EC-COUNCIL 312-50V7 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V7 Online Questions & Answers

• Question 191:

  In this attack, a victim receives an e-mail claiming from PayPal stating that their account has been disabled and confirmation is required before activation. The attackers then scam to collect not one but two credit card numbers, ATM PIN

  number and other personal details. Ignorant users usually fall prey to this scam.

  Which of the following statement is incorrect related to this attack?

  A. Do not reply to email messages or popup ads asking for personal or financial information
  B. Do not trust telephone numbers in e-mails or popup ads
  C. Review credit card and bank account statements regularly
  D. Antivirus, anti-spyware, and firewall software can very easily detect these type of attacks
  E. Do not send credit card numbers, and personal or financial information via e-mail
  D. Antivirus, anti-spyware, and firewall software can very easily detect these type of attacks

• Question 192:

  If a competitor wants to cause damage to your organization, steal critical secrets, or put you out of business, they just have to find a job opening, prepare someone to pass the interview, have that person hired, and they will be in the organization.

  

  How would you prevent such type of attacks?

  A. It is impossible to block these attacks
  B. Hire the people through third-party job agencies who will vet them for you
  C. Conduct thorough background checks before you engage them
  D. Investigate their social networking profiles
  C. Conduct thorough background checks before you engage them

• Question 193:

  Harold works for Jacobson Unlimited in the IT department as the security manager. Harold has created a security policy requiring all employees to use complex 14 character passwords. Unfortunately, the members of management do not want to have to use such long complicated passwords so they tell Harold's boss this new password policy should not apply to them. To comply with the management's wishes, the IT department creates another Windows domain and moves all the management users to that domain. This new domain has a password policy only requiring 8 characters.

  Harold is concerned about having to accommodate the managers, but cannot do anything about it. Harold is also concerned about using LanManager security on his network instead of NTLM or NTLMv2, but the many legacy applications on the network prevent using the more secure NTLM and NTLMv2. Harold pulls the SAM files from the DC's on the original domain and the new domain using Pwdump6.

  Harold uses the password cracking software John the Ripper to crack users' passwords to make sure they are strong enough. Harold expects that the users' passwords in the original domain will take much longer to crack than the management's passwords in the new domain. After running the software, Harold discovers that the 14 character passwords only took a short time longer to crack than the 8 character passwords.

  Why did the 14 character passwords not take much longer to crack than the 8 character passwords?

  A. Harold should have used Dumpsec instead of Pwdump6
  B. Harold's dictionary file was not large enough
  C. Harold should use LC4 instead of John the Ripper
  D. LanManger hashes are broken up into two 7 character fields
  D. LanManger hashes are broken up into two 7 character fields

• Question 194:

  Pentest results indicate that voice over IP traffic is traversing a network. Which of the following tools will decode a packet capture and extract the voice conversations?

  A. Cain
  B. John the Ripper
  C. Nikto
  D. Hping
  A. Cain

• Question 195:

  You are gathering competitive intelligence on an organization. You notice that they have jobs listed on a few Internet job-hunting sites. There are two jobs for network and system administrators. How can this help you in foot printing the organization?

  A. To learn about the IP range used by the target network
  B. To identify the number of employees working for the company
  C. To test the limits of the corporate security policy enforced in the company
  D. To learn about the operating systems, services and applications used on the network
  D. To learn about the operating systems, services and applications used on the network

• Question 196:

  Which of the following open source tools would be the best choice to scan a network for potential targets?

  A. NMAP
  B. NIKTO
  C. CAIN
  D. John the Ripper
  A. NMAP

• Question 197:

  Which statement best describes a server type under an N-tier architecture?

  A. A group of servers at a specific layer
  B. A single server with a specific role
  C. A group of servers with a unique role
  D. A single server at a specific layer
  C. A group of servers with a unique role

• Question 198:

  Cyber Criminals have long employed the tactic of masking their true identity. In IP spoofing, an attacker gains unauthorized access to a computer or a network by making it appear that a malicious message has come from a trusted machine,

  by "spoofing" the IP address of that machine.

  How would you detect IP spoofing?

  A. Check the IPID of the spoofed packet and compare it with TLC checksum. If the numbers match then it is spoofed packet
  B. Probe a SYN Scan on the claimed host and look for a response SYN/FIN packet, if the connection completes then it is a spoofed packet
  C. Turn on 'Enable Spoofed IP Detection' in Wireshark, you will see a flag tick if the packet is spoofed
  D. Sending a packet to the claimed host will result in a reply. If the TTL in the reply is not the same as the packet being checked then it is a spoofed packet
  D. Sending a packet to the claimed host will result in a reply. If the TTL in the reply is not the same as the packet being checked then it is a spoofed packet

• Question 199:

  _____________ is a type of symmetric-key encryption algorithm that transforms a fixed-length block of plaintext (unencrypted text) data into a block of ciphertext (encrypted text) data of the same length.

  A. Stream Cipher
  B. Block Cipher
  C. Bit Cipher
  D. Hash Cipher
  B. Block Cipher

• Question 200:

  Which of the following is a preventive control?

  A. Smart card authentication
  B. Security policy
  C. Audit trail
  D. Continuity of operations plan
  A. Smart card authentication