Browse Exams Pricing

Exams312-50V13Questions

312-50V13 Exam Questions

626 real 312-50V13 exam questions with expert-verified answers and explanations. Page 3 of 13.

Question #101Sniffing
Susan has attached to her company's network. She has managed to synchronize her boss's sessions with that of the file server. She then intercepted his traffic destined for the serv...
Man-in-the-Middletraffic interceptionsession manipulation
Question #102Sniffing
Eric has discovered a fantastic package of tools named Dsniff on the Internet. He has learnt to use these tools in his lab and is now ready for real world exploitation. He was able...
Man-in-the-MiddleDsnifftraffic interception
Question #103System Hacking
Eve is spending her day scanning the library computers. She notices that Alice is using a computer whose port 445 is active and listening. Eve uses the ENUM tool to enumerate Alice...
SMB enumerationpassword crackingAdministrator account
Question #104Introduction to Ethical Hacking
Which of the following represents the initial two commands that an IRC client sends to join an IRC network?
IRC protocolnetwork protocolsclient registration
Question #105Hacking Web Applications
Study the following log extract and identify the attack.
directory traversalUnicode encodingweb application vulnerabilities
Question #106Enumeration
Null sessions are un-authenticated connections (not using a username or password.) to an NT or 2000 system. Which TCP and UDP ports must you filter to check null sessions on your n...
null sessionSMB/CIFSport 139port 445
Question #107System Hacking
The following is an entry captured by a network IDS. You are assigned the task of analyzing this entry. You notice the value 0x90, which is the most common NOOP instruction for the...
Buffer OverflowShellcodeNOP SledIDS Analysis
Question #108System Hacking
Based on the following extract from the log of a compromised machine, what is the hacker really trying to steal? c:\> cmd /c type c:\winnt\repair\sam > c:\har.txt Volume in drive C...
SAM fileCredential theftLog analysisData exfiltration
Question #109Vulnerability Analysis
As a securing consultant, what are some of the things you would recommend to a company to ensure DNS security?
DNS securitysplit-horizon DNSzone transfer restrictionserver hardening
Question #110Footprinting and Reconnaissance
Why would you consider sending an email to an address that you know does not exist within the company you are performing a Penetration Test for?
email reconnaissanceNDR analysisSMTP enumerationfootprinting
Question #111Sniffing
What tool can crack Windows SMB passwords simply by listening to network traffic?
password crackingSMB passwordnetwork sniffingL0phtcrack
Question #112Sniffing
A network admin contacts you. He is concerned that ARP spoofing or poisoning might occur on his network. What are some things he can do to prevent it? Select the best answers.
ARP spoofing mitigationport securityARPwatchstatic ARP
Question #113Enumeration
Peter, a Network Administrator, has come to you looking for advice on a tool that would help him perform SNMP enquires over the network. Which of these tools would do the SNMP enum...
SNMP EnumerationNetwork Scanning ToolsInformation Gathering
Question #114System Hacking
If a token and 4-digit personal identification number (PIN) are used to access a computer system and the token performs off-line checking for the correct PIN, what type of attack i...
brute force attackoffline crackingPIN security
Question #115System Hacking
Bob is doing a password assessment for one of his clients. Bob suspects that security policies are not in place. He also suspects that weak passwords are probably the norm througho...
password crackingkeyloggersnetwork sniffingcredential theft
Question #116Malware Threats
Study the snort rule given below: From the options below, choose the exploit against which this rule applies.
Snort ruleMS Blasterworm detectionIDS
Question #117Cryptography
Which of the following algorithms can be used to guarantee the integrity of messages being sent, in transit, or stored?
hashing algorithmsmessage integritycryptographic principles
Question #118Sniffing
A user on your Windows 2000 network has discovered that he can use L0phtcrack to sniff the SMB exchanges which carry user logons. The user is plugged into a hub with 23 other syste...
KerberosSMB sniffingWindows authenticationnetwork sniffing
Question #119System Hacking
You are attempting to crack LM Manager hashed from Windows 2000 SAM file. You will be using LM Brute force hacking tool for decryption. What encryption algorithm will you be decryp...
LM hashDESpassword crackingWindows SAM
Question #120System Hacking
In the context of password security, a simple dictionary attack involves loading a dictionary file (a text file full of dictionary words) into a cracking application such as L0phtC...
password crackingdictionary attackbrute-force attackhybrid attack
Question #121System Hacking
What is the algorithm used by LM for Windows2000 SAM?
LM hashDESWindows SAMhashing algorithm
Question #122Introduction to Ethical Hacking
E-mail scams and mail fraud are regulated by which of the following?
cybercrime lawscomputer fraudmail fraudlegal regulations
Question #123System Hacking
Which of the following LM hashes represent a password of less than 8 characters? (Choose two.)
LM hash weaknessespassword lengthhash analysisWindows passwords
Question #124Malware Threats
Which of the following is the primary objective of a rootkit?
rootkitmalwarestealth techniquessystem compromise
