EC-COUNCIL 312-50V8 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V8 Online Questions & Answers

• Question 71:

  What type of attack is shown here?

  

  A. Bandwidth exhaust Attack
  B. Denial of Service Attack
  C. Cluster Service Attack
  D. Distributed Denial of Service Attack
  D. Distributed Denial of Service Attack

• Question 72:

  What is the key advantage of Session Hijacking?

  A. It can be easily done and does not require sophisticated skills.
  B. You can take advantage of an authenticated connection.
  C. You can successfully predict the sequence number generation.
  D. You cannot be traced in case the hijack is detected.
  B. You can take advantage of an authenticated connection.

• Question 73:

  In the OSI model, where does PPTP encryption take place?

  A. Transport layer
  B. Application layer
  C. Data link layer
  D. Network layer
  C. Data link layer

• Question 74:

  While investigating a claim of a user downloading illegal material, the investigator goes through the files on the suspect's workstation. He comes across a file that is just called "file.txt" but when he opens it, he finds the following:

  

  What can he infer from this file?

  A. A picture that has been renamed with a .txt extension
  B. An encrypted file
  C. An encoded file
  D. A buffer overflow
  D. A buffer overflow

• Question 75:

  Bob wants to prevent attackers from sniffing his passwords on the wired network.

  Which of the following lists the best options?

  A. RSA,LSA,POP
  B. SSID,WEP,Kerberos
  C. SMB,SMTP,Smart card
  D. Kerberos,Smart card,Stanford SRP
  D. Kerberos,Smart card,Stanford SRP

• Question 76:

  Lauren is performing a network audit for her entire company. The entire network is comprised of around 500 computers. Lauren starts an ICMP ping sweep by sending one IP packet to the broadcast address of the network, but only receives

  responses from around five hosts.

  Why did this ping sweep only produce a few responses?

  A. Only Windows systems will reply to this scan.
  B. A switched network will not respond to packets sent to the broadcast address.
  C. Only Linux and Unix-like (Non-Windows) systems will reply to this scan.
  D. Only servers will reply to this scan.
  C. Only Linux and Unix-like (Non-Windows) systems will reply to this scan.

• Question 77:

  A hacker is attempting to see which IP addresses are currently active on a network. Which NMAP switch would the hacker use?

  A. -sO
  B. -sP
  C. -sS
  D. -sU
  B. -sP

• Question 78:

  Which of the following are valid types of rootkits? (Choose three.)

  A. Hypervisor level
  B. Network level
  C. Kernel level
  D. Application level
  E. Physical level
  F. Data access level
  A. Hypervisor level
  C. Kernel level
  D. Application level

• Question 79:

  _________ is a tool that can hide processes from the process list, can hide files, registry entries, and intercept keystrokes.

  A. Trojan
  B. RootKit
  C. DoS tool
  D. Scanner
  E. Backdoor
  B. RootKit

• Question 80:

  Your company was hired by a small healthcare provider to perform a technical assessment on the network. What is the best approach for discovering vulnerabilities on a Windows-based computer?

  A. Use the built-in Windows Update tool
  B. Create a disk imageof a clean Windows installation
  C. Check MITRE.org for the latest list of CVE findings
  D. Used a scan tool like Nessus
  D. Used a scan tool like Nessus