. In a phishing attack an attacker provides the victim with a URL that is either misspelled or looks similar to the actual websites domain name.

• Question 674:

  When a normal TCP connection starts, a destination host receives a SYN (synchronize/start) packet from a source host and sends back a SYN/ACK (synchronize acknowledge). The destination host must then hear an ACK (acknowledge) of the SYN/ACK before the connection is established. This is referred to as the "TCP three-way handshake." While waiting for the ACK to the SYN ACK, a connection queue of finite size on the destination host keeps track of connections waiting to be completed. This queue typically empties quickly since the ACK is expected to arrive a few milliseconds after the SYN ACK.

  How would an attacker exploit this design by launching TCP SYN attack?

  A. Attacker generates TCP SYN packets with random destination addresses towards a victim host
  B. Attacker floods TCP SYN packets with random source addresses towards a victim host
  C. Attacker generates TCP ACK packets with random source addresses towards a victim host
  D. Attacker generates TCP RST packets with random source addresses towards a victim host
  B. Attacker floods TCP SYN packets with random source addresses towards a victim host

• Question 675:

  It has been reported to you that someone has caused an information spillage on their computer. You go to the computer, disconnect it from the network, remove the keyboard and mouse, and power it down. What step in incident handling did you just complete?

  A. Containment
  B. Eradication
  C. Recovery
  D. Discovery
  A. Containment

• Question 676:

  Which of the following can the administrator do to verify that a tape backup can be recovered in its entirety?

  A. Restore a random file.
  B. Perform a full restore.
  C. Read the first 512 bytes of the tape.
  D. Read the last 512 bytes of the tape.
  B. Perform a full restore.

• Question 677:

  Which of the following areas is considered a strength of symmetric key cryptography when compared with asymmetric algorithms?

  A. Scalability
  B. Speed
  C. Key distribution
  D. Security
  B. Speed

• Question 678:

  It is a vulnerability in GNU's bash shell, discovered in September of 2014, that gives attackers access to run remote commands on a vulnerable system. The malicious software can take control of an infected machine, launch denial-of-service attacks to disrupt websites, and scan for other vulnerable devices (including routers).

  Which of the following vulnerabilities is being described?

  A. Shellshock
  B. Rootshock
  C. Rootshell
  D. Shellbash
  A. Shellshock

• Question 679:

  Cryptography is the practice and study of techniques for secure communication in the presence of third parties (called adversaries.) More generally, it is about constructing and analyzing protocols that overcome the influence of adversaries and that are related to various aspects in information security such as data confidentiality, data integrity, authentication, and non-repudiation. Modern cryptography intersects the disciplines of mathematics, computer science, and electrical engineering. Applications of cryptography include ATM cards, computer passwords, and electronic commerce.

  Basic example to understand how cryptography works is given below:

  

  Which of the following choices is true about cryptography?

  A. Algorithm is not the secret, key is the secret.
  B. Symmetric-key algorithms are a class of algorithms for cryptography that use the different cryptographic keys for both encryption of plaintext and decryption of ciphertext.
  C. Secure Sockets Layer (SSL) use the asymmetric encryption both (public/private key pair) to deliver the shared session key and to achieve a communication way.
  D. Public-key cryptography, also known as asymmetric cryptography, public key is for decrypt, private key is for encrypt.
  C. Secure Sockets Layer (SSL) use the asymmetric encryption both (public/private key pair) to deliver the shared session key and to achieve a communication way.

• Question 680:

  If executives are found liable for not properly protecting their company's assets and information systems, what type of law would apply in this situation?

  A. Civil
  B. International
  C. Criminal
  D. Common
  A. Civil