EC-COUNCIL 312-50V7 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V7 Online Questions & Answers

• Question 71:

  Which of the following describes the characteristics of a Boot Sector Virus?

  A. Moves the MBR to another location on the RAM and copies itself to the original location of the MBR
  B. Moves the MBR to another location on the hard disk and copies itself to the original location of the MBR
  C. Modifies directory table entries so that directory entries point to the virus code instead of the actual program
  D. Overwrites the original MBR and only executes the new virus code
  B. Moves the MBR to another location on the hard disk and copies itself to the original location of the MBR

• Question 72:

  Bill is a security analyst for his company. All the switches used in the company's office are Cisco switches. Bill wants to make sure all switches are safe from ARP poisoning. How can Bill accomplish this?

  A. Bill can use the command: ip dhcp snooping.
  B. Bill can use the command: no ip snoop.
  C. Bill could use the command: ip arp no flood.
  D. He could use the command: ip arp no snoop.
  A. Bill can use the command: ip dhcp snooping.

• Question 73:

  What is a sniffing performed on a switched network called?

  A. Spoofed sniffing
  B. Passive sniffing
  C. Direct sniffing
  D. Active sniffing
  D. Active sniffing

• Question 74:

  A bank stores and processes sensitive privacy information related to home loans. However, auditing has never been enabled on the system. What is the first step that the bank should take before enabling the audit feature?

  A. Perform a vulnerability scan of the system.
  B. Determine the impact of enabling the audit feature.
  C. Perform a cost/benefit analysis of the audit feature.
  D. Allocate funds for staffing of audit log review.
  B. Determine the impact of enabling the audit feature.

• Question 75:

  A circuit level gateway works at which of the following layers of the OSI Model?

  A. Layer 5 - Application
  B. Layer 4 TCP
  C. Layer 3 Internet protocol
  D. Layer 2 Data link
  B. Layer 4 TCP

• Question 76:

  Which statement is TRUE regarding network firewalls preventing Web Application attacks?

  A. Network firewalls can prevent attacks because they can detect malicious HTTP traffic.
  B. Network firewalls cannot prevent attacks because ports 80 and 443 must be opened.
  C. Network firewalls can prevent attacks if they are properly configured.
  D. Network firewalls cannot prevent attacks because they are too complex to configure.
  B. Network firewalls cannot prevent attacks because ports 80 and 443 must be opened.

• Question 77:

  John the hacker is sniffing the network to inject ARP packets. He injects broadcast frames onto the wire to conduct MiTM attack. What is the destination MAC address of a broadcast frame?

  A. 0xFFFFFFFFFFFF
  B. 0xDDDDDDDDDDDD
  C. 0xAAAAAAAAAAAA
  D. 0xBBBBBBBBBBBB
  A. 0xFFFFFFFFFFFF

• Question 78:

  An engineer is learning to write exploits in C++ and is using the exploit tool Backtrack. The engineer wants to compile the newest C++ exploit and name it calc.exe. Which command would the engineer use to accomplish this?

  A. g++ hackersExploit.cpp -o calc.exe
  B. g++ hackersExploit.py -o calc.exe
  C. g++ -i hackersExploit.pl -o calc.exe
  D. g++ --compile i hackersExploit.cpp -o calc.exe
  A. g++ hackersExploit.cpp -o calc.exe

• Question 79:

  Fingerprinting VPN firewalls is possible with which of the following tools?

  A. Angry IP
  B. Nikto
  C. Ike-scan
  D. Arp-scan
  C. Ike-scan

• Question 80:

  Which type of hacker represents the highest risk to your network?

  A. black hat hackers
  B. grey hat hackers
  C. disgruntled employees
  D. script kiddies
  C. disgruntled employees