EC-COUNCIL 312-50V8 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V8 Online Questions & Answers

• Question 771:

  Finding tools to run dictionary and brute forcing attacks against FTP and Web servers is an easy task for hackers. They use tools such as arhontus or brutus to break into remote servers.

  

  A command such as this, will attack a given 10.0.0.34 FTP and Telnet servers simultaneously with a list of passwords and a single login namE. linksys. Many FTP- specific password-guessing tools are also available from major security sites. What defensive measures will you take to protect your network from these attacks?

  A. Never leave a default password
  B. Never use a password that can be found in a dictionary
  C. Never use a password related to your hobbies,pets,relatives,or date of birth.
  D. Use a word that has more than 21 characters from a dictionary as the password
  E. Never use a password related to the hostname,domain name,or anything else that can be found with whois
  A. Never leave a default password
  B. Never use a password that can be found in a dictionary
  C. Never use a password related to your hobbies,pets,relatives,or date of birth.
  E. Never use a password related to the hostname,domain name,or anything else that can be found with whois

• Question 772:

  You are footprinting an organization and gathering competitive intelligence. You visit the company's website for contact information and telephone numbers but do not find them listed there. You know they had the entire staff directory listed on their website 12 months ago but now it is not there.

  Is there any way you can retrieve information from a website that is outdated?

  A. Visit Google's search engine and view the cached copy
  B. Crawl the entire website and store them into your computer
  C. Visit Archive.org web site to retrieve the Internet archive of the company's website
  D. Visit the company's partners and customers website for this information
  C. Visit Archive.org web site to retrieve the Internet archive of the company's website

• Question 773:

  In TCP communications there are 8 flags; FIN, SYN, RST, PSH, ACK, URG, ECE, CWR. These flags have decimal numbers assigned to them: FIN = 1 SYN = 2 RST = 4 PSH = 8 ACK = 16 URG = 32 ECE = 64 CWR = 128 Jason is the security administrator of ASPEN Communications. He analyzes some traffic using Wireshark and has enabled the following filters.

  

  What is Jason trying to accomplish here?

  A. SYN,FIN,URG and PSH
  B. SYN,SYN/ACK,ACK
  C. RST,PSH/URG,FIN
  D. ACK,ACK,SYN,URG
  B. SYN,SYN/ACK,ACK

• Question 774:

  In the context of password security, a simple dictionary attack involves loading a dictionary file (a text file full of dictionary words) into a cracking application such as L0phtCrack or John the Ripper, and running it against user accounts located by the application. The larger the word and word fragment selection, the more effective the dictionary attack is. The brute force method is the most inclusive, although slow. It usually tries every possible letter and number combination in its automated exploration.

  If you would use both brute force and dictionary methods combined together to have variation of words, what would you call such an attack?

  A. Full Blown
  B. Thorough
  C. Hybrid
  D. BruteDics
  C. Hybrid

• Question 775:

  WPA2 uses AES for wireless data encryption at which of the following encryption levels?

  A. 64 bit and CCMP
  B. 128 bit and CRC
  C. 128 bit and CCMP
  D. 128 bit and TKIP
  C. 128 bit and CCMP

• Question 776:

  John is using a special tool on his Linux platform that has a signature database and is therefore able to detect hundred of vulnerabilities in UNIX, Windows, and commonly-used web CGI scripts. Additionally, the database detects DDoS zombies and Trojans.

  What would be the name of this multifunctional tool?

  A. nmap
  B. hping
  C. nessus
  D. make
  C. nessus

• Question 777:

  What is the following command used for?

  net use \targetipc$ "" /u:""

  A. Grabbing the etc/passwd file
  B. Grabbing the SAM
  C. Connecting to a Linux computer through Samba.
  D. This command is used to connect as a null session
  E. Enumeration of Cisco routers
  D. This command is used to connect as a null session

• Question 778:

  A penetration tester is conducting a port scan on a specific host. The tester found several ports opened that were confusing inconcluding the Operating System (OS) version installed. Considering the NMAP result below, which of the follow is likely to be installed on the target machine by the OS? Starting NMAP 5.21 at 2011-03-15 11:06 NMAP scan report for 172.16.40.65 Host is up (1.00s latency). Not shown: 993 closed ports PORT STATE SERVICE 21/tcp open ftp 23/tcp open telnet 80 /tcp open http 139/tcp open netbios-ssn 515/tcp open 631/tec open ipp 9100/tcp open MAC Address: 00:00:48:0D:EE:8

  A. The host is likely a printer.
  B. The host is likely a router.
  C. The host is likely a Linux machine.
  D. The host is likely a Windows machine.
  A. The host is likely a printer.

• Question 779:

  Which of the following attacks takes best advantage of an existing authenticated connection?

  A. Spoofing
  B. Session Hijacking
  C. Password Sniffing
  D. Password Guessing
  B. Session Hijacking

• Question 780:

  You have successfully gained access to your client's internal network and successfully comprised a linux server which is part of the internal IP network. You want to know which Microsoft Windows workstation have the sharing enabled. Which port would you see listeningon these Windows machines in the network?

  A. 1443
  B. 3389
  C. 161
  D. 445
  D. 445