EC-COUNCIL 312-50V12 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V12 Online Questions & Answers

• Question 241:

  What would be the fastest way to perform content enumeration on a given web server by using the Gobuster tool?

  A. Performing content enumeration using the bruteforce mode and 10 threads
  B. Shipping SSL certificate verification
  C. Performing content enumeration using a wordlist
  D. Performing content enumeration using the bruteforce mode and random file extensions
  A. Performing content enumeration using the bruteforce mode and 10 threads

• Question 242:

  Shiela is an information security analyst working at HiTech Security Solutions. She is performing service version discovery using Nmap to obtain information about the running services and their versions on a target system. Which of the following Nmap options must she use to perform service version discovery on the target host?

  A. -SN
  B. -SX
  C. -sV
  D. -SF
  C. -sV

• Question 243:

  John, a professional hacker, targeted CyberSol Inc., an MNC. He decided to discover the loT devices connected in the target network that are using default credentials and are vulnerable to various hijacking attacks. For this purpose, he used an automated tool to scan the target network for specific types of loT devices and detect whether they are using the default, factory-set credentials. What is the tool employed by John in the above scenario?

  A. loTSeeker
  B. loT Inspector
  C. ATandT loT Platform
  D. Azure loT Central
  A. loTSeeker

• Question 244:

  George is a security professional working for iTech Solutions. He was tasked with securely transferring sensitive data of the organization between industrial systems. In this process, he used a short-range communication protocol based on the IEEE 203.15.4 standard. This protocol is used in devices that transfer data infrequently at a low rate in a restricted area, within a range of 10-100 m. What is the short-range wireless communication technology George employed in the above scenario?

  A. MQTT
  B. LPWAN
  C. Zigbee
  D. NB-IoT
  C. Zigbee

  ---

  Explanation/Reference:

  Zigbee could be a wireless technology developed as associate open international normal to deal with the unique desires of affordable, low-power wireless IoT networks. The Zigbee normal operates on the IEEE 802.15.4 physical radio specification and operates in unauthorised bands as well as a pair of.4 GHz, 900 MHz and 868 MHz.

  The 802.15.4 specification upon that the Zigbee stack operates gained confirmation by the Institute of Electrical and physical science Engineers (IEEE) in 2003. The specification could be a packet-based radio protocol supposed for affordable, battery-operated devices. The protocol permits devices to speak in an exceedingly kind of network topologies and may have battery life lasting many years.

  The Zigbee three.0 Protocol The Zigbee protocol has been created and ratified by member corporations of the Zigbee Alliance.Over three hundred leading semiconductor makers, technology corporations, OEMs and repair corporations comprise the Zigbee Alliance membership. The Zigbee protocol was designed to supply associate easy-to-use wireless information answer characterised by secure, reliable wireless network architectures.

  THE ZIGBEE ADVANTAGE The Zigbee 3.0 protocol is intended to speak information through rip-roaring RF environments that area unit common in business and industrial applications. Version 3.0 builds on the prevailing Zigbee normal however unifies the market-specific application profiles to permit all devices to be wirelessly connected within the same network, no matter their market designation and performance. what is more, a Zigbee 3.0 certification theme ensures the ability of product from completely different makers. Connecting Zigbee three.0 networks to the information science domain unveil observance and management from devices like smartphones and tablets on a local area network or WAN, as well as the web, and brings verity net of Things to fruition.

  Zigbee protocol options include: Support for multiple network topologies like point-to-point, point-to-multipoint and mesh networks Low duty cycle provides long battery life Low latency Direct Sequence unfold Spectrum (DSSS) Up to 65,000 nodes per network 128-bit AES encryption for secure information connections Collision avoidance, retries and acknowledgements

• Question 245:

  Which DNS resource record can indicate how long any "DNS poisoning" could last?

  A. MX
  B. SOA
  C. NS
  D. TIMEOUT
  B. SOA

• Question 246:

  When configuring wireless on his home router, Javik disables SSID broadcast. He leaves authentication "open" but sets the SSID to a 32-character string of random letters and numbers. What is an accurate assessment of this scenario from a security perspective?

