EC-COUNCIL EC-COUNCIL Certifications 312-50V12 Questions & Answers

• Question 401:

  Which of the following represents the initial two commands that an IRC client sends to join an IRC network?

  A. USER, NICK

  B. LOGIN, NICK

  C. USER, PASS

  D. LOGIN, USER

  Correct Answer: A

• Question 402:

  Judy created a forum, one day. she discovers that a user is posting strange images without writing comments. She immediately calls a security expert, who discovers that the following code is hidden behind those images:

  What issue occurred for the users who clicked on the image?

  A. The code inject a new cookie to the browser.

  B. The code redirects the user to another site.

  C. The code is a virus that is attempting to gather the users username and password.

  D. This php file silently executes the code and grabs the users session cookie and session ID.

  Correct Answer: D

  document.write(); (Cookie and session ID theft)

  https://www.softwaretestinghelp.com/cross-site-scripting-xss-attack-test/ As seen in the indicated question, cookies are escaped and sent to script to variable `cookie'. If the malicious user would inject this script into the website's code, then it will be executed in the user's browser and cookies will be sent to the malicious user.

• Question 403:

  From the following table, identify the wrong answer in terms of Range (ft). Standard Range (ft) 802.11a 150-150 802.11b 150-150 802.11g 150-150

  802.16 (WiMax) 30 miles

  A. 802.16 (WiMax)

  B. 802.11g

  C. 802.11b

  D. 802.11a

  Correct Answer: A

• Question 404:

  Consider the following Nmap output:

  

  What command-line parameter could you use to determine the type and version number of the web server?

  A. -sv B. -Pn

  C. -V

  D. -ss

  Correct Answer: A

  C:\Users\moi>nmap -h | findstr " -sV" -sV: Probe open ports to determine service/version info

• Question 405:

  Which of the following is the BEST way to defend against network sniffing?

  A. Using encryption protocols to secure network communications

  B. Register all machines MAC Address in a Centralized Database

  C. Use Static IP Address

  D. Restrict Physical Access to Server Rooms hosting Critical Servers

  Correct Answer: A

  https://en.wikipedia.org/wiki/Sniffing_attack To prevent networks from sniffing attacks, organizations and individual users should keep away from applications using insecure protocols, like basic HTTP authentication, File Transfer Protocol (FTP), and Telnet. Instead, secure protocols such as HTTPS, Secure File Transfer Protocol (SFTP), and Secure Shell (SSH) should be preferred. In case there is a necessity for using any insecure protocol in any application, all the data transmission should be encrypted. If required, VPN (Virtual Private Networks) can be used to provide secure access to users. NOTE: I want to note that the wording "best option" is valid only for the EC-Council's exam since the other options will not help against sniffing or will only help from some specific attack vectors. The sniffing attack surface is huge. To protect against it, you will need to implement a complex of measures at all levels of abstraction and apply controls at the physical, administrative, and technical levels. However, encryption is indeed the best option of all, even if your data is intercepted - an attacker cannot understand it.

• Question 406:

  Attacker Steve targeted an organization's network with the aim of redirecting the company's web traffic to another malicious website. To achieve this goal, Steve performed DNS cache poisoning by exploiting the vulnerabilities in the DNS

  server software and modified the original IP address of the target website to that of a fake website. What is the technique employed by Steve to gather information for identity theft?

  A. Pretexting

  B. Pharming

  C. Wardriving

  D. Skimming

  Correct Answer: B

  A pharming attacker tries to send a web site's traffic to a faux website controlled by the offender, typically for the aim of collection sensitive data from victims or putting in malware on their machines. Attacker tend to specialize in making lookalike ecommerce and digital banking websites to reap credentials and payment card data. Though they share similar goals, pharming uses a special technique from phishing. "Pharming attacker are targeted on manipulating a system, instead of tricking people into reaching to a dangerous web site," explains David Emm, principal security man of science at Kaspersky. "When either a phishing or pharming attacker is completed by a criminal, they need a similar driving issue to induce victims onto a corrupt location, however the mechanisms during which this is often undertaken are completely different."

• Question 407:

  A zone file consists of which of the following Resource Records (RRs)?

  A. DNS, NS, AXFR, and MX records

  B. DNS, NS, PTR, and MX records

  C. SOA, NS, AXFR, and MX records

  D. SOA, NS, A, and MX records

  Correct Answer: D

• Question 408:

  A "Server-Side Includes" attack refers to the exploitation of a web application by injecting scripts in HTML pages or executing arbitrary code remotely. Which web-page file type, if it exists on the web server, is a strong indication that the server is vulnerable to this kind of attack?

  A. .stm

  B. .html

  C. .rss

  D. .cms

  Correct Answer: A

• Question 409:

  One of your team members has asked you to analyze the following SOA record. What is the version? Rutgers.edu.SOA NS1.Rutgers.edu ipad.college.edu (200302028 3600 3600 604800 2400.) (Choose four.)

  A. 200303028

  B. 3600

  C. 604800

  D. 2400

  E. 60

  F. 4800

  Correct Answer: A

• Question 410:

  Based on the following extract from the log of a compromised machine, what is the hacker really trying to steal?

  A. har.txt

  B. SAM file

  C. wwwroot

  D. Repair file

  Correct Answer: B