312-50V11 Practice Questions
1,039 real 312-50V11 exam questions with expert-verified answers and explanations. Page 2 of 21.
- Question #51Sniffing
An attacker, using a rogue wireless AP, performed an MITM attack and injected an HTML code to embed a malicious applet in all HTTP connections. When users accessed any page, the ap...
MITM attackrogue wireless APEttercapHTML injection - Question #52Malware Threats
You are monitoring the network of your organizations. You notice that: There are huge outbound connections from your Internal Network to External IPs On further investigation, you...
C2 communicationmalware remediationIDS/IPS signaturesfirewall blacklist - Question #53Information Security and Ethical Hacking Fundamentals
Security Policy is a definition of what it means to be secure for a system, organization or other entity. For Information Technologies, there are sub-policies like Computer Securit...
CIA triadsecurity policyconfidentiality integrity availabilityinformation security - Question #54Hacking Wireless Networks
Which of the following antennas is commonly used in communications for a frequency band of 10 MHz to VHF and UHF?
Yagi antennawireless frequency bandsVHF UHFdirectional antenna - Question #55Hacking Web Servers
Why should the security analyst disable/remove unnecessary ISAPI filters?
ISAPI filtersweb server hardeningattack surface reductionIIS security - Question #56Information Security and Ethical Hacking Fundamentals
Which of the following security policies defines the use of VPN for gaining access to an internal corporate network?
remote access policyVPN policysecurity policy typesaccess control - Question #57Vulnerability Analysis
To determine if a software program properly handles a wide range of invalid input, a form of automated testing can be used to randomly generate invalid input in an attempt to crash...
fuzzinginput validation testingautomated testingsoftware security - Question #58Scanning Networks
If you want only to scan fewer ports than the default scan using Nmap tool, which option would you use?
Nmap fast scan-F optionport scanningfewer ports - Question #59Information Security and Ethical Hacking Fundamentals
In Risk Management, how is the term "likelihood" related to the concept of "threat?"
risk likelihoodthreat probabilityvulnerability exploitationrisk management - Question #60Sniffing
Which of the following statements is TRUE?
sniffersOSI Layer 2data link layernetwork sniffing - Question #61Footprinting and Reconnaissance
What is the least important information when you analyze a public IP address in a security alert?
ARPIP analysiswhois lookupgeolocation - Question #62Scanning Networks
You are the Network Admin, and you get a compliant that some of the websites are no longer accessible. You try to ping the servers and find them to be reachable. Then you type the...
DNSUDP port 53name resolutionnetwork troubleshooting - Question #63Cryptography
Internet Protocol Security IPSec is actually a suite of protocols. Each protocol within the suite provides different functionality. Collective IPSec does everything except.
IPSecnetwork layerVPN protocolsdata link layer - Question #64Information Security and Ethical Hacking Fundamentals
On performing a risk assessment, you need to determine the potential impacts when some of the critical business process of the company interrupt its service. What is the name of th...
BIArisk assessmentbusiness continuitycritical processes - Question #65Hacking Web Applications
Assume a business-crucial web-site of some company that is used to sell handsets to the customers worldwide. All the developed components are reviewed by the security team on a mon...
third-party scriptssupply chain attackJavaScriptweb security - Question #66Information Security and Ethical Hacking Fundamentals
What type of analysis is performed when an attacker has partial knowledge of inner-workings of the application?
grey-box testingpenetration testing methodologywhite-boxblack-box - Question #67Evading IDS, Firewalls, and Honeypots
Bob finished a C programming course and created a small C application to monitor the network traffic and produce alerts when any origin sends "many" IP packets, based on the averag...
IDS classificationbehavior-based IDSanomaly detectionnetwork monitoring - Question #68Social Engineering
Which of the following is a low-tech way of gaining unauthorized access to systems?
social engineeringunauthorized accesslow-tech attack - Question #69Evading IDS, Firewalls, and Honeypots
When tuning security alerts, what is the best approach?
false positivesfalse negativesIDS tuningalert management - Question #70System Hacking
In an internal security audit, the white hat hacker gains control over a user account and attempts to acquire access to another account's confidential files and information. How ca...
privilege escalationaccess controlaccount compromise - Question #71Information Security and Ethical Hacking Fundamentals
Which regulation defines security and privacy controls for Federal information systems and organizations?
NIST 800-53federal compliancesecurity controlsregulatory frameworks - Question #72Information Security and Ethical Hacking Fundamentals
Your company performs penetration tests and security assessments for small and medium-sized business in the local area. During a routine security assessment, you discover informati...
penetration testing ethicslegal obligationsethical hackingincident reporting - Question #73Information Security and Ethical Hacking Fundamentals
You are a security officer of a company. You had an alert from IDS that indicates that one PC on your Intranet is connected to a blacklisted IP address (C2 Server) on the Internet....
C2 serverincident analysisfirewall proxy logsthreat severity - Question #74Scanning Networks
Identify the UDP port that Network Time Protocol (NTP) uses as its primary means of communication?
