312-50V10 Practice Questions
943 real 312-50V10 exam questions with expert-verified answers and explanations. Page 3 of 19.
- Question #101Malware Threats
Which of the following is the best countermeasure to encrypting ransomwares?
ransomwarebackup strategymalware countermeasuredata recovery - Question #102SQL Injection
If an attacker uses the command SELECT*FROM user WHERE name = `x' AND userid IS NULL; --`; which type of SQL injection attack is the attacker performing?
SQL tautologyauthentication bypassSQL injectioncomment injection - Question #103Cryptography
Sophia travels a lot and worries that her laptop containing confidential documents might be stolen. What is the best protection that will work for her?
disk encryptiondata at restphysical securityconfidentiality - Question #104System Hacking
An attacker has installed a RAT on a host. The attacker wants to ensure that when a user Which file does the attacker need to modify?
RAThosts filepersistenceDNS hijacking - Question #105Evading IDS, Firewalls, and Honeypots
Which of the following options represents a conceptual characteristic of an anomaly-based IDS over a signature-based IDS?
anomaly-based IDSsignature-based IDSzero-day detectionfalse positives - Question #106System Hacking
You are logged in as a local admin on a Windows 7 system and you need to launch the Computer Management Console from command line. Which command would you use?
Windows administrationcompmgmt.mscMMC consolecommand line - Question #107Footprinting and Reconnaissance
You have the SOA presented below in your Zone. Your secondary servers have not been able to contact your primary server to synchronize information. How long will the secondary serv...
SOA recordDNS zone expirysecondary serverTTL - Question #108Footprinting and Reconnaissance
Tess King is using the nslookup command to craft queries to list all DNS information (such as Name Servers, host names, MX records, CNAME records, glue records (delegation for chil...
zone transfernslookupDNS enumerationDNS records - Question #109Footprinting and Reconnaissance
A zone file consists of which of the following Resource Records (RRs)?
zone fileDNS resource recordsSOAMX records - Question #110Footprinting and Reconnaissance
Let's imagine three companies (A, B and C), all competing in a challenging global environment. Company A and B are working together in developing a product that will generate a maj...
DNS spoofinganti-spoofingDNS securitycache poisoning - Question #111Footprinting and Reconnaissance
Which DNS resource record can indicate how long any "DNS poisoning" could last?
DNS TTLDNS cache poisoningSOA recordzone data - Question #112Hacking Wireless Networks
From the following table, identify the wrong answer in terms of Range (ft).
802.11 standardswireless rangeWi-FiWiMax - Question #113Scanning Networks
What would you enter, if you wanted to perform a stealth scan using Nmap?
NmapSYN scanstealth scanport scanning - Question #114Scanning Networks
You are doing an internal security audit and intend to find out what ports are open on all the servers. What is the best way to find out?
port scanningNmapnetwork auditopen ports - Question #115Information Security and Ethical Hacking Fundamentals
Steve, a scientist who works in a governmental security agency, developed a technological solution to identify people based on walking patterns and implemented this approach to a p...
multi-factor authenticationbiometricsRFIDphysical access control - Question #116Evading IDS, Firewalls, and Honeypots
Which Intrusion Detection System is the best applicable for large environments where critical assets on the network need extra security and is ideal for observing sensitive network...
NIDSIDS typesnetwork monitoringnetwork segments - Question #117Vulnerability Analysis
Which of the following is a serious vulnerability in the popular OpenSSL cryptographic software library? This weakness allows stealing the information protected, under normal condi...
HeartbleedOpenSSLSSL/TLS vulnerabilitybuffer over-read - Question #118Cryptography
Which protocol is used for setting up secure channels between two devices, typically in VPNs?
IPSecVPNsecure channelstunneling protocol - Question #119Cryptography
Which of the following Secure Hashing Algorithm (SHA) produces a 160-bit digest from a message with a maximum length of (264-1) bits and resembles the MD5 algorithm?
SHA-1hash algorithm160-bit digestcryptographic hash - Question #120Information Security and Ethical Hacking Fundamentals
Bob, a system administrator at TPNQM SA, concluded one day that a DMZ is not needed if he properly configures the firewall to allow access just to servers/ports, which can have dir...
DMZnetwork segmentationstateless firewallperimeter security - Question #121Evading IDS, Firewalls, and Honeypots
Sam is working as s pen-tester in an organization in Houston. He performs penetration testing on IDS in order to find the different ways an attacker uses to evade the IDS. Sam send...
IDS evasionfalse positive generationpacket floodingtraffic obfuscation - Question #122Hacking Web Applications
Cross-site request forgery involves:
CSRFcross-site request forgerybrowser securityweb attacks - Question #123Scanning Networks
What does the option * indicate?
nmap optionsDNS resolution flagnetwork scanningcommand flags - Question #124Information Security and Ethical Hacking Fundamentals
An Internet Service Provider (ISP) has a need to authenticate users connecting via analog modems, Digital Subscriber Lines (DSL), wireless data services, and Virtual Private Networ...
RADIUSAAA protocolnetwork authenticationISP security - Question #125Information Security and Ethical Hacking Fundamentals
What network security concept requires multiple layers of security controls to be placed throughout an IT infrastructure, which improves the security posture of an organization to...
defense in depthlayered securitysecurity controlsIT infrastructure - Question #126Cryptography
During the process of encryption and decryption, what keys are shared?
public key cryptographykey sharingasymmetric encryptionPKI - Question #127Sniffing
How does the Address Resolution Protocol (ARP) work?
