312-50V10 Practice Questions
943 real 312-50V10 exam questions with expert-verified answers and explanations. Page 2 of 19.
- Question #51Sniffing
An attacker, using a rogue wireless AP, performed an MITM attack and injected an HTML code to embed a malicious applet in all HTTP connections. When users accessed any page, the ap...
MITM attackrogue access pointEttercapHTML injection - Question #52Malware Threats
You are monitoring the network of your organizations. You notice that: There are huge outbound connections from your Internal Network to External IPs On further investigation, you...
CnC communicationmalware C2IDS/IPS signaturesblacklist filtering - Question #53Information Security and Ethical Hacking Fundamentals
Security Policy is a definition of what it means to be secure for a system, organization or other entity. For Information Technologies, there are sub-policies like Computer Securit...
CIA triadsecurity policyconfidentiality integrity availability - Question #54Hacking Wireless Networks
Which of the following antennas is commonly used in communications for a frequency band of 10 MHz to VHF and UHF?
Yagi antennawireless antenna typesVHF UHF frequencydirectional antenna - Question #55Hacking Web Servers
Why should the security analyst disable/remove unnecessary ISAPI filters?
ISAPI filtersweb server hardeningattack surface reduction - Question #56Information Security and Ethical Hacking Fundamentals
Which of the following security policies defines the use of VPN for gaining access to an internal corporate network?
remote access policyVPNsecurity policy typescorporate network access - Question #57Vulnerability Analysis
To determine if a software program properly handles a wide range of invalid input, a form of automated testing can be used to randomly generate invalid input in an attempt to crash...
fuzzingfuzz testinginvalid inputsoftware testing - Question #58Scanning Networks
If you want only to scan fewer ports than the default scan using Nmap tool, which option would you use?
Nmap fast scan-F flagport scanning options - Question #59Information Security and Ethical Hacking Fundamentals
In Risk Management, how is the term "likelihood" related to the concept of "threat?"
risk likelihoodthreat probabilityvulnerability exploitationrisk management - Question #60Sniffing
Which of the following statements is TRUE?
sniffersOSI modelLayer 2data link layer - Question #61Footprinting and Reconnaissance
What is the least important information when you analyze a public IP address in a security alert?
IP analysisARPWhoissecurity alerts - Question #62Scanning Networks
You are the Network Admin, and you get a compliant that some of the websites are no longer accessible. You try to ping the servers and find them to be reachable. Then you type the...
DNSUDP port 53network troubleshootingname resolution - Question #63Cryptography
Internet Protocol Security IPSec is actually a suite of protocols. Each protocol within the suite provides different functionality. Collective IPSec does everything except.
IPSecnetwork layerprotocol suiteencryption - Question #64Information Security and Ethical Hacking Fundamentals
On performing a risk assessment, you need to determine the potential impacts when some of the critical business process of the company interrupt its service. What is the name of th...
Business Impact Analysisrisk assessmentBIAbusiness continuity - Question #65Hacking Web Applications
Assume a business-crucial web-site of some company that is used to sell handsets to the customers worldwide. All the developed components are reviewed by the security team on a mon...
third-party scriptssupply chain riskJavaScriptweb security - Question #66Information Security and Ethical Hacking Fundamentals
What type of analysis is performed when an attacker has partial knowledge of inner-workings of the application?
grey-box testingpenetration testingblack-boxwhite-box - Question #67Evading IDS, Firewalls, and Honeypots
Bob finished a C programming course and created a small C application to monitor the network traffic and produce alerts when any origin sends "many" IP packets, based on the averag...
behavior-based IDSanomaly detectionnetwork monitoringthreshold - Question #68Social Engineering
Which of the following is a low-tech way of gaining unauthorized access to systems?
social engineeringunauthorized accesslow-tech attackhuman manipulation - Question #69Evading IDS, Firewalls, and Honeypots
When tuning security alerts, what is the best approach?
IDS tuningfalse positivesfalse negativesalert management - Question #70System Hacking
In an internal security audit, the white hat hacker gains control over a user account and attempts to acquire access to another account's confidential files and information. How ca...
privilege escalationlateral movementaccount accesssystem hacking - Question #71Information Security and Ethical Hacking Fundamentals
Which regulation defines security and privacy controls for Federal information systems and organizations?
NIST 800-53compliancefederal information systemssecurity controls - Question #72Information Security and Ethical Hacking Fundamentals
Your company performs penetration tests and security assessments for small and medium-sized business in the local area. During a routine security assessment, you discover informati...
ethicslegal obligationsincident reportingpenetration testing - Question #73Evading IDS, Firewalls, and Honeypots
You are a security officer of a company. You had an alert from IDS that indicates that one PC on your Intranet is connected to a blacklisted IP address (C2 Server) on the Internet....
C2 serverfirewall logsproxy logsincident analysis - Question #74Scanning Networks
Identify the UDP port that Network Time Protocol (NTP) uses as its primary means of communication?
