EC-COUNCIL 312-50V13 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V13 Online Questions & Answers

• Question 511:

  Which patch management strategy is most effective?

  A. External-only patches
  B. Automated patch management with monitoring
  C. Manual patching on live servers
  D. Applying all patches regardless of source
  B. Automated patch management with monitoring

  ---

  Explanation

  CEH v13 identifies automated patch management as the most secure and scalable approach. Automated tools ensure timely deployment, validation, rollback capability, and compliance reporting.

  Manual patching increases human error. Applying patches from unknown sources introduces malware risk.

  Limiting patches contradicts best practices.

• Question 512:

  PGP, SSL, and IKE are all examples of which type of cryptography?

  A. Digest
  B. Secret Key
  C. Public Key
  D. Hash Algorithm
  C. Public Key

  ---

  Explanation

  PGP (Pretty Good Privacy), SSL (Secure Sockets Layer), and IKE (Internet Key Exchange) use Public Key Cryptography for secure communication. They utilize:

  Public and private key pairs

  Asymmetric encryption for key exchange

  Symmetric encryption for data confidentiality (after key exchange)

  These protocols ensure secure data transfer over insecure networks.

  CEH v13 Official Study Guide:

  Module 20: Cryptography Quote:

  "Public key cryptography uses asymmetric key pairs for encryption and authentication. Protocols like PGP, SSL/TLS, and IKE rely on this to exchange keys and establish trust."

  Incorrect Options:

  A and D. Digest/hash algorithms (e.g., MD5, SHA) ensure integrity, not encryption

  B. Secret key refers to symmetric encryption, which is used after the public key exchange, not as the basis for these protocols

• Question 513:

  Which of the following incident handling process phases is responsible for defining rules, collaborating human workforce, creating a back-up plan, and testing the plans for an organization?

  A. Preparation phase
  B. Containment phase
  C. Identification phase
  D. Recovery phase
  A. Preparation phase

  ---

  Explanation

  The preparation phase of incident handling is the proactive phase where organizations:

  Develop and define incident response policies and rules

  Assign roles and responsibilities

  Design backup and disaster recovery strategies

  Train staff and test response plans via drills or tabletop exercises This phase ensures that the organization is ready to respond effectively when an incident occurs.

  CEH v13 Official Study Guide:

  Module 18: Incident Response and Computer Forensics

  Quote:

  "In the preparation phase, organizations define rules, set up an incident response team, perform training, and establish and test incident handling procedures."

  Incorrect Options:

  B. Containment is about stopping the spread of an active incident

  C. Identification is when the incident is first detected

  D. Recovery is for restoring systems post-incident

• Question 514:

  Judy created a forum, one day. she discovers that a user is posting strange images without writing comments.

  She immediately calls a security expert, who discovers that the following code is hidden behind those images: