312-50V13 Exam Questions
626 real 312-50V13 exam questions with expert-verified answers and explanations. Page 4 of 13.
- Question #152Enumeration
What port number is used by LDAP protocol?
LDAPport numbersnetwork protocols - Question #153Session Hijacking
Fred is the network administrator for his company. Fred is testing an internal switch. From an external IP address, Fred wants to try and trick this switch into thinking it already...
TCP sessionSYN/ACKpacket craftingnetwork attacks - Question #154Social Engineering
Within the context of Computer Security, which of the following statements describes Social Engineering best?
social engineeringhuman hackinginformation gathering - Question #155Malware Threats
In Trojan terminology, what is a covert channel?
covert channelTrojanmalwaredata exfiltration - Question #156Denial-of-Service
When a normal TCP connection starts, a destination host receives a SYN (synchronize/start) packet from a source host and sends back a SYN/ACK (synchronize acknowledge). The destina...
TCP handshakeSYN floodDenial-of-Servicepacket spoofing - Question #157Introduction to Ethical Hacking
Yancey is a network security administrator for a large electric company. This company provides power for over 100, 000 people in Las Vegas. Yancey has worked for his company for ov...
hacker typesinsider threatmalicious intentlogic bomb - Question #158Social Engineering
You receive an e-mail like the one shown below. When you click on the link contained in the mail, you are redirected to a website seeking you to download free Anti-Virus software....
PhishingSocial engineeringMalwareWebsite verification - Question #159Introduction to Ethical Hacking
Every company needs a formal written document which spells out to employees precisely what they are allowed to use the company's systems for, what is prohibited, and what will happ...
Security policyAcceptable Use PolicyInformation security governance - Question #160Hacking Web Applications
Take a look at the following attack on a Web Server using obstructed URL: How would you protect from these attacks?
Web server securityURL encodingIDS rulesObfuscation - Question #161Sniffing
Which type of sniffing technique is generally referred as MiTM attack?
MiTM attackARP poisoningNetwork sniffing - Question #162Sniffing
Switches maintain a CAM Table that maps individual MAC addresses on the network to physical ports on the switch. In MAC flooding attack, a switch is fed with many Ethernet frames,...
MAC floodingCAM tableSwitch securityNetwork sniffing - Question #163Social Engineering
You went to great lengths to install all the necessary technologies to prevent hacking attacks, such as expensive firewalls, antivirus software, anti-spam systems and intrusion det...
Human factorSecurity awarenessSocial engineeringWeakest link - Question #164Denial-of-Service
How does a denial-of-service attack work?
Denial of ServiceNetwork attackService disruption - Question #165Social Engineering
You are trying to break into a highly classified top-secret mainframe computer with highest security system in place at Merclyn Barley Bank located in Los Angeles. You know that co...
Social engineeringPenetration testingHuman elementTarget selection - Question #166Hacking Web Applications
This is an attack that takes advantage of a web site vulnerability in which the site displays content that includes un-sanitized user-provided data. What is this attack?
Cross-site scripting (XSS)Web application vulnerabilitiesInput validation - Question #167Scanning Networks
Which utility will tell you in real time which ports are listening or in another state?
Port monitoringNetwork utilitiesSystem monitoringNetstat - Question #168Scanning Networks
During an Xmas scan what indicates a port is closed?
Xmas scanPort scanningTCP flagsNetwork reconnaissance - Question #169System Hacking
Matthew, a black hat, has managed to open a meterpreter session to one of the kiosk machines in Evil Corp's lobby. He checks his current SID, which is S-1-5-21-1223352397-187288382...
Privilege escalationMeterpreterPost-exploitationWindows security - Question #170Enumeration
An LDAP directory can be used to store information similar to a SQL database. LDAP uses a _____ database structure instead of SQL's _____ structure. Because of this, LDAP has diffi...
LDAPSQLDatabase structureHierarchical database - Question #171SQL Injection
Elliot is in the process of exploiting a web application that uses SQL as a back-end database. He's determined that the application is vulnerable to SQL injection, and has introduc...
SQL injectionBlind SQL injectionTiming attackWeb application hacking - Question #172Introduction to Ethical Hacking
John is an incident handler at a financial institution. His steps in a recent incident are not up to the standards of the company. John frequently forgets some steps and procedures...
Incident HandlingIncident ResponseChecklistsProcess Improvement - Question #173Enumeration
You are performing a penetration test for a client and have gained shell access to a Windows machine on the internal network. You intend to retrieve all DNS records for the interna...
DNS zone transferNslookupNetwork reconnaissanceWindows command line - Question #174Cryptography and PKI / Implementing Secure Protocols and Tools
OpenSSL on Linux servers includes a command line tool for testing TLS. What is the name of the tool and the correct syntax to connect to a web server?
TLS/SSLOpenSSLLinux command lineNetwork security tools - Question #175Footprinting and Reconnaissance
What is the purpose of DNS AAAA record?
DNSAAAA recordIPv6Network protocols - Question #176Evading IDS, Firewalls, and Honeypots
Tremp is an IT Security Manager, and he is planning to deploy an IDS in his small company. He is looking for an IDS with the following characteristics: - Verifies success or failur...
