최신 312-50v10 무료덤프 - EC-COUNCIL Certified Ethical Hacker Exam (CEH v10)

문제1

Which type of scan is used on the eye to measure the layer of blood vessels?

A. Signature kinetics scan

B. Facial recognition scan

C. Retinal scan

D. Iris scan

정답: C

문제2

Which of the following techniques will identify if computer files have been changed?

A. Integrity checking hashes

B. Network sniffing

C. Firewall alerts

D. Permission sets

정답: A

문제3

An attacker, using a rogue wireless AP, performed an MITM attack and injected an HTML code to embed a malicious applet in all HTTP connections.
When users accessed any page, the applet ran and exploited many machines.
Which one of the following tools the hacker probably used to inject HTML code?

A. Wireshark

B. Ettercap

C. Aircrack-ng

D. Tcpdump

정답: B

문제4

Identify the correct terminology that defines the above statement.

A. Vulnerability Scanning

B. Penetration Testing

C. Security Policy Implementation

D. Designing Network Security

정답: B

문제5

It is an entity or event with the potential to adversely impact a system through unauthorized access, destruction, disclosure, denial of service or modification of data.
Which of the following terms best matches the definition?

A. Risk

B. Threat

C. Vulnerability

D. Attack

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제6

Which of the following is designed to verify and authenticate individuals taking part in a data exchange within an enterprise?

A. Single-Sign On

B. SOA

C. PKI

D. Biometrics

정답: C

문제7

A security administrator notices that the log file of the company's webserver contains suspicious entries:

Based on source code analysis, the analyst concludes that the login.php script is vulnerable to

A. LDAP injection.

B. directory traversal.

C. command injection.

D. SQL injection.

정답: D

문제8

Your company was hired by a small healthcare provider to perform a technical assessment on the network.
What is the best approach for discovering vulnerabilities on a Windows-based computer?

A. Use a scan tool like Nessus

B. Check MITRE.org for the latest list of CVE findings

C. Create a disk image of a clean Windows installation

D. Use the built-in Windows Update tool

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제9

What does the following command in netcat do?
nc -l -u -p55555 < /etc/passwd

A. logs the incoming connections to /etc/passwd file

B. deletes the /etc/passwd file when connected to the UDP port 55555

C. grabs the /etc/passwd file when connected to UDP port 55555

D. loads the /etc/passwd file to the UDP port 55555

정답: C

문제10

Which of these options is the most secure procedure for storing backup tapes?

A. On a different floor in the same building

B. In a cool dry environment

C. Inside the data center for faster retrieval in a fireproof safe

D. In a climate controlled facility offsite

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제11

A server has been infected by a certain type of Trojan. The hacker intended to utilize it to send and host junk mails. What type of Trojan did the hacker use?

A. Turtle Trojans

B. Ransomware Trojans

C. Banking Trojans

D. Botnet Trojan

정답: D

문제12

Session splicing is an IDS evasion technique in which an attacker delivers data in multiple, smallsized packets to the target computer, making it very difficult for an IDS to detect the attack signatures.
Which tool can be used to perform session splicing attacks?

A. tcpsplice

B. Hydra

C. Whisker

D. Burp

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제13

You are working as a Security Analyst in a company XYZ that owns the whole subnet range of 23.0.0.0/8 and
192.168.0.0/8.
While monitoring the data, you find a high number of outbound connections. You see that IP's owned by XYZ (Internal) and private IP's are communicating to a Single Public IP. Therefore, the Internal IP's are sending data to the Public IP.
After further analysis, you find out that this Public IP is a blacklisted IP, and the internal communicating devices are compromised.
What kind of attack does the above scenario depict?

A. Rootkit Attack

B. Advanced Persistent Threats

C. Spear Phishing Attack

D. Botnet Attack

정답: D

문제14

What does the -oX flag do in an Nmap scan?

A. Perform an Xmas scan

B. Output the results in truncated format to the screen

C. Perform an express scan

D. Output the results in XML format to a file

정답: D

문제15

What hacking attack is challenge/response authentication used to prevent?

A. Password cracking attacks

B. Replay attacks

C. Session hijacking attacks

D. Scanning attacks

정답: B

문제16

Analyst is investigating proxy logs and found out that one of the internal user visited website storing suspicious Java scripts. After opening one of them, he noticed that it is very hard to understand the code and that all codes differ from the typical Java script. What is the name of this technique to hide the code and extend analysis time?

A. Obfuscation

B. Code encoding

C. Encryption

D. Steganography

정답: C

문제17

Ricardo wants to send secret messages to a competitor company. To secure these messages, he uses a technique of hiding a secret message within an ordinary message. The technique provides 'security through obscurity'.
What technique is Ricardo using?

A. Encryption

B. Steganography

C. Public-key cryptography

D. RSA algorithm

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제18

OpenSSL on Linux servers includes a command line tool for testing TLS. What is the name of the tool and the correct syntax to connect to a web server?

A. openssl_client -connect www.website.com:443

B. openssl s_client -site www.website.com:443

C. openssl_client -site www.website.com:443

D. openssl s_client -connect www.website.com:443

정답: D

최신 312-50v10 무료덤프 - EC-COUNCIL Certified Ethical Hacker Exam (CEH v10)

우리와 연락하기

유용한 링크

최신 업데이트