NTPUDP port 123network protocolstime synchronization - Question #75Information Security and Ethical Hacking Fundamentals
It has been reported to you that someone has caused an information spillage on their computer. You go to the computer, disconnect it from the network, remove the keyboard and mouse...
incident handlingcontainmentinformation spillageincident response - Question #76Cryptography
Which of the following cryptography attack is an understatement for the extraction of cryptographic secrets (e.g. the password to an encrypted file) from a person by a coercion or...
rubber hose attackcryptanalysiscoercionphysical attack - Question #77System Hacking
In cryptanalysis and computer security, 'pass the hash' is a hacking technique that allows an attacker to authenticate to a remote server/service by using the underlying NTLM and/o...
pass the hashNTLMLM hashcredential format - Question #78SQL Injection
You are looking for SQL injection vulnerability by sending a special character to web applications. Which of the following is the most useful for quick validation?
SQL injectionsingle quoteinput validationweb application testing - Question #79Malware Threats
A virus that attempts to install itself inside the file it is infecting is called?
cavity virusvirus typesmalwarefile infection - Question #80Information Security and Ethical Hacking Fundamentals
What type of analysis is performed when an attacker has partial knowledge of inner-workings of the application?
grey-box testingpenetration testingblack-boxwhite-box - Question #81Information Security and Ethical Hacking Fundamentals
Which regulation defines security and privacy controls for Federal information systems and organizations?
NIST-800-53compliance frameworksfederal securityprivacy controls - Question #82Information Security and Ethical Hacking Fundamentals
While examining audit logs, you discover that people are able to telnet into the SMTP server on port 25. You would like to block this, though you do not see any evidence of an atta...
SMTPport 25firewall rulesemail security - Question #83System Hacking
Windows LAN Manager (LM) hashes are known to be weak. Which of the following are known weaknesses of LM? (Choose three)
LM hashesWindows authenticationpassword weaknessesNTLM - Question #84Scanning Networks
Fingerprinting an Operating System helps a cracker because:
OS fingerprintingvulnerability identificationTCP/IP stackreconnaissance - Question #85Enumeration
In the context of Windows Security, what is a 'null' user?
null sessionWindows securityanonymous accessenumeration - Question #86System Hacking
What does the following command in netcat do? nc -l -u -p55555 < /etc/passwd
netcatUDPfile transferpasswd file - Question #87Session Hijacking
What hacking attack is challenge/response authentication used to prevent?
challenge/responsereplay attacksauthentication protocolssession security - Question #88Social Engineering
In this attack, a victim receives an e-mail claiming from PayPal stating that their account has been disabled and confirmation is required before activation. The attackers then sca...
phishingemail scamidentity theftsocial engineering - Question #89Session Hijacking
Bob is going to perform an active session hijack against Brownies Inc. He has found a target that allows session oriented connections (Telnet) and performs the sequence prediction...
session hijackingsequence predictionTCP sessionsactive hijacking - Question #90Scanning Networks
This TCP flag instructs the sending system to transmit all buffered data immediately.
TCP flagsPSH flagbuffered dataTCP/IP - Question #91Enumeration
The network administrator at Spears Technology, Inc has configured the default gateway Cisco router's access-list as below: You are hired to conduct security testing on their netwo...
SNMPACL bypassCisco routersource IP spoofing - Question #92Cryptography
You work for Acme Corporation as Sales Manager. The company has tight network security restrictions. You are trying to steal data from the company's Sales database (Sales.xls) and...
steganographydata exfiltrationcovert channelsDLP evasion - Question #93Evading IDS, Firewalls, and Honeypots
Study the snort rule given below and interpret the rule. alert tcp any any --> 192.168.1.0/24 111 (content:"|00 01 86 a5|"; msG. "mountd access";)
Snort rulesIDS signaturesnetwork alertingrule interpretation - Question #94Enumeration
What port number is used by LDAP protocol?
LDAPport 389directory servicesnetwork protocols - Question #95Session Hijacking
Fred is the network administrator for his company. Fred is testing an internal switch. From an external IP address, Fred wants to try and trick this switch into thinking it already...
TCP ACKsession spoofingstateful inspectionTCP flags - Question #96Social Engineering
Within the context of Computer Security, which of the following statements describes Social Engineering best?
social engineeringhuman manipulationinformation gatheringsecurity awareness - Question #97Scanning Networks
What is a NULL scan?
NULL scanTCP flagsstealth scanningport scanning - Question #98Scanning Networks
What is the proper response for a NULL scan if the port is open?
NULL scanopen port behaviorTCP responseport scanning - Question #99Footprinting and Reconnaissance
Which of the following statements about a zone transfer correct? (Choose three.)
DNS zone transferTCP port 53DNS enumerationreconnaissance - Question #100Social Engineering
An unauthorized individual enters a building following an employee through the employee entrance after the lunch rush. What type of breach has the individual just performed?
tailgatingphysical securityunauthorized accesssocial engineering