EC-COUNCIL 312-50V7 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V7 Online Questions & Answers

• Question 151:

  You run nmap port Scan on 10.0.0.5 and attempt to gain banner/server information from services running on ports 21, 110 and 123. Here is the output of your scan results:

  

  Which of the following nmap command did you run?

  A. nmap -A -sV -p21,110,123 10.0.0.5
  B. nmap -F -sV -p21,110,123 10.0.0.5
  C. nmap -O -sV -p21,110,123 10.0.0.5
  D. nmap -T -sV -p21,110,123 10.0.0.5
  C. nmap -O -sV -p21,110,123 10.0.0.5

• Question 152:

  Lee is using Wireshark to log traffic on his network. He notices a number of packets being directed to an internal IP from an outside IP where the packets are ICMP and their size is around 65,536 bytes. What is Lee seeing here?

  A. Lee is seeing activity indicative of a Smurf attack.
  B. Most likely, the ICMP packets are being sent in this manner to attempt IP spoofing.
  C. Lee is seeing a Ping of death attack.
  D. This is not unusual traffic, ICMP packets can be of any size.
  C. Lee is seeing a Ping of death attack.

• Question 153:

  Diffie-Hellman (DH) groups determine the strength of the key used in the key exchange process. Which of the following is the correct bit size of the Diffie-Hellman (DH) group 5?

  A. 768 bit key
  B. 1025 bit key
  C. 1536 bit key D. 2048 bit key
  C. 1536 bit key D. 2048 bit key

• Question 154:

  If an e-commerce site was put into a live environment and the programmers failed to remove the secret entry point that was used during the application development, what is this secret entry point known as?

  A. SDLC process
  B. Honey pot
  C. SQL injection
  D. Trap door
  D. Trap door

• Question 155:

  Which of the following techniques does a vulnerability scanner use in order to detect a vulnerability on a target service?

  A. Port scanning
  B. Banner grabbing
  C. Injecting arbitrary data
  D. Analyzing service response
  D. Analyzing service response

• Question 156:

  A security policy will be more accepted by employees if it is consistent and has the support of

  A. coworkers.
  B. executive management.
  C. the security officer.
  D. a supervisor.
  B. executive management.

• Question 157:

  The FIN flag is set and sent from host A to host B when host A has no more data to transmit (Closing a TCP connection). This flag releases the connection resources. However, host A can continue to receive data as long as the SYN sequence numbers of transmitted packets from host B are lower than the packet segment containing the set FIN flag.

  A. false
  B. true
  B. true

• Question 158:

  Company A and Company B have just merged and each has its own Public Key Infrastructure (PKI). What must the Certificate Authorities (CAs) establish so that the private PKIs for Company A and Company B trust one another and each private PKI can validate digital certificates from the other company?

  A. Poly key exchange
  B. Cross certification
  C. Poly key reference
  D. Cross-site exchange
  B. Cross certification

• Question 159:

  Windows file servers commonly hold sensitive files, databases, passwords and more. Which of the following choices would be a common vulnerability that usually exposes them?

  A. Cross-site scripting
  B. SQL injection
  C. Missing patches
  D. CRLF injection
  C. Missing patches

• Question 160:

  How do you defend against MAC attacks on a switch?

  

  A. Disable SPAN port on the switch
  B. Enable SNMP Trap on the switch
  C. Configure IP security on the switch
  D. Enable Port Security on the switch
  D. Enable Port Security on the switch