312-50V11 Practice Questions
1,039 real 312-50V11 exam questions with expert-verified answers and explanations. Page 3 of 21.
- Question #101Malware Threats
Which of the following is the best countermeasure to encrypting ransomwares?
ransomwarebackup strategydata protectioncountermeasures - Question #102SQL Injection
If an attacker uses the command SELECT*FROM user WHERE name = `x' AND userid IS NULL; --`; which type of SQL injection attack is the attacker performing?
SQL injectiontautologycomment injectionauthentication bypass - Question #103Cryptography
Sophia travels a lot and worries that her laptop containing confidential documents might be stolen. What is the best protection that will work for her?
disk encryptiondata protectionphysical securityconfidentiality - Question #104System Hacking
An attacker has installed a RAT on a host. The attacker wants to ensure that when a user Which file does the attacker need to modify?
RAThosts filepersistencemalware - Question #105Evading IDS, Firewalls, and Honeypots
Which of the following options represents a conceptual characteristic of an anomaly-based IDS over a signature-based IDS?
anomaly-based IDSsignature-based IDSzero-day detectionfalse positives - Question #106System Hacking
You are logged in as a local admin on a Windows 7 system and you need to launch the Computer Management Console from command line. Which command would you use?
Windows administrationcompmgmt.msccommand linelocal admin - Question #107Footprinting and Reconnaissance
You have the SOA presented below in your Zone. Your secondary servers have not been able to contact your primary server to synchronize information. How long will the secondary serv...
DNS SOA recordzone expirysecondary DNSserial number - Question #108Enumeration
Tess King is using the nslookup command to craft queries to list all DNS information (such as Name Servers, host names, MX records, CNAME records, glue records (delegation for chil...
zone transfernslookupDNS enumerationMX records - Question #109Footprinting and Reconnaissance
A zone file consists of which of the following Resource Records (RRs)?
DNS zone fileresource recordsSOAMX records - Question #110Hacking Web Servers
Let's imagine three companies (A, B and C), all competing in a challenging global environment. Company A and B are working together in developing a product that will generate a maj...
DNS spoofingDNS anti-spoofingzone transferemail security - Question #111Enumeration
Which DNS resource record can indicate how long any "DNS poisoning" could last?
DNS poisoningTTLSOA recordcache poisoning - Question #112Hacking Wireless Networks
From the following table, identify the wrong answer in terms of Range (ft).
802.11 standardswireless rangeWiMax802.11a - Question #113Scanning Networks
What would you enter, if you wanted to perform a stealth scan using Nmap?
NmapSYN scanstealth scanport scanning - Question #114Scanning Networks
You are doing an internal security audit and intend to find out what ports are open on all the servers. What is the best way to find out?
Nmapport scanninginternal auditnetwork discovery - Question #115Information Security and Ethical Hacking Fundamentals
Steve, a scientist who works in a governmental security agency, developed a technological solution to identify people based on walking patterns and implemented this approach to a p...
multi-factor authenticationbiometricsRFIDphysical access control - Question #116Evading IDS, Firewalls, and Honeypots
Which Intrusion Detection System is the best applicable for large environments where critical assets on the network need extra security and is ideal for observing sensitive network...
NIDSintrusion detectionnetwork monitoringsensitive segments - Question #117Cryptography
Which of the following is a serious vulnerability in the popular OpenSSL cryptographic software library? This weakness allows stealing the information protected, under normal condi...
HeartbleedOpenSSLTLS vulnerabilitybuffer over-read - Question #118Cryptography
Which protocol is used for setting up secure channels between two devices, typically in VPNs?
IPsecVPNsecure channeltunneling protocol - Question #119Cryptography
Which of the following Secure Hashing Algorithm (SHA) produces a 160-bit digest from a message with a maximum length of (264-1) bits and resembles the MD5 algorithm?
SHA-1hash algorithm160-bit digestMD5 similarity - Question #120Evading IDS, Firewalls, and Honeypots
Bob, a system administrator at TPNQM SA, concluded one day that a DMZ is not needed if he properly configures the firewall to allow access just to servers/ports, which can have dir...
DMZfirewall architecturestateful vs statelessnetwork segmentation - Question #121Evading IDS, Firewalls, and Honeypots
Sam is working as s pen-tester in an organization in Houston. He performs penetration testing on IDS in order to find the different ways an attacker uses to evade the IDS. Sam send...
IDS evasionfalse positive generationpacket floodingtraffic obfuscation - Question #122Hacking Web Applications
Cross-site request forgery involves:
CSRFweb application attackscross-site request forgerybrowser requests - Question #123Scanning Networks
What does the option * indicate?
nmap optionsnetwork scanningDNS resolution flagcommand syntax - Question #124Information Security and Ethical Hacking Fundamentals
An Internet Service Provider (ISP) has a need to authenticate users connecting via analog modems, Digital Subscriber Lines (DSL), wireless data services, and Virtual Private Networ...
AAA protocolsRADIUSauthenticationnetwork access - Question #125Information Security and Ethical Hacking Fundamentals
What network security concept requires multiple layers of security controls to be placed throughout an IT infrastructure, which improves the security posture of an organization to...
defense in depthlayered securityIT security strategysecurity controls - Question #126Cryptography
During the process of encryption and decryption, what keys are shared?
public key cryptographykey sharingasymmetric encryptionPKI - Question #127Sniffing
How does the Address Resolution Protocol (ARP) work?
