EC-COUNCIL 312-50V11 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V11 Online Questions & Answers

• Question 71:

  You start performing a penetration test against a specific website and have decided to start from grabbing all the links from the main page. What Is the best Linux pipe to achieve your milestone?

  A. dirb https://site.com | grep "site"
  B. curl -s https://sile.com | grep `'< a href-\'http" | grep "Site-com- | cut -d "V" -f 2
  C. wget https://stte.com | grep "< a href=\*http" | grep "site.com"
  D. wgethttps://site.com | cut-d"http-
  C. wget https://stte.com | grep "< a href=\*http" | grep "site.com"

• Question 72:

  In both pharming and phishing attacks, an attacker can create websites that look similar to legitimate sites with the intent of collecting personal identifiable information from its victims. What is the difference between pharming and phishing attacks?

  A. In a pharming attack, a victim is redirected to a fake website by modifying their host configuration file or by exploiting vulnerabilities in DNS. In a phishing attack, an attacker provides the victim with a URL that is either misspelled or looks similar to the actual websites domain name
  B. In a phishing attack, a victim is redirected to a fake website by modifying their host configuration file or by exploiting vulnerabilities in DNS. In a pharming attack, an attacker provides the victim with a URL that is either misspelled or looks very similar to the actual websites domain name
  C. Both pharming and phishing attacks are purely technical and are not considered forms of social engineering
  D. Both pharming and phishing attacks are identical
  A. In a pharming attack, a victim is redirected to a fake website by modifying their host configuration file or by exploiting vulnerabilities in DNS. In a phishing attack, an attacker provides the victim with a URL that is either misspelled or looks similar to the actual websites domain name

• Question 73:

  Ethical hacker jane Smith is attempting to perform an SQL injection attach. She wants to test the response time of a true or false response and wants to use a second command to determine whether the database will return true or false results for user IDs. which two SQL Injection types would give her the results she is looking for?

  A. Out of band and boolean-based
  B. Time-based and union-based
  C. union-based and error-based
  D. Time-based and boolean-based
  C. union-based and error-based

• Question 74:

  Which of the following tools is used to analyze the files produced by several packet-capture programs such as tcpdump, WinDump, Wireshark, and EtherPeek?

  A. tcptrace
  B. Nessus
  C. OpenVAS
  D. tcptraceroute
  A. tcptrace

• Question 75:

  DHCP snooping is a great solution to prevent rogue DHCP servers on your network. Which security feature on switchers leverages the DHCP snooping database to help prevent man- in-the-middle attacks?

  A. Spanning tree
  B. Dynamic ARP Inspection (DAI)
  C. Port security
  D. Layer 2 Attack Prevention Protocol (LAPP)
  B. Dynamic ARP Inspection (DAI)

• Question 76:

  Windows LAN Manager (LM) hashes are known to be weak.

  Which of the following are known weaknesses of LM? (Choose three.)

  A. Converts passwords to uppercase.
  B. Hashes are sent in clear text over the network.
  C. Makes use of only 32-bit encryption.
  D. Effective length is 7 characters.
  A. Converts passwords to uppercase.
  B. Hashes are sent in clear text over the network.
  D. Effective length is 7 characters.

• Question 77:

  A security analyst is performing an audit on the network to determine if there are any deviations from the security policies in place. The analyst discovers that a user from the IT department had a dial-out modem installed. Which security policy must the security analyst check to see if dial-out modems are allowed?

  A. Firewall-management policy
  B. Acceptable-use policy
  C. Permissive policy
  D. Remote-access policy
  D. Remote-access policy

• Question 78:

  A security analyst uses Zenmap to perform an ICMP timestamp ping scan to acquire information related to the current time from the target host machine. Which of the following Zenmap options must the analyst use to perform the ICMP timestamp ping scan?

  A. -PY
  B. -PU
  C. -PP
  D. -Pn
  C. -PP

• Question 79:

  What ports should be blocked on the firewall to prevent NetBIOS traffic from not coming through the firewall if your network is comprised of Windows NT, 2000, and XP?

  A. 110
  B. 135
  C. 139
  D. 161
  E. 445
  F. 1024
  B. 135
  C. 139
  E. 445

• Question 80:

  Take a look at the following attack on a Web Server using obstructed URL:

  

  How would you protect from these attacks?

  A. Configure the Web Server to deny requests involving "hex encoded" characters
  B. Create rules in IDS to alert on strange Unicode requests
  C. Use SSL authentication on Web Servers
  D. Enable Active Scripts Detection at the firewall and routers
  B. Create rules in IDS to alert on strange Unicode requests