312-50V11 Practice Questions
1,039 real 312-50V11 exam questions with expert-verified answers and explanations. Page 6 of 21.
- Question #251Malware Threats
Nation-state threat actors often discover vulnerabilities and hold on to them until they want to launch a sophisticated attack. The Stuxnet attack was an unprecedented style of att...
zero-day vulnerabilityStuxnetAPTnation-state attacks - Question #252System Hacking
It is a vulnerability in GNU's bash shell, discovered in September of 2014, that gives attackers access to run remote commands on a vulnerable system. The malicious software can ta...
Shellshockbash vulnerabilityremote code executionCVE-2014-6271 - Question #253Social Engineering
When you return to your desk after a lunch break, you notice a strange email in your inbox. The sender is someone you did business with recently, but the subject line has strange c...
phishingemail securityincident responsesocial engineering awareness - Question #254Sniffing
The network administrator contacts you and tells you that she noticed the temperature on the internal wireless router increases by more than 20% during weekend hours when the offic...
Wiresharkpacket capturenetwork traffic analysiswireless monitoring - Question #255Information Security and Ethical Hacking Fundamentals
Which of the following is considered an acceptable option when managing a risk?
risk managementrisk mitigationrisk response optionsacceptable risk - Question #256Cryptography
Which security control role does encryption meet?
encryptionpreventative controlsecurity control typescryptography role - Question #257Evading IDS, Firewalls, and Honeypots
Which type of access control is used on a router or firewall to limit network activity?
rule-based access controlfirewall ACLnetwork access controlrouter security - Question #258Enumeration
At a Windows Server command prompt, which command could be used to list the running services?
Windows sc commandservice enumerationWindows administrationcommand-line tools - Question #259Social Engineering
A security consultant decides to use multiple layers of anti-virus defense, such as end user desktop anti- virus and E-mail gateway. This approach can be used to mitigate which kin...
defense in depthanti-virus layeringsocial engineering mitigationemail gateway security - Question #260Vulnerability Analysis
Which of the following resources does NMAP need to be used as a basic vulnerability scanner covering several vectors like SMB, HTTP and FTP?
NMAP scripting engineNSEvulnerability scanningSMB HTTP FTP vectors - Question #261Vulnerability Analysis
Which of the following scanning tools is specifically designed to find potential exploits in Microsoft Windows products?
MBSAvulnerability scanningWindows securitysecurity tools - Question #262Information Security and Ethical Hacking Fundamentals
When creating a security program, which approach would be used if senior management is supporting and enforcing the security policy?
security policytop-down approachmanagement supportsecurity program - Question #263Information Security and Ethical Hacking Fundamentals
Which of the following processes evaluates the adherence of an organization to its stated security policy?
security auditingcompliancesecurity policyassessment types - Question #264Information Security and Ethical Hacking Fundamentals
A security consultant is trying to bid on a large contract that involves penetration testing and reporting. The company accepting bids wants proof of work so the consultant prints...
ethicsconfidentialityprofessional conductpenetration testing - Question #265Information Security and Ethical Hacking Fundamentals
Which type of scan is used on the eye to measure the layer of blood vessels?
biometricsretinal scanauthenticationphysical security - Question #266Information Security and Ethical Hacking Fundamentals
What is the main reason the use of a stored biometric is vulnerable to an attack?
biometricsstored credentialsidentity theftauthentication weakness - Question #267Hacking Wireless Networks
During a wireless penetration test, a tester detects an access point using WPA2 encryption. Which of the following attacks should be used to obtain the key?
WPA2handshake capturewireless cracking802.11i - Question #268Hacking Wireless Networks
Which type of antenna is used in wireless communication?
wireless antennasomnidirectionalRF propagationwireless hardware - Question #269Information Security and Ethical Hacking Fundamentals
What is the name of the international standard that establishes a baseline level of confidence in the security functionality of IT products by providing a set of requirements for e...
Common Criteriasecurity standardsIT evaluationsecurity framework - Question #270Information Security and Ethical Hacking Fundamentals
One way to defeat a multi-level security solution is to leak data via
covert channelmulti-level securitydata leakagesecurity bypass - Question #271Hacking Web Applications
Which of the following conditions must be given to allow a tester to exploit a Cross-Site Request Forgery (CSRF) vulnerable web application?
CSRFrandom tokenssession managementweb application security - Question #272SQL Injection
What is the main difference between a "Normal" SQL Injection and a "Blind" SQL Injection vulnerability?
blind SQL injectionerror messagesSQL injection typesdatabase security - Question #273SQL Injection
During a penetration test, a tester finds a target that is running MS SQL 2000 with default credentials. The tester assumes that the service is running with Local System account. H...
xp_cmdshellMS SQLstored proceduresdefault credentials - Question #274Information Security and Ethical Hacking Fundamentals
The precaution of prohibiting employees from bringing personal computing devices into a facility is what type of security control?
security controlsprocedural controlBYOD policyphysical security - Question #275System Hacking
A pentester gains access to a Windows application server and needs to determine the settings of the built- in Windows firewall. Which command would be used?
