EC-COUNCIL 312-50V7 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V7 Online Questions & Answers

• Question 401:

  Which of the following viruses tries to hide from anti-virus programs by actively altering and corrupting the chosen service call interruptions when they are being run?

  A. Cavity virus
  B. Polymorphic virus
  C. Tunneling virus
  D. Stealth virus
  D. Stealth virus

• Question 402:

  A company is legally liable for the content of email that is sent from its systems, regardless of whether the message was sent for private or business-related purposes. This could lead to prosecution for the sender and for the company's directors if, for example, outgoing email was found to contain material that was pornographic, racist, or likely to incite someone to commit an act of terrorism. You can always defend yourself by "ignorance of the law" clause.

  A. true
  B. false
  B. false

• Question 403:

  What sequence of packets is sent during the initial TCP three-way handshake?

  A. SYN, SYN-ACK, ACK
  B. SYN, URG, ACK
  C. SYN, ACK, SYN-ACK
  D. FIN, FIN-ACK, ACK
  A. SYN, SYN-ACK, ACK

• Question 404:

  The programmers on your team are analyzing the free, open source software being used to run FTP services on a server in your organization. They notice that there is excessive number of functions in the source code that might lead to buffer overflow. These C++ functions do not check bounds. Identify the line in the source code that might lead to buffer overflow?

  A. 9A.9
  B. 17B.17
  C. 20C.20
  D. 32D.32
  E. 35E.35
  B. 17B.17

• Question 405:

  One of the ways to map a targeted network for live hosts is by sending an ICMP ECHO request to the broadcast or the network address. The request would be broadcasted to all hosts on the targeted network. The live hosts will send an ICMP ECHO Reply to the attacker's source IP address.

  You send a ping request to the broadcast address 192.168.5.255.

  

  There are 40 computers up and running on the target network. Only 13 hosts send a reply while others do not. Why?

  A. Windows machines will not generate an answer (ICMP ECHO Reply) to an ICMP ECHO request aimed at the broadcast address or at the network address.
  B. Linux machines will not generate an answer (ICMP ECHO Reply) to an ICMP ECHO request aimed at the broadcast address or at the network address.
  C. You should send a ping request with this command ping ? 192.168.5.0-255
  D. You cannot ping a broadcast address. The above scenario is wrong.
  A. Windows machines will not generate an answer (ICMP ECHO Reply) to an ICMP ECHO request aimed at the broadcast address or at the network address.

• Question 406:

  A company firewall engineer has configured a new DMZ to allow public systems to be located away from the internal network. The engineer has three security zones set:

  Untrust (Internet) (Remote network = 217.77.88.0/24)

  DMZ (DMZ) (11.12.13.0/24)

  Trust (Intranet) (192.168.0.0/24)

  The engineer wants to configure remote desktop access from a fixed IP on the remote network to a remote desktop server in the DMZ. Which rule would best fit this requirement?

  A. Permit 217.77.88.0/24 11.12.13.0/24 RDP 3389
  B. Permit 217.77.88.12 11.12.13.50 RDP 3389
  C. Permit 217.77.88.12 11.12.13.0/24 RDP 3389
  D. Permit 217.77.88.0/24 11.12.13.50 RDP 3389
  B. Permit 217.77.88.12 11.12.13.50 RDP 3389

• Question 407:

  You want to hide a secret.txt document inside c:\windows\system32\tcpip.dll kernel library using ADS streams. How will you accomplish this?

  A. copy secret.txt c:\windows\system32\tcpip.dll kernel>secret.txt
  B. copy secret.txt c:\windows\system32\tcpip.dll:secret.txt
  C. copy secret.txt c:\windows\system32\tcpip.dll |secret.txt
  D. copy secret.txt >< c:\windows\system32\tcpip.dll kernel secret.txt
  B. copy secret.txt c:\windows\system32\tcpip.dll:secret.txt

• Question 408:

  How do you defend against ARP Spoofing? Select three.

  A. Use ARPWALL system and block ARP spoofing attacks
  B. Tune IDS Sensors to look for large amount of ARP traffic on local subnets
  C. Use private VLANS
  D. Place static ARP entries on servers, workstation and routers
  A. Use ARPWALL system and block ARP spoofing attacks
  C. Use private VLANS
  D. Place static ARP entries on servers, workstation and routers

• Question 409:

  What is War Dialing?

  A. War dialing involves the use of a program in conjunction with a modem to penetrate the modem/PBX-based systems
  B. War dialing is a vulnerability scanning technique that penetrates Firewalls
  C. It is a social engineering technique that uses Phone calls to trick victims
  D. Involves IDS Scanning Fragments to bypass Internet filters and stateful Firewalls
  A. War dialing involves the use of a program in conjunction with a modem to penetrate the modem/PBX-based systems

• Question 410:

  Fake Anti-Virus, is one of the most frequently encountered and persistent threats on the web. This malware uses social engineering to lure users into infected websites with a technique called Search Engine Optimization.

  Once the Fake AV is downloaded into the user's computer, the software will scare them into believing their system is infected with threats that do not really exist, and then push users to purchase services to clean up the non-existent threats.

  The Fake AntiVirus will continue to send these annoying and intrusive alerts until a payment is made.

  

  What is the risk of installing Fake AntiVirus?

  A. Victim's Operating System versions, services running and applications installed will be published on Blogs and Forums
  B. Victim's personally identifiable information such as billing address and credit card details, may be extracted and exploited by the attacker
  C. Once infected, the computer will be unable to boot and the Trojan will attempt to format the hard disk
  D. Denial of Service attack will be launched against the infected computer crashing other machines on the connected network
  B. Victim's personally identifiable information such as billing address and credit card details, may be extracted and exploited by the attacker