312-50v11 | What Downloadable 312-50v11 Preparation Exams Is

We provide real 312-50v11 exam questions and answers braindumps in two formats. Download PDF & Practice Tests. Pass EC-Council 312-50v11 Exam quickly & easily. The 312-50v11 PDF type is available for reading and printing. You can print more and practice many times. With the help of our EC-Council 312-50v11 dumps pdf and vce product and material, you can easily pass the 312-50v11 exam.

Online EC-Council 312-50v11 free dumps demo Below:

NEW QUESTION 1
What is a NULL scan?

  • A. A scan in which all flags are turned off
  • B. A scan in which certain flags are off
  • C. A scan in which all flags are on
  • D. A scan in which the packet size is set to zero
  • E. A scan with an illegal packet size

Answer: A

NEW QUESTION 2
What term describes the amount of risk that remains after the vulnerabilities are classified and the countermeasures have been deployed?

  • A. Residual risk
  • B. Impact risk
  • C. Deferred risk
  • D. Inherent risk

Answer: A

NEW QUESTION 3
Nedved is an IT Security Manager of a bank in his country. One day. he found out that there is a security breach to his company's email server based on analysis of a suspicious connection from the email server to an unknown IP Address.
What is the first thing that Nedved needs to do before contacting the incident response team?

  • A. Leave it as it Is and contact the incident response te3m right away
  • B. Block the connection to the suspicious IP Address from the firewall
  • C. Disconnect the email server from the network
  • D. Migrate the connection to the backup email server

Answer: C

NEW QUESTION 4
During a black-box pen test you attempt to pass IRC traffic over port 80/TCP from a compromised web enabled host. The traffic gets blocked; however, outbound HTTP traffic is unimpeded. What type of firewall is inspecting outbound traffic?

  • A. Circuit
  • B. Stateful
  • C. Application
  • D. Packet Filtering

Answer: B

NEW QUESTION 5
Which of the following viruses tries to hide from anti-virus programs by actively altering and corrupting the chosen service call interruptions when they are being run?

  • A. Macro virus
  • B. Stealth/Tunneling virus
  • C. Cavity virus
  • D. Polymorphic virus

Answer: B

NEW QUESTION 6
These hackers have limited or no training and know how to use only basic techniques or tools. What kind of hackers are we talking about?

  • A. Black-Hat Hackers A
  • B. Script Kiddies
  • C. White-Hat Hackers
  • D. Gray-Hat Hacker

Answer: C

NEW QUESTION 7
You went to great lengths to install all the necessary technologies to prevent hacking attacks, such as expensive firewalls, antivirus software, anti-spam systems and intrusion detection/prevention tools in your company's network. You have configured the most secure policies and tightened every device on your network. You are confident that hackers will never be able to gain access to your network with complex security system in place.
Your peer, Peter Smith who works at the same department disagrees with you.
He says even the best network security technologies cannot prevent hackers gaining access to the network because of presence of "weakest link" in the security chain.
What is Peter Smith talking about?

  • A. Untrained staff or ignorant computer users who inadvertently become the weakest link in your securitychain
  • B. "zero-day" exploits are the weakest link in the security chain since the IDS will not be able to detect these attacks
  • C. "Polymorphic viruses" are the weakest link in the security chain since the Anti-Virus scanners will not be able to detect these attacks
  • D. Continuous Spam e-mails cannot be blocked by your security system since spammers use different techniques to bypass the filters in your gateway

Answer: A

NEW QUESTION 8
Which of the following tools can be used to perform a zone transfer?

  • A. NSLookup
  • B. Finger
  • C. Dig
  • D. Sam Spade
  • E. Host
  • F. Netcat
  • G. Neotrace

Answer: ACDE

NEW QUESTION 9
This kind of password cracking method uses word lists in combination with numbers and special characters:

  • A. Hybrid
  • B. Linear
  • C. Symmetric
  • D. Brute Force

Answer: A

NEW QUESTION 10
In an internal security audit, the white hat hacker gains control over a user account and attempts to acquire access to another account's confidential files and information. How can he achieve this?

  • A. Privilege Escalation
  • B. Shoulder-Surfing
  • C. Hacking Active Directory
  • D. Port Scanning

Answer: A

NEW QUESTION 11
You are analysing traffic on the network with Wireshark. You want to routinely run a cron job which will run the capture against a specific set of IPs - 192.168.8.0/24. What command you would use?

