EC-COUNCIL 312-50V12 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V12 Online Questions & Answers

• Question 281:

  By using a smart card and pin, you are using a two-factor authentication that satisfies

  A. Something you are and something you remember
  B. Something you have and something you know
  C. Something you know and something you are
  D. Something you have and something you are
  B. Something you have and something you know

  ---

  Explanation/Reference:

  Two-factor Authentication or 2FA is a user identity verification method, where two of the three possible authentication factors are combined to grant access to a website or application.

  1) something the user knows,

  2) something the user has, or

  3) something the user is.

  The possible factors of authentication are:

  Something the User Knows:

  This is often a password, passphrase, PIN, or secret question. To satisfy this authentication challenge, the user must provide information that matches the answers previously provided to the organization by that user, such as "Name the town

  in which you were born."

  Something the User Has:

  This involves entering a one-time password generated by a hardware authenticator. Users carry around an authentication device that will generate a one-time password on command. Users then authenticate by providing this code to the

  organization. Today, many organizations offer software authenticators that can be installed on the user's mobile device.

  Something the User Is:

  This third authentication factor requires the user to authenticate using biometric data. This can include fingerprint scans, facial scans, behavioral biometrics, and more. For example: In internet security, the most used factors of authentication

  are:

  something the user has (e.g., a bank card) and something the user knows (e.g., a PIN code). This is two-factor authentication. Two-factor authentication is also sometimes referred to as strong authentication, Two-Step Verification, or 2FA.

  The key difference between Multi-Factor Authentication (MFA) and Two-Factor Authentication (2FA) is that, as the term implies, Two-Factor Authentication utilizes a combination of two out of three possible authentication factors. In contrast,

  Multi-Factor Authentication could utilize two or more of these authentication factors.

• Question 282:

  Juliet, a security researcher in an organization, was tasked with checking for the authenticity of images to be used in the organization's magazines. She used these images as a search query and tracked the original source and details of the images, which included photographs, profile pictures, and memes. Which of the following footprinting techniques did Rachel use to finish her task?

  A. Reverse image search
  B. Meta search engines
  C. Advanced image search
  D. Google advanced search
  C. Advanced image search

• Question 283:

  Which of the following statements is TRUE?

  A. Packet Sniffers operate on the Layer 1 of the OSI model.
  B. Packet Sniffers operate on Layer 2 of the OSI model.
  C. Packet Sniffers operate on both Layer 2 and Layer 3 of the OSI model.
  D. Packet Sniffers operate on Layer 3 of the OSI model.
  B. Packet Sniffers operate on Layer 2 of the OSI model.

• Question 284:

  Which Nmap option would you use if you were not concerned about being detected and wanted to perform a very fast scan?

  A. -T5
  B. -O
  C. -T0
  D. -A
  A. -T5

• Question 285:

  Internet Protocol Security IPsec is actually a suite pf protocols. Each protocol within the suite provides different functionality. Collective IPsec does everything except.

  A. Protect the payload and the headers
  B. Encrypt
  C. Work at the Data Link Layer
  D. Authenticate
  D. Authenticate

• Question 286:

  Based on the following extract from the log of a compromised machine, what is the hacker really trying to steal?

  A. har.txt
  B. SAM file
  C. wwwroot
  D. Repair file
  B. SAM file

• Question 287:

  Bill has been hired as a penetration tester and cyber security auditor for a major credit card company. Which information security standard is most applicable to his role?

  A. FISMA
  B. HITECH
  C. PCI-DSS
  D. Sarbanes-OxleyAct
  C. PCI-DSS

• Question 288:

  Vlady works in a fishing company where the majority of the employees have very little understanding of IT let alone IT Security. Several information security issues that Vlady often found includes, employees sharing password, writing his/her password on a post it note and stick it to his/her desk, leaving the computer unlocked, didn't log out from emails or other social media accounts, and etc. After discussing with his boss, Vlady decided to make some changes to improve the security environment in his company. The first thing that Vlady wanted to do is to make the employees understand the importance of keeping confidential information, such as password, a secret and they should not share it with other persons. Which of the following steps should be the first thing that Vlady should do to make the employees in his company understand to importance of keeping confidential information a secret?

  A. Warning to those who write password on a post it note and put it on his/her desk
  B. Developing a strict information security policy
  C. Information security awareness training
  D. Conducting a one to one discussion with the other employees about the importance of information security
  A. Warning to those who write password on a post it note and put it on his/her desk

• Question 289:

  Which among the following is the best example of the hacking concept called "clearing tracks"?

  A. After a system is breached, a hacker creates a backdoor to allow re-entry into a system.
  B. During a cyberattack, a hacker injects a rootkit into a server.
  C. An attacker gains access to a server through an exploitable vulnerability.
  D. During a cyberattack, a hacker corrupts the event logs on all machines.
  D. During a cyberattack, a hacker corrupts the event logs on all machines.

• Question 290:

  To invisibly maintain access to a machine, an attacker utilizes a toolkit that sits undetected In the core components of the operating system. What is this type of rootkit an example of?

  A. Mypervisor rootkit
  B. Kernel toolkit
  C. Hardware rootkit
  D. Firmware rootkit
  B. Kernel toolkit

  ---

  Explanation/Reference:

  Kernel-mode rootkits run with the best operating system privileges (Ring 0) by adding code or replacement parts of the core operating system, as well as each the kernel and associated device drivers. Most operative systems support kernel-mode device drivers, that execute with a similar privileges because the software itself. As such, several kernel-mode rootkits square measure developed as device drivers or loadable modules, like loadable kernel modules in Linux or device drivers in Microsoft Windows. This category of rootkit has unrestricted security access, however is tougher to jot down. The quality makes bugs common, and any bugs in code operative at the kernel level could seriously impact system stability, resulting in discovery of the rootkit. one amongst the primary wide familiar kernel rootkits was developed for Windows NT four.0 and discharged in Phrack magazine in 1999 by Greg Hoglund. Kernel rootkits is particularly tough to observe and take away as a result of they operate at a similar security level because the software itself, and square measure therefore able to intercept or subvert the foremost sure software operations. Any package, like antivirus package, running on the compromised system is equally vulnerable. during this scenario, no a part of the system is sure.