Browse Exams Pricing

Exams312-50V13Questions

312-50V13 Exam Questions

626 real 312-50V13 exam questions with expert-verified answers and explanations. Page 2 of 13.

Question #51Vulnerability Analysis
What is the role of test automation in security testing?
Security testingTest automationVulnerability assessmentPenetration testing
Question #52Introduction to Ethical Hacking
Your company performs penetration tests and security assessments for small and medium-sized business in the local area. During a routine security assessment, you discover informati...
Ethical hackingLegal implicationsProfessional ethicsIncident reporting
Question #53Hacking Web Applications
While using your bank's online servicing you notice the following string in the URL bar: 1" You observe that if you modify the Damount & Camount values and submit the request, that...
Web application securityParameter tamperingURL manipulationInput validation
Question #54Scanning Networks
The establishment of a TCP connection involves a negotiation called three-way handshake. What type of message does the client send to the server in order to begin this negotiation?
TCP/IPThree-way handshakeSYN packetNetwork protocols
Question #55Introduction to Ethical Hacking
Which type of security feature stops vehicles from crashing through the doors of a building?
Physical securityFacility securityBollardsAccess control
Question #56Cryptography
The company ABC recently contracts a new accountant. The accountant will be working with the financial statements. Those financial statements need to be approved by the CFO and the...
data integrityhashingcryptographic principles
Question #57Evading IDS, Firewalls, and Honeypots
What is the purpose of a demilitarized zone on a network?
DMZnetwork architecturenetwork securityfirewall
Question #58Footprinting and Reconnaissance
Which of the following Linux commands will resolve a domain name into IP address?
DNS lookuphost commandLinux commandsreconnaissance tools
Question #59Vulnerability Analysis
Shellshock allowed an unauthorized user to gain access to a server. It affected many Internet- facing services, which OS did it not directly affect?
Shellshockvulnerabilityoperating systemsBash
Question #60Introduction to Ethical Hacking
Which regulation defines security and privacy controls for Federal information systems and organizations?
Security RegulationsNISTComplianceFederal Information Systems
Question #61Cryptography
What is a "Collision attack" in cryptography?
collision attackhashingcryptographic attacksdata integrity
Question #62Footprinting and Reconnaissance
Which of the following tools can be used for passive OS fingerprinting?
OS fingerprintingpassive reconnaissancetcpdumpnetwork analysis tools
Question #63Malware Threats
Which of the following describes the characteristics of a Boot Sector Virus?
boot sector virusmalware typesMBRvirus infection
Question #64Vulnerability Analysis
Your company was hired by a small healthcare provider to perform a technical assessment on the network. What is the best approach for discovering vulnerabilities on a Windows-based...
vulnerability scanningNessusvulnerability assessment toolsWindows security
Question #65Sniffing
Which of the following is a command line packet analyzer similar to GUI-based Wireshark?
Packet analyzertcpdumpNetwork toolsCommand-line tools
Question #66Sniffing
DHCP snooping is a great solution to prevent rogue DHCP servers on your network. Which security feature on switchers leverages the DHCP snooping database to help prevent man-in-the...
DHCP snoopingDynamic ARP Inspection (DAI)Man-in-the-middle (MITM)Layer 2 security
Question #67System Hacking
Bob, a network administrator at BigUniversity, realized that some students are connecting their notebooks in the wired network to have Internet access. In the university campus, th...
network access control802.1Xport securitynetwork segmentationBYOD
Question #68Sniffing
A company's policy requires employees to perform file transfers using protocols which encrypt traffic. You suspect some employees are still performing file transfers using unencryp...
Wiresharkpacket analysisFTPunencrypted protocolssniffing
Question #69Evading IDS, Firewalls, and Honeypots
You just set up a security system in your network. In what kind of system would you find the following string of characters used as a rule within its configuration? alert tcp any a...
IDS rulesSnortnetwork security monitoringintrusion detection system
Question #70Malware Threats
Which of the following program infects the system boot sector and the executable files at the same time?
multipartite virusmalware typesboot sector virusfile infector virus
Question #71Vulnerability Analysis
To determine if a software program properly handles a wide range of invalid input, a form of automated testing can be used to randomly generate invalid input in an attempt to crash...
fuzzingsoftware testingvulnerability testinginput validation
Question #72Sniffing
An Intrusion Detection System (IDS) has alerted the network administrator to a possibly malicious sequence of packets sent to a Web server in the network's external DMZ. The packet...
protocol analyzerpacket analysisPCAP analysisWiresharkIDS alerts
Question #73Cryptography
The Heartbleed bug was discovered in 2014 and is widely referred to under MITRE's Common Vulnerabilities and Exposures (CVE) as CVE-2014-0160. This bug affects the OpenSSL implemen...
HeartbleedOpenSSL vulnerabilityprivate keyTLS/SSLcryptographic attacks
Question #74Hacking Web Servers
