EC-COUNCIL 312-50V11 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V11 Online Questions & Answers

• Question 361:

  Harry. a professional hacker, targets the IT infrastructure of an organization. After preparing for the attack, he attempts to enter the target network using techniques such as sending spear-phishing emails and exploiting vulnerabilities on publicly available servers. Using these techniques, he successfully deployed malware on the target system to establish an outbound connection. What is the APT lifecycle phase that Harry is currently executing?

  A. Preparation
  B. Cleanup
  C. Persistence
  D. initial intrusion
  D. initial intrusion

• Question 362:

  George, an employee of an organization, is attempting to access restricted websites from an official computer. For this purpose, he used an anonymizer that masked his real IP address and ensured complete and continuous anonymity for all his online activities. Which of the following anonymizers helps George hide his activities?

  A. https://www.baidu.com
  B. https://www.guardster.com
  C. https://www.wolframalpha.com
  D. https://karmadecay.com
  B. https://www.guardster.com

• Question 363:

  Given below are different steps involved in the vulnerability-management life cycle.

  1) Remediation 2) Identify assets and create a baseline 3) Verification 4) Monitor 5) Vulnerability scan 6) Risk assessment

  Identify the correct sequence of steps involved in vulnerability management.

  A. 2-->5-->6-->1-->3-->4
  B. 2-->1-->5-->6-->4-->3
  C. 2-->4-->5-->3-->6--> 1
  D. 1-->2-->3-->4-->5-->6
  A. 2-->5-->6-->1-->3-->4

• Question 364:

  Which of the following scanning method splits the TCP header into several packets and makes it difficult for packet filters to detect the purpose of the packet?

  A. ACK flag probe scanning
  B. ICMP Echo scanning
  C. SYN/FIN scanning using IP fragments
  D. IPID scanning
  C. SYN/FIN scanning using IP fragments

• Question 365:

  Sophia is a shopping enthusiast who spends significant time searching for trendy outfits online. Clark, an attacker, noticed her activities several times and sent a fake email containing a deceptive page link to her social media page displaying all-new and trendy outfits. In excitement, Sophia clicked on the malicious link and logged in to that page using her valid credentials. Which of the following tools is employed by Clark to create the spoofed email?

  A. PyLoris
  B. Slowloris
  C. Evilginx
  D. PLCinject
  C. Evilginx

• Question 366:

  which type of virus can change its own code and then cipher itself multiple times as it replicates?

  A. Stealth virus
  B. Tunneling virus
  C. Cavity virus
  D. Encryption virus
  A. Stealth virus

• Question 367:

  You went to great lengths to install all the necessary technologies to prevent hacking attacks, such as expensive firewalls, antivirus software, anti-spam systems and intrusion detection/prevention tools in your company's network. You have

  configured the most secure policies and tightened every device on your network. You are confident that hackers will never be able to gain access to your network with complex security system in place.

  Your peer, Peter Smith who works at the same department disagrees with you.

  He says even the best network security technologies cannot prevent hackers gaining access to the network because of presence of "weakest link" in the security chain.

  What is Peter Smith talking about?

  A. Untrained staff or ignorant computer users who inadvertently become the weakest link in your security chain
  B. "zero-day" exploits are the weakest link in the security chain since the IDS will not be able to detect these attacks
  C. "Polymorphic viruses" are the weakest link in the security chain since the Anti-Virus scanners will not be able to detect these attacks
  D. Continuous Spam e-mails cannot be blocked by your security system since spammers use different techniques to bypass the filters in your gateway
  A. Untrained staff or ignorant computer users who inadvertently become the weakest link in your security chain

• Question 368:

  What would you enter if you wanted to perform a stealth scan using Nmap?

  A. nmap -sM
  B. nmap -sU
  C. nmap -sS
  D. nmap -sT
  C. nmap -sS

• Question 369:

  Switches maintain a CAM Table that maps individual MAC addresses on the network to physical ports on the switch.

  

  In MAC flooding attack, a switch is fed with many Ethernet frames, each containing different source MAC addresses, by the attacker. Switches have a limited memory for mapping various MAC addresses to physical ports. What happens when the CAM table becomes full?

  A. Switch then acts as hub by broadcasting packets to all machines on the network
  B. The CAM overflow table will cause the switch to crash causing Denial of Service
  C. The switch replaces outgoing frame switch factory default MAC address of FF:FF:FF:FF:FF:FF
  D. Every packet is dropped and the switch sends out SNMP alerts to the IDS port
  A. Switch then acts as hub by broadcasting packets to all machines on the network

• Question 370:

  Which of the following are well known password-cracking programs?

  A. L0phtcrack
  B. NetCat
  C. Jack the Ripper
  D. Netbus
  E. John the Ripper
  A. L0phtcrack
  E. John the Ripper