  A. Since the SSID is required in order to connect, the 32-character string is sufficient to prevent brute-force attacks.
  B. Disabling SSID broadcast prevents 802.11 beacons from being transmitted from the access point, resulting in a valid setup leveraging "security through obscurity".
  C. It is still possible for a hacker to connect to the network after sniffing the SSID from a successful wireless association.
  D. Javik's router is still vulnerable to wireless hacking attempts because the SSID broadcast setting can be enabled using a specially crafted packet sent to the hardware address of the access point.
  C. It is still possible for a hacker to connect to the network after sniffing the SSID from a successful wireless association.

• Question 247:

  Richard, an attacker, aimed to hack loT devices connected to a target network. In this process. Richard recorded the frequency required to share information between connected devices. After obtaining the frequency, he captured the original data when commands were initiated by the connected devices. Once the original data were collected, he used free tools such as URH to segregate the command sequence. Subsequently, he started injecting the segregated command sequence on the same frequency into the loT network, which repeats the captured signals of the devices. What is the type of attack performed by Richard In the above scenario?

  A. Side-channel attack
  B. Replay attack
  C. CrypTanalysis attack
  D. Reconnaissance attack
  B. Replay attack

  ---

  Explanation/Reference:

  Replay Attack could be a variety of security attack to the info sent over a network.In this attack, the hacker or a person with unauthorized access, captures the traffic and sends communication to its original destination, acting because the original sender. The receiver feels that it's Associate in Nursing genuine message however it's really the message sent by the aggressor. the most feature of the Replay Attack is that the consumer would receive the message double, thence the name, Replay Attack. Prevention from Replay Attack : 1. Timestamp technique revention from such attackers is feasible, if timestamp is employed at the side of the info. Supposedly, the timestamp on an information is over a precise limit, it may be discarded, and sender may be asked to send the info once more.2. Session key technique nother way of hindrance, is by victimisation session key. This key may be used one time (by sender and receiver) per dealing, and can't be reused.

• Question 248:

  The establishment of a TCP connection involves a negotiation called three-way handshake. What type of message does the client send to the server in order to begin this negotiation?

  A. ACK
  B. SYN
  C. RST
  D. SYN-ACK
  B. SYN

• Question 249:

  Attacker Rony Installed a rogue access point within an organization's perimeter and attempted to Intrude into its internal network. Johnson, a security auditor, identified some unusual traffic in the internal network that is aimed at cracking the authentication mechanism. He immediately turned off the targeted network and tested for any weak and outdated security mechanisms that are open to attack. What is the type of vulnerability assessment performed by Johnson in the above scenario?

  A. Distributed assessment
  B. Wireless network assessment
  C. Most-based assessment
  D. Application assessment
  B. Wireless network assessment

  ---

  Explanation/Reference:

  Expanding your network capabilities are often done well using wireless networks, but it also can be a source of harm to your data system . Deficiencies in its implementations or configurations can allow tip to be accessed in an unauthorized manner.This makes it imperative to closely monitor your wireless network while also conducting periodic Wireless Network assessment.It identifies flaws and provides an unadulterated view of exactly how vulnerable your systems are to malicious and unauthorized accesses.Identifying misconfigurations and inconsistencies in wireless implementations and rogue access points can improve your security posture and achieve compliance with regulatory frameworks.

• Question 250:

  You are using a public Wi-Fi network inside a coffee shop. Before surfing the web, you use your VPN to prevent intruders from sniffing your traffic. If you did not have a VPN, how would you identify whether someone is performing an ARP spoofing attack on your laptop?

  A. You should check your ARP table and see if there is one IP address with two different MAC addresses.
  B. You should scan the network using Nmap to check the MAC addresses of all the hosts and look for duplicates.
  C. You should use netstat to check for any suspicious connections with another IP address within the LAN.
  D. You cannot identify such an attack and must use a VPN to protect your traffic.
  A. You should check your ARP table and see if there is one IP address with two different MAC addresses.