IDSHost-based IDS (HIDS)Intrusion detectionSecurity monitoring - Question #177Malware Threats
What kind of detection techniques is being used in antivirus softwares that identifies malware by collecting data from multiple protected systems and instead of analyzing files loc...
AntivirusMalware detectionCloud-based securityVCloud - Question #178Vulnerability Analysis
Gavin owns a white-hat firm and is performing a website security audit for one of his clients. He begins by running a scan which looks for common misconfigurations and outdated sof...
NiktoWeb scanningVulnerability assessmentMisconfigurations - Question #179Evading IDS, Firewalls, and Honeypots
Which of the following statements is FALSE with respect to Intrusion Detection Systems?
IDSEncrypted trafficNetwork securityIntrusion Detection Systems - Question #180Scanning Networks
While scanning with Nmap, Patin found several hosts which have the IP ID of incremental kiosk.adobe.com is the host with incremental IP ID sequence. What is the purpose of using "-...
NmapIdle ScanPort ScanningIP ID Sequence - Question #181Enumeration
Which command can be used to show the current TCP/IP connections?
NetstatTCP/IP connectionsNetworking commandsCommand-line tools - Question #182Sniffing
You are analysing traffic on the network with Wireshark. You want to routinely run a cron job which will run the capture against a specific set of IPs - 192.168.8.0/24. What comman...
TsharkPacket captureNetwork analysisBPF filters - Question #183Scanning Networks
You are tasked to configure the DHCP server to lease the last 100 usable IP addresses in subnet to. 1.4.0/23. Which of the following IP addresses could be teased as a result of the...
SubnettingIP addressingDHCPNetwork configuration - Question #184System Hacking
You have successfully logged on a Linux system. You want to now cover your trade Your login attempt may be logged on several files located in /var/log. Which file does NOT belongs...
Linux logsLog analysisPost-exploitationEvidence evasion - Question #185Introduction to Ethical Hacking
The tools which receive event logs from servers, network equipment, and applications, and perform analysis and correlation on those logs, and can generate alarms for security relev...
SIEMLog managementSecurity monitoringEvent correlation - Question #186Cryptography
What is the main security service a cryptographic hash provides?
Cryptographic hashIntegrityPreimage resistanceCollision resistance - Question #187Sniffing
A pen tester is configuring a Windows laptop for a test. In setting up Wireshark, what river and library are required to allow the NIC to work in promiscuous mode?
WiresharkWinPcapPromiscuous modePacket capture - Question #188Cryptography
What is one of the advantages of using both symmetric and asymmetric cryptography in SSL/TLS?
Cryptography basicsSSL/TLS protocolSymmetric encryptionAsymmetric encryption - Question #189Vulnerability Analysis
When a security analyst prepares for the formal security assessment - what of the following should be done in order to determine inconsistencies in the secure assets database and v...
Security assessmentComplianceVulnerability scanningAsset management - Question #190Cloud Computing
Why containers are less secure that virtual machines?
Container securityVirtualizationHost OSAttack surface - Question #191Introduction to Ethical Hacking
These hackers have limited or no training and know how to use only basic techniques or tools. What kind of hackers are we talking about?
types of hackersscript kiddieshacker classificationsbasic hacking skills - Question #192Introduction to Ethical Hacking
Bob, your senior colleague, has sent you a mail regarding a deal with one of the clients. You are requested to accept the offer and you oblige. After 2 days. Bob denies that he had...
Non-repudiationSecurity principlesEmail securityAuthentication - Question #193Cryptography
In the field of cryptanalysis, what is meant by a "rubber-hose" attack?
CryptanalysisRubber-hose attackCoercion - Question #194Vulnerability Analysis
What type of analysis is performed when an attacker has partial knowledge of inner-workings of the application?
Penetration testingGrey-box testingBlack-box testingWhite-box testing - Question #195Vulnerability Analysis
Which of the following steps for risk assessment methodology refers to vulnerability identification?
Risk Assessment MethodologyVulnerability IdentificationFlaw Detection - Question #196System Hacking
Log monitoring tools performing behavioral analysis have alerted several suspicious logins on a Linux server occurring during non-business hours. After further examination of all l...
NTPTime synchronizationLinux administrationNetwork protocols - Question #197Evading IDS, Firewalls, and Honeypots
What is the minimum number of network connections in a multi homed firewall?
Firewall architectureMulti-homed firewallNetwork segmentationDMZ - Question #198Denial-of-Service
Which of the following DoS tools is used to attack target web applications by starvation of available sessions on the web server? The tool keeps sessions at halt using never-ending...
DoS toolsHTTP POST DoSsession starvationRUDY - Question #199Cryptography
During the process of encryption and decryption, what keys are shared?
CryptographyPublic-key cryptographyKey sharingEncryption/Decryption - Question #200Sniffing
You need a tool that can do network intrusion prevention and intrusion detection, function as a network sniffer, and record network activity, what tool would you most likely select...
IDS/IPSnetwork snifferSnortnetwork monitoring - Question #201Cryptography
How is the public key distributed in an orderly, controlled fashion so that the users can be sure of the sender's identity?
digital certificatesPKIpublic key distributionsender identity