EC-COUNCIL 312-50V7 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V7 Online Questions & Answers

• Question 201:

  Which of the following is an application that requires a host application for replication?

  A. Micro
  B. Worm
  C. Trojan
  D. Virus
  D. Virus

• Question 202:

  What type of Trojan is this?

  

  A. RAT Trojan
  B. E-Mail Trojan
  C. Defacement Trojan
  D. Destructing Trojan
  E. Denial of Service Trojan
  C. Defacement Trojan

• Question 203:

  Which of the following lists are valid data-gathering activities associated with a risk assessment?

  A. Threat identification, vulnerability identification, control analysis
  B. Threat identification, response identification, mitigation identification
  C. Attack profile, defense profile, loss profile
  D. System profile, vulnerability identification, security determination
  A. Threat identification, vulnerability identification, control analysis

• Question 204:

  A botnet can be managed through which of the following?

  A. IRC
  B. E-Mail
  C. Linkedin and Facebook
  D. A vulnerable FTP server
  A. IRC

• Question 205:

  A penetration tester is hired to do a risk assessment of a company's DMZ. The rules of engagement states that the penetration test be done from an external IP address with no prior knowledge of the internal IT systems. What kind of test is being performed?

  A. white box
  B. grey box
  C. red box
  D. black box
  D. black box

• Question 206:

  William has received a Chess game from someone in his computer programming class through email. William does not really know the person who sent the game very well, but decides to install the game anyway because he really likes Chess.

  

  After William installs the game, he plays it for a couple of hours. The next day, William plays the Chess game again and notices that his machine has begun to slow down. He brings up his Task Manager and sees the following programs

  running:

  What has William just installed?

  A. Zombie Zapper (ZoZ)
  B. Remote Access Trojan (RAT)
  C. Bot IRC Tunnel (BIT)
  D. Root Digger (RD)
  B. Remote Access Trojan (RAT)

• Question 207:

  Which of the following programming languages is most vulnerable to buffer overflow attacks?

  A. Perl
  B. C++
  C. Python
  D. Java
  B. C++

• Question 208:

  Which of the following network attacks takes advantage of weaknesses in the fragment reassembly functionality of the TCP/IP protocol stack?

  A. Teardrop
  B. SYN flood
  C. Smurf attack
  D. Ping of death
  A. Teardrop

• Question 209:

  Which type of antenna is used in wireless communication?

  A. Omnidirectional
  B. Parabolic
  C. Uni-directional
  D. Bi-directional
  A. Omnidirectional

• Question 210:

  Bob waits near a secured door, holding a box. He waits until an employee walks up to the secured door and uses the special card in order to access the restricted area of the target company. Just as the employee opens the door, Bob walks up to the employee (still holding the box) and asks the employee to hold the door open so that he can enter. What is the best way to undermine the social engineering activity of tailgating?

  A. Issue special cards to access secure doors at the company and provide a one-time only brief description of use of the special card
  B. Educate and enforce physical security policies of the company to all the employees on a regular basis
  C. Setup a mock video camera next to the special card reader adjacent to the secure door
  D. Post a sign that states, "no tailgating" next to the special card reader adjacent to the secure door
  B. Educate and enforce physical security policies of the company to all the employees on a regular basis