ARPMAC address resolutionnetwork protocollayer 2 - Question #128Cryptography
Which mode of IPSec should you use to assure security and confidentiality of data within the same LAN?
IPSecESP transport modeVPN protocolsLAN security - Question #129Information Security and Ethical Hacking Fundamentals
Which of the following act requires employer's standard national numbers to identify them on standard transactions?
HIPAAcompliance regulationshealthcare lawlegal frameworks - Question #130Sniffing
In Wireshark, the packet bytes panes show the data of the current packet in which format?
Wiresharkpacket analysishexadecimal displaynetwork forensics - Question #131Scanning Networks
_________ is a set of extensions to DNS that provide to DNS clients (resolvers) origin authentication of DNS data to reduce the threat of DNS poisoning, spoofing, and similar attac...
DNSSECDNS securityDNS poisoning preventionorigin authentication - Question #132Cryptography
PGP, SSL, and IKE are all examples of which type of cryptography?
public key cryptographyPGPSSLIKE - Question #133Scanning Networks
Which of the following is considered as one of the most reliable forms of TCP scanning?
TCP connect scanfull open scanport scanningscan reliability - Question #134Scanning Networks
Which of the following scanning method splits the TCP header into several packets and makes it difficult for packet filters to detect the purpose of the packet?
IP fragmentationSYN/FIN scanpacket filter evasionTCP header splitting - Question #135Sniffing
Which of the following is the BEST way to defend against network sniffing?
sniffing countermeasuresencryption protocolsnetwork defensedata confidentiality - Question #136Scanning Networks
You perform a scan of your company's network and discover that TCP port 123 is open. What services by default run on TCP port 123?
port 123NTPservice identificationwell-known ports - Question #137Scanning Networks
Based on the below log, which of the following sentences are true? Mar 1, 2016, 7:33:28 AM 10.240.250.23 ?54373 10.249.253.15 - 22 tcp_ip
log analysisSSH port 22client-server identificationnetwork traffic analysis - Question #138Scanning Networks
You have successfully comprised a server having an IP address of 10.10.0.5. You would like to enumerate all machines in the same network quickly. What is the best nmap command you...
nmapfast scan -Fsubnet enumerationnetwork discovery - Question #139Hacking Wireless Networks
........is an attack type for a rogue Wi-Fi access point that appears to be a legitimate one offered on the premises, but actually has been set up to eavesdrop on wireless communic...
evil twin attackrogue access pointwireless eavesdroppingphishing via Wi-Fi - Question #140Enumeration
DNS cache snooping is a process of determining if the specified resource address is present in the DNS cache records. It may be useful during the examination of the network to dete...
DNS cache snoopingnslookup non-recursiveDNS enumerationcache inspection - Question #141Malware Threats
You are working as a Security Analyst in a company XYZ that owns the whole subnet range of 23.0.0.0/8 and 192.168.0.0/8. While monitoring the data, you find a high number of outbou...
botnetC&C servernetwork monitoringcompromised hosts - Question #142SQL Injection
Which of the following is an adaptive SQL Injection testing technique used to discover coding errors by inputting massive amounts of random data and observing the changes in the ou...
fuzzingSQL injection testingdynamic testingrandom data input - Question #143Hacking Web Servers
Some clients of TPNQM SA were redirected to a malicious site when they tried to access the TPNQM main site. Bob, a system administrator at TPNQM SA, found that they were victims of...
DNS cache poisoningDNSSECDNS securitymitigation - Question #144Cryptography
In which of the following password protection technique, random strings of characters are added to the password before calculating their hashes?
saltingpassword hashingcryptographic saltpassword protection - Question #145Evading IDS, Firewalls, and Honeypots
You have successfully gained access to a Linux server and would like to ensure that the succeeding outgoing traffic from this server will not be caught by Network-Based Intrusion D...
NIDS evasionencryptionIDS bypasstraffic obfuscation - Question #146Evading IDS, Firewalls, and Honeypots
What is the purpose of a demilitarized zone on a network?
DMZnetwork segmentationfirewallnetwork architecture - Question #147Hacking Web Servers
You need to deploy a new web-based software package for your organization. The package requires three separate servers and needs to be available on the Internet. What is the recomm...
three-tier architecturenetwork segmentationserver placementDMZ - Question #148Evading IDS, Firewalls, and Honeypots
The security administrator of ABC needs to permit Internet traffic in the host 10.0.0.2 and UDP traffic in the host 10.0.0.3. He also needs to permit all FTP traffic to the rest of...
ACLpacket filteringfirewall rulesimplicit deny - Question #149Sniffing
When conducting a penetration test, it is crucial to use all means to get all available information about the target network. One of the ways to do that is by sniffing the network....
passive sniffingactive sniffingtraffic capturenetwork monitoring - Question #150Hacking Web Applications
A company's Web development team has become aware of a certain type of security vulnerability in their Web software. To mitigate the possibility of this vulnerability being exploit...
cross-site scriptingXSSinput validationHTML injection