EC-COUNCIL 312-50V11 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V11 Online Questions & Answers

• Question 391:

  Sam is a penetration tester hired by Inception Tech, a security organization. He was asked to perform port scanning on a target host in the network. While performing the given task, Sam sends FIN/ACK probes and determines that an RST packet is sent in response by the target host, indicating that the port is closed.

  What is the port scanning technique used by Sam to discover open ports?

  A. Xmas scan
  B. IDLE/IPID header scan
  C. TCP Maimon scan
  D. ACK flag probe scan
  D. ACK flag probe scan

• Question 392:

  These hackers have limited or no training and know how to use only basic techniques or tools. What kind of hackers are we talking about?

  A. Black-Hat Hackers A
  B. Script Kiddies
  C. White-Hat Hackers
  D. Gray-Hat Hacker
  B. Script Kiddies

• Question 393:

  Why containers are less secure that virtual machines?

  A. Host OS on containers has a larger surface attack.
  B. Containers may full fill disk space of the host.
  C. A compromise container may cause a CPU starvation of the host.
  D. Containers are attached to the same virtual network.
  A. Host OS on containers has a larger surface attack.

• Question 394:

  The following is an entry captured by a network IDS. You are assigned the task of analyzing this entry. You notice the value 0x90, which is the most common NOOP instruction for the Intel processor. You figure that the attacker is attempting a

  buffer overflow attack.

  You also notice "/bin/sh" in the ASCII part of the output.

  As an analyst what would you conclude about the attack?

  

  A. The buffer overflow attack has been neutralized by the IDS
  B. The attacker is creating a directory on the compromised machine
  C. The attacker is attempting a buffer overflow attack and has succeeded
  D. The attacker is attempting an exploit that launches a command-line shell
  D. The attacker is attempting an exploit that launches a command-line shell

• Question 395:

  What is the common name for a vulnerability disclosure program opened by companies In platforms such as HackerOne?

  A. Vulnerability hunting program
  B. Bug bounty program
  C. White-hat hacking program
  D. Ethical hacking program
  B. Bug bounty program

• Question 396:

  PGP, SSL, and IKE are all examples of which type of cryptography?

  A. Digest
  B. Secret Key
  C. Public Key
  D. Hash Algorithm
  C. Public Key

• Question 397:

  Nicolas just found a vulnerability on a public-facing system that is considered a zero-day vulnerability. He sent an email to the owner of the public system describing the problem and how the owner can protect themselves from that vulnerability. He also sent an email to Microsoft informing them of the problem that their systems are exposed to. What type of hacker is Nicolas?

  A. Red hat
  B. white hat
  C. Black hat
  D. Gray hat
  B. white hat

• Question 398:

  What type of analysis is performed when an attacker has partial knowledge of inner- workings of the application?

  A. Black-box
  B. Announced
  C. White-box
  D. Grey-box
  D. Grey-box

• Question 399:

  Which of the following algorithms can be used to guarantee the integrity of messages being sent, in transit, or stored?

  A. symmetric algorithms
  B. asymmetric algorithms
  C. hashing algorithms
  D. integrity algorithms
  C. hashing algorithms

• Question 400:

  Becky has been hired by a client from Dubai to perform a penetration test against one of their remote offices. Working from her location in Columbus, Ohio, Becky runs her usual reconnaissance scans to obtain basic information about their network. When analyzing the results of her Whois search, Becky notices that the IP was allocated to a location in Le Havre, France. Which regional Internet registry should Becky go to for detailed information?

  A. ARIN
  B. APNIC
  C. RIPE
  D. LACNIC
  C. RIPE