Windows firewallnetshpost-exploitationfirewall enumeration - Question #276Information Security and Ethical Hacking Fundamentals
In the software security development life cycle process, threat modeling occurs in which phase?
threat modelingSDLCdesign phasesoftware security - Question #277Evading IDS, Firewalls, and Honeypots
A network administrator received an administrative alert at 3:00 a.m. from the intrusion detection system. The alert was generated because a large number of packets were coming int...
false positivesIDSintrusion detectionalert classification - Question #278Vulnerability Analysis
Which of the following techniques does a vulnerability scanner use in order to detect a vulnerability on a target service?
vulnerability scanningservice response analysisdetection techniquesbanner grabbing - Question #279Vulnerability Analysis
Which of the following business challenges could be solved by using a vulnerability scanner?
vulnerability scannercompliance testingsecurity assessmentbusiness use cases - Question #280Information Security and Ethical Hacking Fundamentals
A security policy will be more accepted by employees if it is consistent and has the support of
security policyexecutive managementpolicy enforcementorganizational security - Question #281System Hacking
A company has hired a security administrator to maintain and administer Linux and Windows- based systems. Written in the nightly report file is the following: - Firewall log files...
log tamperingcovering tracksincident responsefirewall logs - Question #282Information Security and Ethical Hacking Fundamentals
Which type of scan measures a person's external features through a digital video camera?
biometricsfacial recognitionauthentication typesphysical security - Question #283Hacking Wireless Networks
WPA2 uses AES for wireless data encryption at which of the following encryption levels?
WPA2AESCCMPwireless encryption - Question #284System Hacking
An attacker uses a communication channel within an operating system that is neither designed nor intended to transfer information. What is the name of the communications channel?
covert channelinformation hidingOS communicationdata exfiltration - Question #285SQL Injection
What technique is used to perform a Connection Stream Parameter Pollution (CSPP) attack?
CSPPconnection string injectionparameter injectionsemicolon separator - Question #286Vulnerability Analysis
A newly discovered flaw in a software application would be considered which kind of security vulnerability?
zero-day vulnerabilityvulnerability typessoftware flawpatch management - Question #287Hacking Web Applications
During a penetration test, a tester finds that the web application being analyzed is vulnerable to Cross Site Scripting (XSS). Which of the following conditions must be met to expl...
XSSHttpOnly flagsession cookiescross-site scripting - Question #288Evading IDS, Firewalls, and Honeypots
The use of alert thresholding in an IDS can reduce the volume of repeated alerts, but introduces which of the following vulnerabilities?
IDS evasionalert thresholdingslow scandetection bypass - Question #289Evading IDS, Firewalls, and Honeypots
What is the main advantage that a network-based IDS/IPS system has over a host-based solution?
NIDS vs HIDSnetwork IDShost-based IDSresource usage - Question #290Cryptography
The network administrator for a company is setting up a website with e-commerce capabilities. Packet sniffing is a concern because credit card information will be sent electronical...
HTTPSasymmetric encryptionSSL/TLS certificatee-commerce security - Question #291Evading IDS, Firewalls, and Honeypots
When an alert rule is matched in a network-based IDS like snort, the IDS does which of the following?
SnortIDS rule evaluationalert behaviorpacket processing - Question #292Evading IDS, Firewalls, and Honeypots
Which type of intrusion detection system can monitor and alert on attacks, but cannot stop them?
passive IDSIDS typesintrusion detectionmonitoring vs prevention - Question #293Hacking Wireless Networks
An organization hires a tester to do a wireless penetration test. Previous reports indicate that the last test did not contain management or control packets in the submitted traces...
wireless packet capturemanagement framespromiscuous mode802.11 headers - Question #294Scanning Networks
From the two screenshots below, which of the following is occurring? First one: 1 [10.0.0.253]# nmap -sP 10.0.0.0/24 3 Starting Nmap 5 Host 10.0.0.1 appears to be up. 6 MAC Address...
nmapping scanIP protocol scannetwork reconnaissance - Question #295Sniffing
Pentest results indicate that voice over IP traffic is traversing a network. Which of the following tools will decode a packet capture and extract the voice conversations?
VoIP interceptionpacket captureCainvoice decoding - Question #296Sniffing
Which technical characteristic do Ethereal/Wireshark, TCPDump, and Snort have in common?
libpcappacket capture engineWiresharkTCPDump - Question #297Information Security and Ethical Hacking Fundamentals
Which set of access control solutions implements two-factor authentication?
two-factor authenticationUSB tokenmulti-factor authenticationaccess control - Question #298Cryptography
A security engineer has been asked to deploy a secure remote access solution that will allow employees to connect to the company's internal network. Which of the following can be i...
IPSecMITM preventionsecure remote accessVPN - Question #299Cryptography
A person approaches a network administrator and wants advice on how to send encrypted email from home. The end user does not want to have to pay for any license fees or manage serv...
PGPemail encryptionpublic key cryptographyfree encryption tools - Question #300Cryptography
To send a PGP encrypted message, which piece of information from the recipient must the sender have before encrypting the message?
PGPpublic keyasymmetric encryptionemail encryption