NTPUDP port 123network protocolsport knowledge - Question #75Information Security and Ethical Hacking Fundamentals
It has been reported to you that someone has caused an information spillage on their computer. You go to the computer, disconnect it from the network, remove the keyboard and mouse...
incident handlingcontainmentincident responseinformation spillage - Question #76Cryptography
Which of the following cryptography attack is an understatement for the extraction of cryptographic secrets (e.g. the password to an encrypted file) from a person by a coercion or...
rubber hose attackcoercioncryptanalysisside-channel attack - Question #77System Hacking
In cryptanalysis and computer security, 'pass the hash' is a hacking technique that allows an attacker to authenticate to a remote server/service by using the underlying NTLM and/o...
pass-the-hashNTLMLM hashMetasploit psexec - Question #78SQL Injection
You are looking for SQL injection vulnerability by sending a special character to web applications. Which of the following is the most useful for quick validation?
SQL injectionsingle quoteinjection testinginput validation - Question #79Malware Threats
A virus that attempts to install itself inside the file it is infecting is called?
cavity virusvirus typesmalware classificationfile infection - Question #80Information Security and Ethical Hacking Fundamentals
What type of analysis is performed when an attacker has partial knowledge of inner-workings of the application?
grey-box testingpenetration testing methodologywhite-boxblack-box - Question #81Information Security and Ethical Hacking Fundamentals
Which regulation defines security and privacy controls for Federal information systems and organizations?
NIST 800-53compliance frameworksfederal securityregulatory standards - Question #82Scanning Networks
While examining audit logs, you discover that people are able to telnet into the SMTP server on port 25. You would like to block this, though you do not see any evidence of an atta...
SMTPport securityfirewall rulesemail server - Question #83System Hacking
Windows LAN Manager (LM) hashes are known to be weak. Which of the following are known weaknesses of LM? (Choose three)
LM hashespassword hashingWindows authenticationweak encryption - Question #84Footprinting and Reconnaissance
Fingerprinting an Operating System helps a cracker because:
OS fingerprintingvulnerability exploitationreconnaissanceattack surface - Question #85Enumeration
In the context of Windows Security, what is a 'null' user?
null sessionWindows securityanonymous accesspseudo accounts - Question #86System Hacking
What does the following command in netcat do? nc -l -u -p55555 < /etc/passwd
netcatUDPfile transfercommand syntax - Question #87Session Hijacking
What hacking attack is challenge/response authentication used to prevent?
challenge-response authenticationreplay attacksauthentication protocolssession security - Question #88Social Engineering
In this attack, a victim receives an e-mail claiming from PayPal stating that their account has been disabled and confirmation is required before activation. The attackers then sca...
phishingsocial engineering attacksemail scamscountermeasures - Question #89Session Hijacking
Bob is going to perform an active session hijack against Brownies Inc. He has found a target that allows session oriented connections (Telnet) and performs the sequence prediction...
session hijackingsequence predictionTCP sessionsactive hijacking - Question #90Scanning Networks
This TCP flag instructs the sending system to transmit all buffered data immediately.
TCP flagsPSH flagTCP protocolpacket transmission - Question #91Enumeration
The network administrator at Spears Technology, Inc has configured the default gateway Cisco router's access-list as below: You are hired to conduct security testing on their netwo...
SNMPIP spoofingaccess control listsrouter configuration - Question #92Evading IDS, Firewalls, and Honeypots
You work for Acme Corporation as Sales Manager. The company has tight network security restrictions. You are trying to steal data from the company's Sales database (Sales.xls) and...
steganographydata exfiltrationcovert channelstraffic monitoring evasion - Question #93Evading IDS, Firewalls, and Honeypots
Study the snort rule given below and interpret the rule. alert tcp any any --> 192.168.1.0/24 111 (content:"|00 01 86 a5|"; msG. "mountd access";)
Snort rulesIDS signaturesTCP traffic analysisrule interpretation - Question #94Enumeration
What port number is used by LDAP protocol?
LDAPport numbersdirectory servicesprotocol fundamentals - Question #95Session Hijacking
Fred is the network administrator for his company. Fred is testing an internal switch. From an external IP address, Fred wants to try and trick this switch into thinking it already...
TCP ACK scanningsession spoofingpacket craftingswitch security - Question #96Social Engineering
Within the context of Computer Security, which of the following statements describes Social Engineering best?
social engineeringhuman manipulationinformation gatheringsecurity awareness - Question #97Scanning Networks
What is a NULL scan?
NULL scanTCP flagsport scanningstealth scanning - Question #98Scanning Networks
What is the proper response for a NULL scan if the port is open?
NULL scanopen port responseTCP behaviorport scanning - Question #99Footprinting and Reconnaissance
Which of the following statements about a zone transfer correct? (Choose three.)
DNS zone transferDNS enumerationTCP port 53DNS security - Question #100Social Engineering
An unauthorized individual enters a building following an employee through the employee entrance after the lunch rush. What type of breach has the individual just performed?
tailgatingphysical securitysocial engineeringunauthorized access