312-50V13 Exam Questions
626 real 312-50V13 exam questions with expert-verified answers and explanations. Page 7 of 13.
- Question #302Session Hijacking
Samuel, a professional hacker, monitored and Intercepted already established traffic between Bob and a host machine to predict Bob's ISN. Using this ISN, Samuel sent spoofed packet...
Session HijackingTCP/IP SpoofingISN PredictionTCP Attacks - Question #303Cryptography
Dorian Is sending a digitally signed email to Polly, with which key is Dorian signing this message and how is Poly validating It?
Digital SignatureAsymmetric CryptographyPrivate KeyPublic Key - Question #304Footprinting and Reconnaissance
Louis, a professional hacker, had used specialized tools or search engines to encrypt all his browsing activity and navigate anonymously to obtain sensitive/hidden information abou...
Dark WebFootprintingAnonymityReconnaissance - