EC-COUNCIL 312-50V12 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V12 Online Questions & Answers

• Question 341:

  Henry is a cyber security specialist hired by BlackEye - Cyber security solutions. He was tasked with discovering the operating system (OS) of a host. He used the Unkornscan tool to discover the OS of the target system. As a result, he obtained a TTL value, which indicates that the target system is running a Windows OS. Identify the TTL value Henry obtained, which indicates that the target OS is Windows.

  A. 64
  B. 128
  C. 255
  D. 138
  B. 128

  ---

  Explanation/Reference:

  Windows TTL 128, Linux TTL 64, OpenBSD 255 ...

  https://subinsb.com/default-device-ttl-values/

  Time to Live (TTL) represents to number of 'hops' a packet can take before it is considered invalid. For Windows/Windows Phone, this value is 128. This value is 64 for Linux/Android.

• Question 342:

  Scenario: Joe turns on his home computer to access personal online banking. When he enters the URL www.bank.com. the website is displayed, but it prompts him to re-enter his credentials as if he has never visited the site before. When he examines the website URL closer, he finds that the site is not secure and the web address appears different. What type of attack he is experiencing?.

  A. Dos attack
  B. DHCP spoofing
  C. ARP cache poisoning
  D. DNS hijacking
  D. DNS hijacking

• Question 343:

  Larry, a security professional in an organization, has noticed some abnormalities in the user accounts on a web server. To thwart evolving attacks, he decided to harden the security of the web server by adopting countermeasures to secure

  the accounts on the web server.

  Which of the following countermeasures must Larry implement to secure the user accounts on the web server?

  A. Enable unused default user accounts created during the installation of an OS
  B. Enable all non-interactive accounts that should exist but do not require interactive login
  C. Limit the administrator or toot-level access to the minimum number of users
  D. Retain all unused modules and application extensions
  C. Limit the administrator or toot-level access to the minimum number of users

• Question 344:

  Harris is attempting to identify the OS running on his target machine. He inspected the initial TTL in the IP header and the related TCP window size and obtained the following results:

  TTL: 64 Window Size: 5840

  What is the OS running on the target machine?

  A. Solaris OS
  B. Windows OS
  C. Mac OS
  D. Linux OS
  D. Linux OS

• Question 345:

  An LDAP directory can be used to store information similar to a SQL database. LDAP uses a _____ database structure instead of SQL's _____ structure. Because of this, LDAP has difficulty representing many-to-one relationships.

  A. Relational, Hierarchical
  B. Strict, Abstract
  C. Hierarchical, Relational
  D. Simple, Complex
  C. Hierarchical, Relational

• Question 346:

  Which utility will tell you in real time which ports are listening or in another state?

  A. Netstat
  B. TCPView
  C. Nmap
  D. Loki
  B. TCPView

• Question 347:

  Your company, SecureTech Inc., is planning to transmit some sensitive data over an unsecured communication channel. As a cyber security expert, you decide to use symmetric key encryption to protect the data. However, you must also ensure the secure exchange of the symmetric key. Which of the following protocols would you recommend to the team to achieve this?

  A. Implementing SSL certificates on your company's web servers.
  B. Applying the Diffie-Hellman protocol to exchange the symmetric key.
  C. Switching all data transmission to the HTTPS protocol.
  D. Utilizing SSH for secure remote logins to the servers.
  B. Applying the Diffie-Hellman protocol to exchange the symmetric key.

  ---

  Explanation/Reference:

  The protocol that you would recommend to the team to achieve the secure exchange of the symmetric key is the Diffie-Hellman protocol. The Diffie-Hellman protocol is a key agreement protocol that allows two or more parties to establish a

  shared secret key over an unsecured communication channel, without having to exchange the key itself. The Diffie-Hellman protocol works as follows:

  The parties agree on a large prime number p and a generator g, which are public parameters that can be known by anyone.

  Each party chooses a random private number a or b, which are kept secret from anyone else.

  Each party computes a public value A or B, by raising g to the power of a or b modulo p, i.e., A = g^a mod p and B = g^b mod p.

  Each party sends their public value A or B to the other party over the unsecured channel.

