EC-COUNCIL 312-50V8 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V8 Online Questions & Answers

• Question 351:

  Which regulationdefines security and privacy controls for Federal information systems and organizations?

  A. HIPAA
  B. EU Safe Harbor
  C. PCI-DSS
  D. NIST-800-53
  D. NIST-800-53

• Question 352:

  Which of the following steganography utilities exploits the nature of white space and allows the user to conceal information in these white spaces?

  A. Image Hide
  B. Snow
  C. Gif-It-Up
  D. NiceText
  B. Snow

• Question 353:

  In Buffer Overflow exploit, which of the following registers gets overwritten with return address of the exploit code?

  A. EEP
  B. ESP
  C. EAP
  D. EIP
  D. EIP

• Question 354:

  Take a look at the following attack on a Web Server using obstructed URL:

  

  How would you protect from these attacks?

  A. Configure the Web Server to deny requests involving "hex encoded" characters
  B. Create rules in IDS to alert on strange Unicode requests
  C. Use SSL authentication on Web Servers
  D. Enable Active Scripts Detection at the firewall and routers
  B. Create rules in IDS to alert on strange Unicode requests

• Question 355:

  The configuration allows a wired or wireless network interface controller to pass all trafice it receives to thecentral processing unit (CPU), rather than passing only the frames that the controller is intended to receive. Which of the following is being described?

  A. WEM
  B. Multi-cast mode
  C. Promiscuous mode
  D. Port forwarding
  B. Multi-cast mode

• Question 356:

  Within the context of Computer Security, which of the following statements describes Social Engineering best?

  A. Social Engineering is the act of publicly disclosing information
  B. Social Engineering is the means put in place by human resource to perform time accounting
  C. Social Engineering is the act of getting needed information from a person rather than breaking into a system
  D. Social Engineering is a training program within sociology studies
  C. Social Engineering is the act of getting needed information from a person rather than breaking into a system

• Question 357:

  Which of the following LM hashes represents a password of less than 8 characters?

  A. 0182BD0BD4444BF836077A718CCDF409
  B. 44EFCE164AB921CQAAD3B435B51404EE
  C. BA810DBA98995F1817306D272A9441BB
  D. CEC52EB9C8E3455DC2265B23734E0DAC
  E. B757BF5C0D87772FAAD3B435B51404EE
  F. E52CAC67419A9A224A3B108F3FA6CB6D
  B. 44EFCE164AB921CQAAD3B435B51404EE
  E. B757BF5C0D87772FAAD3B435B51404EE

• Question 358:

  To reduce the attack surface of a system, administrators should perform which of the following processes to remove unnecessary software, services, and insecure configuration settings?

  A. Harvesting
  B. Windowing
  C. Hardening
  D. Stealthing
  C. Hardening

• Question 359:

  If you receive a RST packet while doing an ACK scan, it indicates that the port is open.

  A. True
  B. False
  A. True

• Question 360:

  Choose one of the following pseudo codes to describe this statement:

  "If we have written 200 characters to the buffer variable, the stack should stop because it cannot hold any more data."

  A. If (I > 200) then exit (1)
  B. If (I < 200) then exit (1)
  C. If (I
  D. If (I >= 200) then exit (1)
  D. If (I >= 200) then exit (1)