EC-COUNCIL 312-50V11 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V11 Online Questions & Answers

• Question 411:

  As a Certified Ethical Hacker, you were contracted by a private firm to conduct an external security assessment through penetration testing.

  What document describes the specifics of the testing, the associated violations, and essentially protects both the organization's interest and your liabilities as a tester?

  A. Service Level Agreement
  B. Project Scope
  C. Rules of Engagement
  D. Non-Disclosure Agreement
  C. Rules of Engagement

• Question 412:

  Samuel, a professional hacker, monitored and Intercepted already established traffic between Bob and a host machine to predict Bob's ISN. Using this ISN, Samuel sent spoofed packets with Bob's IP address to the host machine. The host machine responded with <| packet having an Incremented ISN. Consequently. Bob's connection got hung, and Samuel was able to communicate with the host machine on behalf of Bob. What is the type of attack performed by Samuel in the above scenario?

  A. UDP hijacking
  B. Blind hijacking
  C. TCP/IP hacking
  D. Forbidden attack
  C. TCP/IP hacking

• Question 413:

  The change of a hard drive failure is once every three years. The cost to buy a new hard drive is $300. It will require 10 hours to restore the OS and software to the new hard disk. It will require a further 4 hours to restore the database from the last backup to the new hard disk. The recovery person earns $10/hour. Calculate the SLE, ARO, and ALE. Assume the EF = 1(100%). What is the closest approximate cost of this replacement and recovery operation per year?

  A. $1320
  B. $440
  C. $100
  D. $146
  D. $146

• Question 414:

  Bill is a network administrator. He wants to eliminate unencrypted traffic inside his company's network. He decides to setup a SPAN port and capture all traffic to the datacenter. He immediately discovers unencrypted traffic in port UDP 161. what protocol is this port using and how can he secure that traffic?

  A. it is not necessary to perform any actions, as SNMP is not carrying important information.
  B. SNMP and he should change it to SNMP V3
  C. RPC and the best practice is to disable RPC completely
  D. SNMP and he should change it to SNMP v2, which is encrypted
  B. SNMP and he should change it to SNMP V3

• Question 415:

  Every company needs a formal written document which spells out to employees precisely what they are allowed to use the company's systems for, what is prohibited, and what will happen to them if they break the rules. Two printed copies of the policy should be given to every employee as soon as possible after they join the organization. The employee should be asked to sign one copy, which should be safely filed by the company. No one should be allowed to use the company's computer systems until they have signed the policy in acceptance of its terms.

  What is this document called?

  A. Information Audit Policy (IAP)
  B. Information Security Policy (ISP)
  C. Penetration Testing Policy (PTP)
  D. Company Compliance Policy (CCP)
  B. Information Security Policy (ISP)

• Question 416:

  Tremp is an IT Security Manager, and he is planning to deploy an IDS in his small company. He is looking for an IDS with the following characteristics: - Verifies success or failure of an attack - Monitors system activities Detects attacks that a network-based IDS fails to detect - Near real-time detection and response - Does not require additional hardware - Lower entry cost Which type of IDS is best suited for Tremp's requirements?

  A. Gateway-based IDS
  B. Network-based IDS
  C. Host-based IDS
  D. Open source-based
  C. Host-based IDS

• Question 417:

  in the Common Vulnerability Scoring System (CVSS) v3.1 severity ratings, what range does medium vulnerability fall in?

  A. 3.0-6.9
  B. 40-6.0
  C. 4.0-6.9
  D. 3.9-6.9
  C. 4.0-6.9

• Question 418:

  Sam, a web developer, was instructed to incorporate a hybrid encryption software program into a web application to secure email messages. Sam used an encryption software, which is a free implementation of the OpenPGP standard that uses both symmetric-key cryptography and asymmetric-key cryptography for improved speed and secure key exchange. What is the encryption software employed by Sam for securing the email messages?

  A. PGP
  B. S/MIME
  C. SMTP
  D. GPG
  A. PGP

• Question 419:

  What is the BEST alternative if you discover that a rootkit has been installed on one of your computers?

  A. Copy the system files from a known good system
  B. Perform a trap and trace
  C. Delete the files and try to determine the source
  D. Reload from a previous backup
  E. Reload from known good media
  E. Reload from known good media

• Question 420:

  The company ABC recently contracts a new accountant. The accountant will be working with the financial statements. Those financial statements need to be approved by the CFO and then they will be sent to the accountant but the CFO is worried because he wants to be sure that the information sent to the accountant was not modified once he approved it. Which of the following options can be useful to ensure the integrity of the data?

  A. The CFO can use a hash algorithm in the document once he approved the financial statements
  B. The CFO can use an excel file with a password
  C. The financial statements can be sent twice, one by email and the other delivered in USB and the accountant can compare both to be sure is the same document
  D. The document can be sent to the accountant using an exclusive USB for that document
  A. The CFO can use a hash algorithm in the document once he approved the financial statements