최신 EC0-350 무료덤프 - EC-COUNCIL Ethical hacking and countermeasures

문제1

LM authentication is not as strong as Windows NT authentication so you may want to disable its use, because an attacker eavesdropping on network traffic will attack the weaker protocol. A successful attack can compromise the user's password. How do you disable LM authentication in Windows XP?

A. Download and install LMSHUT.EXE tool from Microsoft website

B. Stop the LM service in Windows XP

C. Disable LM authentication in the registry

D. Disable LSASS service in Windows XP

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제2

Which system consists of a publicly available set of databases that contain domain name registration contact information?

A. IANA

B. WHOIS

C. CAPTCHA

D. IETF

정답: B

문제3

During a penetration test, a tester finds a target that is running MS SQL 2000 with default credentials. The tester assumes that the service is running with Local System account. How can this weakness be exploited to access the system?

A. Invoking the stored procedure xp_cmdshell to spawn a Windows command shell

B. Invoking the stored procedure xp_shell to spawn a Windows command shell

C. Invoking the stored procedure cmd_shell to spawn a Windows command shell

D. Using the Metasploit psexec module setting the SA / Admin credential

정답: A

문제4

What port scanning method involves sending spoofed packets to a target system and then looking for adjustments to the IPID on a zombie system?

A. UDP Scanning

B. Stealth Scanning

C. Idle Scanning

D. Blind Port Scanning

E. Bounce Scanning

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제5

What is GINA?

A. Gateway Interface Network Application

B. Graphical Identification and Authentication DLL

C. GUI Installed Network Application CLASS

D. Global Internet National Authority (G-USA)

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제6

To see how some of the hosts on your network react, Winston sends out SYN packets to an IP range. A number of IPs respond with a SYN/ACK response. Before the connection is established he sends RST packets to those hosts to stop the session. Winston has done this to see how his intrusion detection system will log the traffic. What type of scan is Winston attempting here?

A. This type of scan he is using is called a NULL scan.

B. He is using a half-open scan to find live hosts on your network.

C. Winston is attempting to find live hosts on your company's network by using an XMAS scan.

D. He is utilizing a SYN scan to find live hosts that are listening on your network.

정답: B

문제7

John is using a special tool on his Linux platform that has a database containing signatures to be able to detect hundreds of vulnerabilities in UNIX, Windows, and commonly used web CGI/ASPX scripts. Moreover, the database detects DDoS zombies and Trojans as well. What would be the name of this tool?

A. nessus

B. make

C. nmap

D. hping2

정답: A

문제8

NTP allows you to set the clocks on your systems very accurately, to within 100ms and sometimes-even 10ms. Knowing the exact time is extremely important for enterprise security. Various security protocols depend on an accurate source of time information in order to prevent "playback" attacks. These protocols tag their communications with the current time, to prevent attackers from replaying the same communications, e.g., a login/password interaction or even an entire communication, at a later date. One can circumvent this tagging, if the clock can be set back to the time the communication was recorded. An attacker attempts to try corrupting the clocks on devices on your network. You run Wireshark to detect the NTP traffic to see if there are any irregularities on the network. What port number you should enable in Wireshark display filter to view NTP packets?

A. TCP Port 126

B. TCP Port 124

C. UDP Port 123

D. UDP Port 125

정답: C

문제9

Which of the following business challenges could be solved by using a vulnerability scanner?

A. Auditors want to discover if all systems are following a standard naming convention.

B. There is a monthly requirement to test corporate compliance with host application usage and security policies.

C. A web server was compromised and management needs to know if any further systems were compromised.

D. There is an emergency need to remove administrator access from multiple machines for an employee that quit.

정답: B

문제10

You want to know whether a packet filter is in front of 192.168.1.10. Pings to 192.168.1.10 don't get answered. A basic nmap scan of 192.168.1.10 seems to hang without returning any information. What should you do next?

A. Run nmap XMAS scan against 192.168.1.10

B. The firewall is blocking all the scans to 192.168.1.10

C. Run NULL TCP hping2 against 192.168.1.10

D. Use NetScan Tools Pro to conduct the scan

정답: C

문제11

_________ ensures that the enforcement of organizational security policy does not rely on voluntary web application user compliance. It secures information by assigning sensitivity labels on information and comparing this to the level of security a user is operating at.

A. Discretionary Access Control

B. Mandatory Access Control

C. Authorized Access Control

D. Role-based Access Control

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제12

What is the advantage in encrypting the communication between the agent and the monitor in an Intrusion Detection System?

A. An intruder could intercept and delete data or alerts and the intrusion can go undetected

B. Alerts are sent to the monitor when a potential intrusion is detected

C. The monitor will know if counterfeit messages are being generated because they will not be encrypted

D. Encryption of agent communications will conceal the presence of the agents

정답: C

문제13

You have retrieved the raw hash values from a Windows 2000 Domain Controller. Using social engineering, you come to know that they are enforcing strong passwords. You understand that all users are required to use passwords that are at least 8 characters in length. All passwords must also use 3 of the 4 following categories: lower case letters, capital letters, numbers and special characters.
With your existing knowledge of users, likely user account names and the possibility that they will choose the easiest passwords possible, what would be the fastest type of password cracking attack you can run against these hash values and still get results?

A. Dictionary Attack

B. Online Attack

C. Brute Force Attack

D. Hybrid Attack

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제14

E-mail scams and mail fraud are regulated by which of the following?

A. 18 U .S .C . par. 1362 Communication Lines, Stations, or Systems

B. 18 U .S .C . par. 1030 Fraud and Related activity in connection with Computers

C. 18 U .S .C . par. 1029 Fraud and Related activity in connection with Access Devices

D. 18 U .S .C . par. 2510 Wire and Electronic Communications Interception and Interception of Oral Communication

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제15

You are writing security policy that hardens and prevents Footprinting attempt by Hackers. Which of the following countermeasures will NOT be effective against this attack?

A. Lock the ports with suitable Firewall configuration

B. Monitor every employee computer with Spy cameras, keyloggers and spy on them

C. Prevent search engines from caching a Webpage and use anonymous registration services

D. Evaluate the information before publishing it on the Website/Intranet

E. Configure Web Servers to avoid information leakage and disable unwanted protocols

F. Disable directory and use split-DNS

G. Perform Footprinting techniques and remove any sensitive information found on DMZ sites

H. Use an IDS that can be configured to refuse suspicious traffic and pick up Footprinting patterns

I. Configure routers to restrict the responses to Footprinting requests

정답: B

문제16

This method is used to determine the Operating system and version running on a remote target system. What is it called?

A. Identification Scanning

B. Service Degradation

C. OS Fingerprinting

D. Manual Target System

정답: C

문제17

Which type of antenna is used in wireless communication?

A. Parabolic

B. Uni-directional

C. Bi-directional

D. Omnidirectional

정답: D

최신 EC0-350 무료덤프 - EC-COUNCIL Ethical hacking and countermeasures

우리와 연락하기

유용한 링크

최신 업데이트