EC-COUNCIL 312-50V11 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V11 Online Questions & Answers

• Question 381:

  During the enumeration phase. Lawrence performs banner grabbing to obtain information such as OS details and versions of services running. The service that he enumerated runs directly on TCP port 445. Which of the following services is enumerated by Lawrence in this scenario?

  A. Server Message Block (SMB)
  B. Network File System (NFS)
  C. Remote procedure call (RPC)
  D. Telnet
  A. Server Message Block (SMB)

• Question 382:

  The establishment of a TCP connection involves a negotiation called three-way handshake. What type of message does the client send to the server in order to begin this negotiation?

  A. ACK
  B. SYN
  C. RST
  D. SYN-ACK
  B. SYN

• Question 383:

  jane invites her friends Alice and John over for a LAN party. Alice and John access Jane's wireless network without a password. However. Jane has a long, complex password on her router. What attack has likely occurred?

  A. Wireless sniffing
  B. Piggybacking
  C. Evil twin
  D. Wardriving
  C. Evil twin

• Question 384:

  Peter extracts the SIDs list from Windows 2000 Server machine using the hacking tool "SIDExtractor". Here is the output of the SIDs:

  

  From the above list identify the user account with System Administrator privileges.

  A. John
  B. Rebecca
  C. Sheela
  D. Shawn
  E. Somia
  F. Chang
  G. Micah
  F. Chang

• Question 385:

  CORRECT TEXT

  Allen, a professional pen tester, was hired by xpertTech solutWns to perform an attack simulation on the organization's network resources. To perform the attack, he took advantage of the NetBIOS API and targeted the NetBIOS service. B/

  enumerating NetBIOS, he found that port 139 was open and could see the resources that could be accessed or viewed on a remote system. He came across many NetBIOS codes during enumeration.

  identify the NetBIOS code used for obtaining the messenger service running for the logged- in user?

  C

• Question 386:

  Bob was recently hired by a medical company after it experienced a major cyber security breach. Many patients are complaining that their personal medical records are fully exposed on the Internet and someone can find them with a simple Google search. Bob's boss is very worried because of regulations that protect those data. Which of the following regulations is mostly violated?

  A. HIPPA/PHl
  B. Pll
  C. PCIDSS
  D. ISO 2002
  A. HIPPA/PHl

• Question 387:

  which of the following protocols can be used to secure an LDAP service against anonymous queries?

  A. SSO
  B. RADIUS
  C. WPA
  D. NTLM
  B. RADIUS

• Question 388:

  Ron, a security professional, was pen testing web applications and SaaS platforms used by his company. While testing, he found a vulnerability that allows hackers to gain unauthorized access to API objects and perform actions such as view, update, and delete sensitive data of the company. What is the API vulnerability revealed in the above scenario?

  A. Code injections
  B. Improper use of CORS
  C. No ABAC validation
  D. Business logic flaws
  B. Improper use of CORS

• Question 389:

  To hide the file on a Linux system, you have to start the filename with a specific character. What is the character?

  A. Exclamation mark (!)
  B. Underscore (_)
  C. Tilde H
  D. Period (.)
  D. Period (.)

• Question 390:

  A company's policy requires employees to perform file transfers using protocols which encrypt traffic. You suspect some employees are still performing file transfers using unencrypted protocols because the employees do not like changes. You have positioned a network sniffer to capture traffic from the laptops used by employees in the data ingest department. Using Wireshark to examine the captured traffic, which command can be used as display filter to find unencrypted file transfers?

  A. tcp.port = = 21
  B. tcp.port = 23
  C. tcp.port = = 21 | | tcp.port = =22
  D. tcp.port ! = 21
  A. tcp.port = = 21