Why should the security analyst disable/remove unnecessary ISAPI filters?
ISAPI filtersweb server securityattack surface reductionIIS hardening
Question #75Introduction to Ethical Hacking
Which of the following is a component of a risk assessment?
risk assessmentsecurity controlsadministrative safeguardsinformation security management
Question #76Social Engineering
CompanyXYZ has asked you to assess the security of their perimeter email gateway. From your office in New York, you craft a specially formatted email message and send it across the...
Email SpoofingEmail SecuritySocial EngineeringPerimeter Security
Question #77Introduction to Ethical Hacking
Bob, a system administrator at TPNQM SA, concluded one day that a DMZ is not needed if he properly configures the firewall to allow access just to servers/ports, which can have dir...
DMZfirewallnetwork segmentationstateful firewall
Question #78Introduction to Ethical Hacking
Bob is acknowledged as a hacker of repute and is popular among visitors of "underground" sites. Bob is willing to share his knowledge with those who are willing to learn, and many...
security educationethical hackingknowledge sharingsecurity awareness
Question #79System Hacking
Peter extracts the SIDs list from Windows 2000 Server machine using the hacking tool "SIDExtractor". Here is the output of the SIDs: From the above list identify the user account w...
Windows SIDssystem administrationprivilege escalationuser accounts
Question #80Introduction to Ethical Hacking
Which address translation scheme would allow a single public IP address to always correspond to a single machine on an internal network, allowing "server publishing"?
NATstatic NATnetwork addressingserver publishing
Question #81Enumeration
What is the following command used for? net use \targetipc$ "" /u:""
net usenull sessionSMB enumerationWindows hacking
Question #82Scanning Networks
What is the proper response for a NULL scan if the port is closed?
NULL scanTCP flagsport scanningRST packet
Question #83Footprinting and Reconnaissance
One of your team members has asked you to analyze the following SOA record. What is the TTL? Rutgers.edu.SOA NS1.Rutgers.edu ipad.college.edu (200302028 3600 3600 604800 2400.)
DNS RecordsSOA RecordTTLFootprinting
Question #84Footprinting and Reconnaissance
One of your team members has asked you to analyze the following SOA record. What is the version? Rutgers.edu.SOA NS1.Rutgers.edu ipad.college.edu (200302028 3600 3600 604800 2400.)...
DNS recordsSOA recordzone transferserial number
Question #85Footprinting and Reconnaissance
MX record priority increases as the number increases. (True/False.)
MX recordDNS recordsemail routingpriority
Question #86Footprinting and Reconnaissance
Which of the following tools can be used to perform a zone transfer?
zone transferDNS toolsNSLookupDig
Question #87Footprinting and Reconnaissance
Under what conditions does a secondary name server request a zone transfer from a primary name server?
zone transfersecondary DNSSOA recordDNS synchronization
Question #88Evading IDS, Firewalls, and Honeypots
What ports should be blocked on the firewall to prevent NetBIOS traffic from not coming through the firewall if your network is comprised of Windows NT, 2000, and XP?
NetBIOSfirewall rulesport blockingWindows networking
Question #89Scanning Networks
What is a NULL scan?
NULL scanTCP flagsport scanning
Question #90Scanning Networks
What is the proper response for a NULL scan if the port is open?
NULL scanTCP flagsport scanningno response
Question #91Footprinting and Reconnaissance
Which of the following statements about a zone transfer is correct? (Choose three.)
zone transferDNSTCP port 53zone information
Question #92Footprinting and Reconnaissance
You have the SOA presented below in your Zone. Your secondary servers have not been able to contact your primary server to synchronize information. How long will the secondary serv...
SOA recordzone transferDNS synchronizationrefresh interval
Question #93Footprinting and Reconnaissance
Tess King is using the nslookup command to craft queries to list all DNS information (such as Name Servers, host names, MX records, CNAME records, glue records (delegation for chil...
nslookupDNS informationzone transferreconnaissance
Question #94Footprinting and Reconnaissance
A zone file consists of which of the following Resource Records (RRs)?
DNS recordszone fileSOANSA
Question #95System Hacking
Let's imagine three companies (A, B and C), all competing in a challenging global environment. Company A and B are working together in developing a product that will generate a maj...
DNS spoofingDNS securityanti-spoofingDNSSEC
Question #96Footprinting and Reconnaissance
Which DNS resource record can indicate how long any "DNS poisoning" could last?
DNS poisoningSOA recordTTLDNS security
Question #97Sniffing
Joseph was the Web site administrator for the Mason Insurance in New York, who's main Web the Web site. One night, Joseph received an urgent phone call from his friend, Smith. Acco...
DNS poisoningwebsite defacementcache poisoning
Question #98Enumeration
Which of the following tools are used for enumeration? (Choose three.)
Windows enumerationSID mappingsecurity auditing tools
Question #99Enumeration
What did the following commands determine?
Windows enumerationSID lookupadministrator identification
Question #100Evading IDS, Firewalls, and Honeypots
Which definition among those given below best describes a covert channel?
covert channeldata exfiltrationprotocol misuse

PreviousPage 2 of 13Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.