최신 312-50v8 무료덤프 - EC-COUNCIL Certified Ethical Hacker v8

문제1

This packet was taken from a packet sniffer that monitors a Web server.

This packet was originally 1514 bytes long, but only the first 512 bytes are shown here. This is the standard hexdump representation of a network packet, before being decoded. A hexdump has three columns: the offset of each line, the hexadecimal data, and the ASCII equivalent. This packet contains a 14-byte Ethernet header, a 20-byte IP header, a 20-byte TCP header, an HTTP header ending in two line-feeds (0D 0A 0D 0A) and then the data. By examining the packet identify the name and version of the Web server?

A. Apache 1.2

B. IIS 4.0

C. Linux WServer 2.3

D. IIS 5.0

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제2

_________ ensures that the enforcement of organizational security policy does not rely on voluntary web application user compliance. It secures information by assigning sensitivity labels on information and comparing this to the level of security a user is operating at.

A. Discretionary Access Control

B. Mandatory Access Control

C. Authorized Access Control

D. Role-based Access Control

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제3

You are attempting to crack LM Manager hashed from Windows 2000 SAM file. You will be using LM Brute force hacking tool for decryption.
What encryption algorithm will you be decrypting?

A. MD4

B. DES

C. SSL

D. SHA

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제4

Which of the following Nmap commands would be used to perform a stack fingerprinting?

A. Nmap -sS -0p target

B. Nmap -hU -Q<host(s.>

C. Nmap -sT -p <host(s.>

D. Nmap -O -p80 <host(s.>

E. Nmap -u -o -w2 <host>

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제5

To reduce the attack surface of a system, administrators should perform which of the following processes to remove unnecessary software, services, and insecure configuration settings?

A. Harvesting

B. Stealthing

C. Hardening

D. Windowing

정답: C

문제6

Bob, an Administrator at XYZ was furious when he discovered that his buddy Trent, has launched a session hijack attack against his network, and sniffed on his communication, including administrative tasks suck as configuring routers, firewalls, IDS, via Telnet.
Bob, being an unhappy administrator, seeks your help to assist him in ensuring that attackers such as Trent will not be able to launch a session hijack in XYZ.
Based on the above scenario, please choose which would be your corrective measurement actions. (Choose two)

A. Monitor for CRP caches,by using IDS products.

B. Implement FAT32 filesystem for faster indexing and improved performance.

C. Configure the appropriate spoof rules on gateways (internal and external).

D. Use encrypted protocols,like those found in the OpenSSH suite.

정답: C,D

설명: (DumpTOP 회원만 볼 수 있음)

문제7

Which of the following guidelines or standards is associated with the credit card industry?

A. Control Objectives for Information and Related Technology (COBIT)

B. Payment Card Industry Data Security Standards (PCI DSS)

C. Health Insurance Portability and Accountability Act (HIPAA)

D. Sarbanes-Oxley Act (SOX)

정답: B

문제8

You want to carry out session hijacking on a remote server. The server and the client are communicating via TCP after a successful TCP three way handshake. The server has just received packet #120 from the client. The client has a receive window of 200 and the server has a receive window of 250.
Within what range of sequence numbers should a packet, sent by the client fall in order to be accepted by the server?

A. 121-371

B. 200-250

C. 121-231

D. 120-370

E. 120-321

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제9

Ursula is a college student at a University in Amsterdam. Ursula originally went to college to study engineering but later changed to marine biology after spending a month at sea with her friends. These friends frequently go out to sea to follow and harass fishing fleets that illegally fish in foreign waters. Ursula eventually wants to put companies practicing illegal fishing out of business. Ursula decides to hack into the parent company's computers and destroy critical data knowing fully well that, if caught, she probably would be sent to jail for a very long time. What would Ursula be considered?

A. Ursula would be considered a black hat.

B. She would be considered a suicide hacker.

C. She would be called a cracker.

D. Ursula would be considered a gray hat since she is performing an act against illegal activities.

정답: B

문제10

Perimeter testing means determining exactly what your firewall blocks and what it allows. To conduct a good test, you can spoof source IP addresses and source ports. Which of the following command results in packets that will appear to originate from the system at 10.8.8.8? Such a packet is useful for determining whether the firewall is allowing random packets in or out of your network.

A. hping3 -O 10.8.8.8 -S server -c 2 -p 80

B. hping3 -T 10.8.8.8 -S netbios -c 2 -p 80

C. hping3 -Y 10.8.8.8 -S windows -c 2 -p 80

D. hping3 -a 10.8.8.8 -S springfield -c 2 -p 80

정답: D

문제11

Wayne is the senior security analyst for his company. Wayne is examining some traffic logs on a server and came across some inconsistencies. Wayne finds some IP packets from a computer purporting to be on the internal network. The packets originate from
192.168.12.35 with a TTL of 15. The server replied to this computer and received a response from 192.168.12.35 with a TTL of 21. What can Wayne infer from this traffic log?

A. The TTL of 21 means that the client computer is on wireless.

B. The client computer at 192.168.12.35 is a zombie computer.

C. The traffic from 192.168.12.25 is from a Linux computer.

D. The initial traffic from 192.168.12.35 was being spoofed.

정답: D

문제12

The network administrator at Spears Technology, Inc has configured the default gateway Cisco router's access-list as below:

You are hired to conduct security testing on their network. You successfully brute-force the SNMP community string using a SNMP crack tool. The access-list configured at the router prevents you from establishing a successful connection. You want to retrieve the Cisco configuration from the router. How would you proceed?

A. Use the Cisco's TFTP default password to connect and download the configuration file

B. Run a network sniffer and capture the returned traffic with the configuration file from the router

C. Send a customized SNMP set request with a spoofed source IP address in the range 192.168.1.0

D. Run Generic Routing Encapsulation (GRE) tunneling protocol from your computer to the router masking your IP address

정답: B,C

문제13

As a securing consultant, what are some of the things you would recommend to a company to ensure DNS security? Select the best answers.

A. Restrict Zone transfers

B. Harden DNS servers

C. Use split-horizon operation for DNS servers

D. Have subnet diversity between DNS servers

E. Use the same machines for DNS and other applications

정답: A,B,C,D

설명: (DumpTOP 회원만 볼 수 있음)

문제14

Which of the following snort rules look for FTP root login attempts?

A. alert tcp -> any port 21 (message:"user root";)

B. alert tcp any any -> any any 21 (content:"user root";)

C. alert tcp -> any port 21 (msg:"user root";)

D. alert ftp -> ftp (content:"user password root";)

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

최신 312-50v8 무료덤프 - EC-COUNCIL Certified Ethical Hacker v8

우리와 연락하기

유용한 링크

최신 업데이트