  Each party computes the shared secret key K, by raising the received public value to the power of their own private number modulo p, i.e., K = A^b mod p = B^a mod p. The parties can now use the shared secret key K to encrypt and decrypt

  the data using a symmetric key encryption algorithm, such as AES or 3DES. The Diffie-Hellman protocol can ensure the secure exchange of the symmetric key because it relies on the mathematical difficulty of computing discrete logarithms,

  which means that it is hard to find the private numbers a or b given the public values A or B, g, and p. Therefore, an attacker who intercepts the public values A or B cannot easily compute the shared secret key K, and thus cannot decrypt the

  data encrypted with K12. The other options are not as appropriate as option B for the following reasons:

  A. Implementing SSL certificates on your company's web servers: This option is not relevant because SSL certificates are not used to exchange symmetric keys, but to authenticate the identity of the web servers and to establish a secure connection using public key encryption. SSL certificates are digital certificates that contain the public key and the identity information of the web server, and are issued and signed by a trusted certificate authority (CA). When a client connects to a web server, the web server sends its SSL certificate to the client, who verifies it with the CA. If the verification is successful, the client and the web server use the public key in the certificate to exchange a symmetric key, which is then used to encrypt and decrypt the data. However, this option does not address the scenario of transmitting data over an unsecured communication channel, which may not involve web servers or SSL certificates. C. Switching all data transmission to the HTTPS protocol: This option is not sufficient because HTTPS protocol is not a protocol for exchanging symmetric keys, but a protocol for securing web traffic using SSL or TLS encryption. HTTPS protocol is a combination of HTTP protocol and SSL or TLS protocol, which means that it uses HTTP for the application layer communication and SSL or TLS for the transport layer encryption. When a client requests a web page from a web server using HTTPS protocol, the client and the web server establish a secure connection using SSL or TLS protocol, which involves the exchange of SSL certificates and a symmetric key, as explained in option A. Then, the client and the web server use the symmetric key to encrypt and decrypt the HTTP data. However, this option does not address the scenario of transmitting data over an unsecured communication channel, which may not involve web servers or HTTPS protocol5 . D. Utilizing SSH for secure remote logins to the servers: This option is not applicable because SSH is not a protocol for exchanging symmetric keys, but a protocol for securing remote access to servers using public key authentication and encryption. SSH is a protocol that allows a client to securely connect to a server and execute commands or transfer files over an encrypted channel. SSH uses public key cryptography to authenticate the identity of the server and the client, and to exchange a symmetric key, which is then used to encrypt and decrypt the data. However, this option does not address the scenario of transmitting data over an unsecured communication channel, which may not involve remote logins or SSH protocol . References:

  1: Diffieellman key exchange - Wikipedia

  2: Diffie-Hellman Key Exchange - an overview | ScienceDirect Topics

  3: SSL Certificate - an overview | ScienceDirect Topics

  4: What is an SSL Certificate? | DigiCert.com

  5: HTTPS - Wikipedia : What is HTTPS? | Cloudflare : SSH (Secure Shell) - Wikipedia : What is SSH? | SSH.COM

• Question 348:

  Kevin, an encryption specialist, implemented a technique that enhances the security of keys used for encryption and authentication. Using this technique, Kevin input an initial key to an algorithm that generated an enhanced key that is resistant to brute-force attacks. What is the technique employed by Kevin to improve the security of encryption keys?

  A. Key derivation function
  B. Key reinstallation
  C. A Public key infrastructure
  D. Key stretching
  D. Key stretching

• Question 349:

  Alex, a cloud security engineer working in Eyecloud Inc. is tasked with isolating applications from the underlying infrastructure and stimulating communication via well- defined channels. For this purpose, he used an open-source technology that helped him in developing, packaging, and running applications; further, the technology provides PaaS through OS-level visualization, delivers containerized software packages, and promotes fast software delivery. What is the cloud technology employed by Alex in the above scenario?

  A. Virtual machine
  B. Serverless computing
  C. Docker
  D. Zero trust network
  C. Docker

• Question 350:

  In this attack, a victim receives an e-mail claiming from PayPal stating that their account has been disabled and confirmation is required before activation. The attackers then scam to collect not one but two credit card numbers, ATM PIN

  number and other personal details. Ignorant users usually fall prey to this scam.

  Which of the following statement is incorrect related to this attack?

  A. Do not reply to email messages or popup ads asking for personal or financial information
  B. Do not trust telephone numbers in e-mails or popup ads
  C. Review credit card and bank account statements regularly
  D. Antivirus, anti-spyware, and firewall software can very easily detect these type of attacks
  E. Do not send credit card numbers, and personal or financial information via e-mail
  D. Antivirus, anti-spyware, and firewall software can very easily detect these type of attacks