EC-COUNCIL 312-50V8 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V8 Online Questions & Answers

• Question 91:

  What are the three types of authentication?

  A. Something you: know,remember,prove
  B. Something you: have,know,are
  C. Something you: show,prove,are
  D. Something you: show,have,prove
  B. Something you: have,know,are

• Question 92:

  You have chosen a 22 character word from the dictionary as your password. How long will it take to crack the password by an attacker?

  A. 16 million years
  B. 5 minutes
  C. 23 days
  D. 200 years
  B. 5 minutes

• Question 93:

  What is a Trojan Horse?

  A. A malicious program that captures your username and password
  B. Malicious code masquerading as or replacing legitimate code
  C. An unauthorized user who gains access to your user database and adds themselves as a user
  D. A server that is to be sacrificed to all hacking attempts in order to log and monitor the hacking activity
  B. Malicious code masquerading as or replacing legitimate code

• Question 94:

  What is one thing a tester can do to ensure that the software is trusted and is not changing or tampering with critical data on the back end of a system it is loaded on?

  A. Proper testing B. Secure coding principles
  C. Systems security and architecture review
  D. Analysis of interrupts within the software
  D. Analysis of interrupts within the software

• Question 95:

  You are gathering competitive intelligence on XYZ.com. You notice that they have jobs listed on a few Internet job-hunting sites. There are two job postings for network and system administrators. How can this help you in footprint the organization?

  A. The IP range used by the target network
  B. An understanding of the number of employees in the company
  C. How strong the corporate security policy is
  D. The types of operating systems and applications being used.
  D. The types of operating systems and applications being used.

• Question 96:

  You run nmap port Scan on 10.0.0.5 and attempt to gain banner/server information from services running on ports 21, 110 and 123. Here is the output of your scan results:

  

  Which of the following nmap command did you run?

  A. nmap -A -sV -p21,110,123 10.0.0.5
  B. nmap -F -sV -p21,110,123 10.0.0.5
  C. nmap -O -sV -p21,110,123 10.0.0.5
  D. nmap -T -sV -p21,110,123 10.0.0.5
  C. nmap -O -sV -p21,110,123 10.0.0.5

• Question 97:

  Attackers send an ACK probe packet with random sequence number, no response means port is filtered (Stateful firewall is present) and RST response means the port is not filtered. What type of Port Scanning is this?

  A. RST flag scanning
  B. FIN flag scanning
  C. SYN flag scanning
  D. ACK flag scanning
  D. ACK flag scanning

• Question 98:

  Which cipher encrypts the plain text digit (bit or byte) one by one?

  A. Classical cipher
  B. Block cipher
  C. Modern cipher
  D. Stream cipher
  D. Stream cipher

• Question 99:

  If you perform a port scan with a TCP ACK packet, what should an OPEN port return?

  A. RST
  B. No Reply
  C. SYN/ACK
  D. FIN
  A. RST

• Question 100:

  An Intrusion Detection System(IDS) has alerted the network administrator to a possibly malicious sequence of packets went to a Web server in the network's external DMZ. The packet traffic was captured by the IDS and saved to a PCAP file. What type of network tool can be used to determine if these packets are genuinely malicious or simply a false positive?

  A. Protocol analyzer
  B. Intrusion Prevention System (IPS)
  C. Vulnerability scanner
  D. Network sniffer
  B. Intrusion Prevention System (IPS)