EC-COUNCIL 312-50V8 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V8 Online Questions & Answers

• Question 861:

  Bob is doing a password assessment for one of his clients. Bob suspects that security policies are not in place. He also suspects that weak passwords are probably the norm throughout the company he is evaluating. Bob is familiar with password weaknesses and key loggers.

  Which of the following options best represents the means that Bob can adopt to retrieve passwords from his clients hosts and servers?

  A. Hardware,Software,and Sniffing.
  B. Hardware and Software Keyloggers.
  C. Passwords are always best obtained using Hardware key loggers.
  D. Software only,they are the most effective.
  A. Hardware,Software,and Sniffing.

• Question 862:

  If a competitor wants to cause damage to your organization, steal critical secrets, or put you out of business, they just have to find a job opening, prepare someone to pass the interview, have that person hired, and they will be in the organization.

  

  How would you prevent such type of attacks?

  A. It is impossible to block these attacks
  B. Hire the people through third-party job agencies who will vet them for you
  C. Conduct thorough background checks before you engage them
  D. Investigate their social networking profiles
  C. Conduct thorough background checks before you engage them

• Question 863:

  LAN Manager Passwords are concatenated to 14 bytes, and split in half. The two halves are hashed individually. If the password is 7 characters or less, than the second half of the hash is always:

  A. 0xAAD3B435B51404EE
  B. 0xAAD3B435B51404AA
  C. 0xAAD3B435B51404BB
  D. 0xAAD3B435B51404CC
  A. 0xAAD3B435B51404EE

• Question 864:

  Which of the following statements best describes the term Vulnerability?

  A. A weakness or error that can lead to a compromise
  B. An agent that has the potential to take advantage of a weakness
  C. An action or event that might prejudice security
  D. The loss potential of a threat.
  A. A weakness or error that can lead to a compromise

• Question 865:

  A Trojan horse is a destructive program that masquerades as a benign application. The software initially appears to perform a desirable function for the user prior to installation and/or execution, but in addition to the expected function steals information or harms the system.

  

  The challenge for an attacker is to send a convincing file attachment to the victim, which gets easily executed on the victim machine without raising any suspicion. Today's end users are quite knowledgeable about malwares and viruses. Instead of sending games and fun executables, Hackers today are quite successful in spreading the Trojans using Rogue security software.

  What is Rogue security software?

  A. A flash file extension to Firefox that gets automatically installed when a victim visits rogue software disabling websites
  B. A Fake AV program that claims to rid a computer of malware,but instead installs spyware or other malware onto the computer. This kind of software is known as rogue security software.
  C. Rogue security software is based on social engineering technique in which the attackers lures victim to visit spear phishing websites
  D. This software disables firewalls and establishes reverse connecting tunnel between the victim's machine and that of the attacker
  B. A Fake AV program that claims to rid a computer of malware,but instead installs spyware or other malware onto the computer. This kind of software is known as rogue security software.

• Question 866:

  Which of the following settings enables Nessus to detect when it is sending too many packets and the network pipe is approaching capacity?

  A. Netstat WMI Scan
  B. Silent Dependencies
  C. Consider unscanned ports as closed
  D. Reduce parallel connections on congestion
  D. Reduce parallel connections on congestion

• Question 867:

  Basically, there are two approaches to network intrusion detection: signature detection, and anomaly detection. The signature detection approach utilizes well- known signatures for network traffic to identify potentially malicious traffic. The anomaly detection approach utilizes a previous history of network traffic to search for patterns that are abnormal, which would indicate an intrusion.

  How can an attacker disguise his buffer overflow attack signature such that there is a greater probability of his attack going undetected by the IDS?

  A. He can use a shellcode that will perform a reverse telnet back to his machine
  B. He can use a dynamic return address to overwrite the correct value in the target machine computer memory
  C. He can chain NOOP instructions into a NOOP "sled" that advances the processor's instruction pointer to a random place of choice
  D. He can use polymorphic shell code-with a tool such as ADMmutate - to change the signature of his exploit as seen by a network IDS
  D. He can use polymorphic shell code-with a tool such as ADMmutate - to change the signature of his exploit as seen by a network IDS

• Question 868:

  William has received a Chess game from someone in his computer programming class through email. William does not really know the person who sent the game very well, but decides to install the game anyway because he really likes Chess.

  

  After William installs the game, he plays it for a couple of hours. The next day, William plays the Chess game again and notices that his machine has begun to slow down. He brings up his Task Manager and sees the following programs running:

  

  What has William just installed?

  A. Zombie Zapper (ZoZ)
  B. Remote Access Trojan (RAT)
  C. Bot IRC Tunnel (BIT)
  D. Root Digger (RD)
  B. Remote Access Trojan (RAT)

• Question 869:

  Study the log below and identify the scan type.

  

  A. nmap -sR 192.168.1.10
  B. nmap -sS 192.168.1.10
  C. nmap -sV 192.168.1.10
  D. nmap -sO -T 192.168.1.10
  D. nmap -sO -T 192.168.1.10

• Question 870:

  Which of the following represents the initial two commands that an IRC client sends to join an IRC network?

  A. USER,NICK
  B. LOGIN,NICK
  C. USER,PASS
  D. LOGIN,USER
  A. USER,NICK