Question #125System Hacking
This kind of password cracking method uses word lists in combination with numbers and special characters:
password crackinghybrid attackwordlist attacks
Question #126Malware Threats
_________ is a tool that can hide processes from the process list, can hide files, registry entries, and intercept keystrokes.
rootkitmalwareprocess hidingstealth
Question #127Malware Threats
What is the BEST alternative if you discover that a rootkit has been installed on one of your computers?
rootkit remediationincident responsesystem recoverymalware removal
Question #128Denial-of-Service
What do Trinoo, TFN2k, WinTrinoo, T-Sight, and Stracheldraht have in common?
DDoS toolsTrinooTFN2kdistributed denial of service
Question #129System Hacking
How can you determine if an LM hash you extracted contains a password that is less than 8 characters long?
LM hash weaknessespassword lengthhash analysisWindows passwords
Question #130System Hacking
When discussing passwords, what is considered a brute force attack?
brute-force attackpassword crackingpassword security
Question #131System Hacking
Which of the following are well known password-cracking programs?
password cracking toolsL0phtcrackJohn the Ripper
Question #132Cryptography
Password cracking programs reverse the hashing process to recover passwords. (True/False.)
hashingpassword crackingcryptographic principlesone-way functions
Question #133Evading IDS, Firewalls, and Honeypots
While examining audit logs, you discover that people are able to telnet into the SMTP server on port 25. You would like to block this, though you do not see any evidence of an atta...
network securityfirewall rulesSMTPservice hardening
Question #134System Hacking
Windows LAN Manager (LM) hashes are known to be weak. Which of the following are known weaknesses of LM? (Choose three.)
LM hash weaknessespassword securityDESnetwork authentication
Question #135System Hacking
You have retrieved the raw hash values from a Windows 2000 Domain Controller. Using social engineering, you come to know that they are enforcing strong passwords. You understand th...
password crackinghybrid attackpassword policyWindows security
Question #136Sniffing
An attacker runs netcat tool to transfer a secret file between two hosts. He is worried about information being sniffed on the network. How would the attacker use netcat to encrypt...
netcatcryptcatdata encryptionsniffing evasion
Question #138Footprinting and Reconnaissance
Fingerprinting an Operating System helps a cracker because:
OS fingerprintingreconnaissancevulnerability identification
Question #139Enumeration
In the context of Windows Security, what is a 'null' user?
Windows securitynull sessionuser accounts
Question #140System Hacking
What does the following command in netcat do? nc l u p55555 < /etc/passwd
netcatUDPfile transferlinux commands
Question #141Session Hijacking
What hacking attack is challenge/response authentication used to prevent?
challenge/responseauthenticationreplay attacks
Question #142Social Engineering
In this attack, a victim receives an e-mail claiming from PayPal stating that their account has been disabled and confirmation is required before activation. The attackers then sca...
phishingsocial engineeringemail securitysecurity awareness
Question #143Session Hijacking
Bob is going to perform an active session hijack against Brownies Inc. He has found a target that allows session oriented connections (Telnet) and performs the sequence prediction...
session hijackingTCP sequence predictionactive attack
Question #144Malware Threats
ViruXine.W32 virus hides their presence by changing the underlying executable code. This Virus code mutates while keeping the original algorithm intact, the code changes itself eac...
malwarepolymorphic virusvirus evasion
Question #145Introduction to Ethical Hacking
Identify the correct terminology that defines the above statement.
penetration testingsecurity assessmentvulnerability assessment
Question #146Sniffing
Nathan is testing some of his network devices. Nathan is using Macof to try and flood the ARP cache of these switches. If these switches' ARP cache is successfully flooded, what wi...
MAC floodingARP cache poisoningswitch security
Question #147System Hacking
You are programming a buffer overflow exploit and you want to create a NOP sled of 200 bytes in the program exploit.c What is the hexadecimal value of NOP instruction?
buffer overflowNOP sledexploit development
Question #148Sniffing
This TCP flag instructs the sending system to transmit all buffered data immediately.
TCP flagsnetwork protocolsPSH flag
Question #149Evading IDS, Firewalls, and Honeypots
The network administrator at Spears Technology, Inc has configured the default gateway Cisco router's access-list as below: You are hired to conduct security testing on their netwo...
SNMPaccess listsnetwork reconnaissancespoofing
Question #150Evading IDS, Firewalls, and Honeypots
You work for Acme Corporation as Sales Manager. The company has tight network security restrictions. You are trying to steal data from the company's Sales database (Sales.xls) and...
data exfiltrationsteganographycovert channelsnetwork monitoring bypass
Question #151Evading IDS, Firewalls, and Honeypots
Study the snort rule given below and interpret the rule. alert tcp any any --> 192.168.1.0/24 111 (content:"|00 01 86 a5|"; msG. "mountd access";)
Snort rulesIDSnetwork intrusion detectionTCP

PreviousPage 3 of 13Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.