  • A. wireshark --fetch ''192.168.8*''
  • B. wireshark --capture --local masked 192.168.8.0 ---range 24
  • C. tshark -net 192.255.255.255 mask 192.168.8.0
  • D. sudo tshark -f''net 192 .68.8.0/24''

Answer: D

NEW QUESTION 12
A company’s security policy states that all Web browsers must automatically delete their HTTP browser cookies upon terminating. What sort of security breach is this policy attempting to mitigate?

  • A. Attempts by attackers to access the user and password information stored in the company’s SQL database.
  • B. Attempts by attackers to access Web sites that trust the Web browser user by stealing the user’s authentication credentials.
  • C. Attempts by attackers to access password stored on the user’s computer without the user’s knowledge.
  • D. Attempts by attackers to determine the user’s Web browser usage patterns, including when sites were visited and for how long.

Answer: B

NEW QUESTION 13
What is the proper response for a NULL scan if the port is open?

  • A. SYN
  • B. ACK
  • C. FIN
  • D. PSH
  • E. RST
  • F. No response

Answer: F

NEW QUESTION 14
Password cracking programs reverse the hashing process to recover passwords. (True/False.)

  • A. True
  • B. False

Answer: B

NEW QUESTION 15
Due to a slowdown of normal network operations, the IT department decided to monitor internet traffic for all of the employees. From a legal standpoint, what would be troublesome to take this kind of measure?

  • A. All of the employees would stop normal work activities
  • B. IT department would be telling employees who the boss is
  • C. Not informing the employees that they are going to be monitored could be an invasion of privacy.
  • D. The network could still experience traffic slow down.

Answer: C

NEW QUESTION 16
Your company performs penetration tests and security assessments for small and medium-sized business in the local area. During a routine security assessment, you discover information that suggests your client is involved with human trafficking.
What should you do?

  • A. Confront the client in a respectful manner and ask her about the data.
  • B. Copy the data to removable media and keep it in case you need it.
  • C. Ignore the data and continue the assessment until completed as agreed.
  • D. Immediately stop work and contact the proper legal authorities.

Answer: D

NEW QUESTION 17
Eve is spending her day scanning the library computers. She notices that Alice is using a computer whose port 445 is active and listening. Eve uses the ENUM tool to enumerate Alice machine. From the command prompt, she types the following command.
312-50v11 dumps exhibit
What is Eve trying to do?

  • A. Eve is trying to connect as a user with Administrator privileges
  • B. Eve is trying to enumerate all users with Administrative privileges
  • C. Eve is trying to carry out a password crack for user Administrator
  • D. Eve is trying to escalate privilege of the null user to that of Administrator

Answer: C

NEW QUESTION 18
You work for Acme Corporation as Sales Manager. The company has tight network security restrictions. You are trying to steal data from the company's Sales database (Sales.xls) and transfer them to your home computer. Your company filters and monitors traffic that leaves from the internal network to the Internet. How will you achieve this without raising suspicion?

  • A. Encrypt the Sales.xls using PGP and e-mail it to your personal gmail account
  • B. Package the Sales.xls using Trojan wrappers and telnet them back your home computer
  • C. You can conceal the Sales.xls database in another file like photo.jpg or other files and send it out in an innocent looking email or file transfer using Steganography techniques
  • D. Change the extension of Sales.xls to sales.txt and upload them as attachment to your hotmail account

Answer: C

NEW QUESTION 19
Which of the following programs is usually targeted at Microsoft Office products?

  • A. Polymorphic virus
  • B. Multipart virus
  • C. Macro virus
  • D. Stealth virus

Answer: C

NEW QUESTION 20
Which type of sniffing technique is generally referred as MiTM attack?
312-50v11 dumps exhibit

  • A. Password Sniffing
  • B. ARP Poisoning
  • C. Mac Flooding
  • D. DHCP Sniffing

Answer: B

NEW QUESTION 21
One of your team members has asked you to analyze the following SOA record.
What is the TTL? Rutgers.edu.SOA NS1.Rutgers.edu ipad.college.edu (200302028 3600 3600 604800 2400.)

  • A. 200303028
  • B. 3600
  • C. 604800
  • D. 2400
  • E. 60
  • F. 4800

Answer: D

NEW QUESTION 22
Which of the following is assured by the use of a hash?

  • A. Authentication
  • B. Confidentiality
  • C. Availability
  • D. Integrity

Answer: D

NEW QUESTION 23
......

Thanks for reading the newest 312-50v11 exam dumps! We recommend you to try the PREMIUM Dumps-files.com 312-50v11 dumps in VCE and PDF here: https://www.dumps-files.com/files/312-50v11/ (254 Q&As Dumps)