ARP protocolMAC address resolutionbroadcast requestnetwork protocol - Question #128Cryptography
Which mode of IPSec should you use to assure security and confidentiality of data within the same LAN?
IPSecESP transport modeLAN securitynetwork encryption - Question #129Information Security and Ethical Hacking Fundamentals
Which of the following act requires employer's standard national numbers to identify them on standard transactions?
HIPAAcompliancehealthcare regulationsemployer identification - Question #130Sniffing
In Wireshark, the packet bytes panes show the data of the current packet in which format?
Wiresharkpacket analysishexadecimal formatnetwork forensics - Question #131Footprinting and Reconnaissance
_________ is a set of extensions to DNS that provide to DNS clients (resolvers) origin authentication of DNS data to reduce the threat of DNS poisoning, spoofing, and similar attac...
DNSSECDNS authenticationDNS poisoning preventionDNS extensions - Question #132Cryptography
PGP, SSL, and IKE are all examples of which type of cryptography?
public key cryptographyPGPSSLIKE - Question #133Scanning Networks
Which of the following is considered as one of the most reliable forms of TCP scanning?
TCP connect scanfull open scanport scanningTCP reliability - Question #134Scanning Networks
Which of the following scanning method splits the TCP header into several packets and makes it difficult for packet filters to detect the purpose of the packet?
IP fragmentationSYN/FIN scanningpacket filter evasionTCP header splitting - Question #135Sniffing
Which of the following is the BEST way to defend against network sniffing?
sniffing countermeasuresencryption protocolsnetwork security defensetraffic protection - Question #136Scanning Networks
You perform a scan of your company's network and discover that TCP port 123 is open. What services by default run on TCP port 123?
NTPport 123port identificationnetwork services - Question #137Sniffing
Based on the below log, which of the following sentences are true? Mar 1, 2016, 7:33:28 AM 10.240.250.23 ?54373 10.249.253.15 ?22 tcp_ip
log analysisSSH port 22client-server identificationnetwork traffic analysis - Question #138Scanning Networks
You have successfully comprised a server having an IP address of 10.10.0.5. You would like to enumerate all machines in the same network quickly. What is the best nmap command you...
nmap fast scannetwork enumeration-F flagsubnet scanning - Question #139Hacking Wireless Networks
........is an attack type for a rogue Wi-Fi access point that appears to be a legitimate one offered on the premises, but actually has been set up to eavesdrop on wireless communic...
evil twin attackrogue access pointwireless phishingWi-Fi eavesdropping - Question #140Footprinting and Reconnaissance
DNS cache snooping is a process of determining if the specified resource address is present in the DNS cache records. It may be useful during the examination of the network to dete...
DNS cache snoopingnslookup norecursiveDNS reconnaissancecache record enumeration - Question #141Malware Threats
You are working as a Security Analyst in a company XYZ that owns the whole subnet range of 23.0.0.0/8 and 192.168.0.0/8. While monitoring the data, you find a high number of outbou...
botnetC2 servercompromised hostsmalware infection - Question #142SQL Injection
Which of the following is an adaptive SQL Injection testing technique used to discover coding errors by inputting massive amounts of random data and observing the changes in the ou...
fuzzingSQL injection testingdynamic testinginput validation - Question #143Hacking Web Servers
Some clients of TPNQM SA were redirected to a malicious site when they tried to access the TPNQM main site. Bob, a system administrator at TPNQM SA, found that they were victims of...
DNS cache poisoningDNSSECDNS securitymitigation - Question #144Cryptography
In which of the following password protection technique, random strings of characters are added to the password before calculating their hashes?
password saltingpassword hashingrainbow table defensecredential protection - Question #145Evading IDS, Firewalls, and Honeypots
You have successfully gained access to a Linux server and would like to ensure that the succeeding outgoing traffic from this server will not be caught by Network-Based Intrusion D...
NIDS evasiontraffic encryptionIDS bypasspost-exploitation - Question #146Evading IDS, Firewalls, and Honeypots
What is the purpose of a demilitarized zone on a network?
DMZnetwork segmentationfirewall architectureperimeter security - Question #147Hacking Web Servers
You need to deploy a new web-based software package for your organization. The package requires three separate servers and needs to be available on the Internet. What is the recomm...
n-tier architectureDMZ placementweb server designnetwork security zones - Question #148Evading IDS, Firewalls, and Honeypots
The security administrator of ABC needs to permit Internet traffic in the host 10.0.0.2 and UDP traffic in the host 10.0.0.3. He also needs to permit all FTP traffic to the rest of...
ACLpacket filteringfirewall rulesimplicit deny - Question #149Sniffing
When conducting a penetration test, it is crucial to use all means to get all available information about the target network. One of the ways to do that is by sniffing the network....
passive sniffingactive vs passivepacket capturetraffic replay - Question #150Hacking Web Applications
A company's Web development team has become aware of a certain type of security vulnerability in their Web software. To mitigate the possibility of this vulnerability being exploit...
cross-site scriptingXSSHTML injectioninput sanitization