최신 EC0-350 무료덤프 - EC-COUNCIL Ethical hacking and countermeasures

문제1

Sandra is the security administrator of XYZ.com. One day she notices that the XYZ.com Oracle database server has been compromised and customer information along with financial data has been stolen. The financial loss will be estimated in millions of dollars if the database gets into the hands of competitors. Sandra wants to report this crime to the law enforcement agencies immediately.
Which organization coordinates computer crime investigations throughout the United States?

A. NICP

B. NPC

C. CIA

D. NDCA

E. CIRP

정답: B

문제2

Which of the following best describes session key creation in SSL?

A. It is created by the server upon connection by the client

B. It is created by the server after verifying theuser's identity

C. It is created by the client from the server's public key

D. It is created by the client after verifying the server's identity

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제3

Which of the following conditions must be given to allow a tester to exploit a Cross-Site Request Forgery (CSRF) vulnerable web application?

A. The victim user must open the malicious link with an Internet Explorer prior to version 8.

B. The victim user must open the malicious link with a Firefox prior to version 3.

C. The web application should not use random tokens.

D. The session cookies generated by the application do not have the HttpOnly flag set.

정답: C

문제4

While performing ping scans into a target network you get a frantic call from the organization's security team. They report that they are under a denial of service attack. When you stop your scan, the smurf attack event stops showing up on the organization's IDS monitor. How can you modify your scan to prevent triggering this event in the IDS?

A. Scan more slowly.

B. Only scan the Windows systems.

C. Do not scan the broadcast IP.

D. Spoof the source IP address.

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제5

A circuit level gateway works at which of the following layers of the OSI Model?

A. Layer 2 - Data link

B. Layer 3 - Internet protocol

C. Layer 5 - Application

D. Layer 4 - TCP

정답: D

문제6

Which are true statements concerning the BugBear and Pretty Park worms?
Select the best answers.

A. Pretty Park propagates via network shares and email

B. BugBear propagates via network shares and email

C. Pretty Park can terminate anti-virus applications that might be running to bypass them.

D. Pretty Park tries to connect to an IRC server to send your personal passwords.

E. Both programs use email to do their work.

정답: B,D,E

설명: (DumpTOP 회원만 볼 수 있음)

문제7

802.11b is considered a ____________ protocol.

A. Unreliable

B. Unsecure

C. Connectionless

D. Secure

E. Token ring based

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제8

E-mail scams and mail fraud are regulated by which of the following?

A. 18 U .S .C . par. 1362 Communication Lines, Stations, or Systems

B. 18 U .S .C . par. 1030 Fraud and Related activity in connection with Computers

C. 18 U .S .C . par. 1029 Fraud and Related activity in connection with Access Devices

D. 18 U .S .C . par. 2510 Wire and Electronic Communications Interception and Interception of Oral Communication

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제9

What framework architecture is shown in this exhibit?

A. Metasploit

B. Immunity Canvas

C. Core Impact

D. Nessus

정답: A

문제10

Snort is an open source Intrusion Detection system. However, it can also be used for a few other purposes as well.
Which of the choices below indicate the other features offered by Snort?

A. IDS, Firewall, Sniffer

B. IDS, Sniffer, content inspector

C. IDS, Packet Logger, Sniffer

D. IDS, Sniffer, Proxy

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제11

What port number is used by Kerberos protocol?

A. 88

B. 419

C. 487

D. 44

정답: A

문제12

Diffie-Hellman (DH) groups determine the strength of the key used in the key exchange process. Which of the following is the correct bit size of the Diffie-Hellman (DH) group 5?

A. 768 bit key

B. 2048 bit key

C. 1025 bit key

D. 1536 bit key

정답: D

문제13

Which of the following describes a component of Public Key Infrastructure (PKI) where a copy of a private key is stored to provide third-party access and to facilitate recovery operations?

A. Directory

B. Key escrow

C. Key registry

D. Recovery agent

정답: B

문제14

An attacker has successfully compromised a remote computer. Which of the following comes as one of the last steps that should be taken to ensure that the compromise cannot be traced back to the source of the problem?

A. Install patches

B. Setup a backdoor

C. Cover your tracks

D. Install a zombie for DDOS

정답: C

최신 EC0-350 무료덤프 - EC-COUNCIL Ethical hacking and countermeasures

우리와 연락하기

유용한 링크

최신 업데이트