EC-COUNCIL EC-COUNCIL Certifications 312-50V12 Questions & Answers

• Question 161:

  Peter is surfing the internet looking for information about DX Company. Which hacking process is Peter doing?

  A. Scanning

  B. Footprinting

  C. Enumeration

  D. System Hacking

  Correct Answer: B

• Question 162:

  Which of the following provides a security professional with most information about the system's security posture?

  A. Phishing, spamming, sending trojans

  B. Social engineering, company site browsing tailgating

  C. Wardriving, warchalking, social engineering

  D. Port scanning, banner grabbing service identification

  Correct Answer: D

• Question 163:

  Susan, a software developer, wants her web API to update other applications with the latest information. For this purpose, she uses a user-defined HTTP tailback or push APIs that are raised based on trigger events: when invoked, this

  feature supplies data to other applications so that users can instantly receive real-time Information.

  Which of the following techniques is employed by Susan?

  A. web shells

  B. Webhooks

  C. REST API

  D. SOAP API

  Correct Answer: B

  Webhooks are one of a few ways internet applications will communicate with one another.

  It allows you to send real-time data from one application to another whenever a given event happens.

  For example, let's say you've created an application using the Foursquare API that tracks when people check into your restaurant. You ideally wish to be able to greet customers by name and provide a complimentary drink when they check

  in. What a webhook will is notify you any time someone checks in, therefore you'd be able to run any processes that you simply had in your application once this event is triggered. The data is then sent over the web from the application

  wherever the event originally occurred, to the receiving application that handles the data.

  

  Here's a visual representation of what that looks like:

  A webhook url is provided by the receiving application, and acts as a phone number that the other application will call once an event happens. Only it's more complicated than a phone number, because data about the event is shipped

  

  Here's an example of what a webhook url looks like with the payload it's carrying:

  What are Webhooks? Webhooks are user-defined HTTP callback or push APIs that are raised based on events triggered, such as comment received on a post and pushing code to the registry. A webhook allows an application to update other applications with the latest information. Once invoked, it supplies data to the other applications, which means that users instantly receive real-time information. Webhooks are sometimes called "Reverse APIs" as they provide what is required for API specification, and the developer should create an API to use a webhook. A webhook is an API concept that is also used to send text messages and notifications to mobile numbers or email addresses from an application when a specific event is triggered. For instance, if you search for something in the online store and the required item is out of stock, you click on the "Notify me" bar to get an alert from the application when that item is available for purchase. These notifications from the applications are usually sent through webhooks.

• Question 164:

  Which of the following Google advanced search operators helps an attacker in gathering information about websites that are similar to a specified target URL?

  A. [inurl:]

  B. [related:]

  C. [info:]

  D. [site:]

  Correct Answer: B

  related:This operator displays websites that are similar or related to the URL specified.

• Question 165:

  Abel, a security professional, conducts penetration testing in his client organization to check for any security loopholes. He launched an attack on the DHCP servers by broadcasting forged DHCP requests and leased all the DHCP addresses available in the DHCP scope until the server could not issue any more IP addresses. This led to a Dos attack, and as a result, legitimate employees were unable to access the clients network. Which of the following attacks did Abel perform in the above scenario?

  A. VLAN hopping

  B. DHCP starvation

  C. Rogue DHCP server attack

  D. STP attack

  Correct Answer: B

  A DHCP starvation assault is a pernicious computerized assault that objectives DHCP workers. During a DHCP assault, an unfriendly entertainer floods a DHCP worker with false DISCOVER bundles until the DHCP worker debilitates its stock of IP addresses. When that occurs, the aggressor can deny genuine organization clients administration, or even stock an other DHCP association that prompts a Man-in-the-Middle (MITM) assault. In a DHCP Starvation assault, a threatening entertainer sends a huge load of false DISCOVER parcels until the DHCP worker thinks they've used their accessible pool. Customers searching for IP tends to find that there are no IP addresses for them, and they're refused assistance. Furthermore, they may search for an alternate DHCP worker, one which the unfriendly entertainer may give. What's more, utilizing a threatening or sham IP address, that unfriendly entertainer would now be able to peruse all the traffic that customer sends and gets. In an unfriendly climate, where we have a malevolent machine running some sort of an instrument like Yersinia, there could be a machine that sends DHCP DISCOVER bundles. This malevolent customer doesn't send a modest bunch ?it sends a great many vindictive DISCOVER bundles utilizing sham, made-up MAC addresses as the source MAC address for each solicitation. In the event that the DHCP worker reacts to every one of these false DHCP DISCOVER parcels, the whole IP address pool could be exhausted, and that DHCP worker could trust it has no more IP delivers to bring to the table to legitimate DHCP demands. When a DHCP worker has no more IP delivers to bring to the table, ordinarily the following thing to happen would be for the aggressor to get their own DHCP worker. This maverick DHCP worker at that point starts giving out IP addresses. The advantage of that to the assailant is that if a false DHCP worker is distributing IP addresses, including default DNS and door data, customers who utilize those IP delivers and begin to utilize that default passage would now be able to be directed through the aggressor's machine. That is all that an unfriendly entertainer requires to play out a man-in- the-center (MITM) assault.

• Question 166:

  Firewalk has just completed the second phase (the scanning phase) and a technician receives the output shown below. What conclusions can be drawn based on these scan results?

  TCP port 21 no response TCP port 22 no response TCP port 23 Time-to-live exceeded

  A. The lack of response from ports 21 and 22 indicate that those services are not running on the destination server.

  B. The scan on port 23 was able to make a connection to the destination host prompting the firewall to respond with a TTL error.

  C. The scan on port 23 passed through the filtering device. This indicates that port 23 was not blocked at the firewall.

  D. The firewall itself is blocking ports 21 through 23 and a service is listening on port 23 of the target host.

  Correct Answer: C

• Question 167:

  What hacking attack is challenge/response authentication used to prevent?

  A. Replay attacks

  B. Scanning attacks

  C. Session hijacking attacks

  D. Password cracking attacks

  Correct Answer: A

• Question 168:

  Why is a penetration test considered to be more thorough than vulnerability scan?

  A. Vulnerability scans only do host discovery and port scanning by default.

  B. A penetration test actively exploits vulnerabilities in the targeted infrastructure, while a vulnerability scan does not typically involve active exploitation.

  C. It is not ?a penetration test is often performed by an automated tool, while a vulnerability scan requires active engagement.

  D. The tools used by penetration testers tend to have much more comprehensive vulnerability databases.

  Correct Answer: B

• Question 169:

  Chandler works as a pen-tester in an IT-firm in New York. As a part of detecting viruses in the systems, he uses a detection method where the anti-virus executes the malicious codes on a virtual machine to simulate CPU and memory

  activities.

  Which type of virus detection method did Chandler use in this context?

  A. Heuristic Analysis

  B. Code Emulation

  C. Scanning

  D. Integrity checking

  Correct Answer: B

• Question 170:

  Eve is spending her day scanning the library computers. She notices that Alice is using a computer whose port 445 is active and listening. Eve uses the ENUM tool to enumerate Alice machine. From the command prompt, she types the following command.

  

  What is Eve trying to do?

  A. Eve is trying to connect as a user with Administrator privileges

  B. Eve is trying to enumerate all users with Administrative privileges

  C. Eve is trying to carry out a password crack for user Administrator

  D. Eve is trying to escalate privilege of the null user to that of Administrator

  Correct Answer: C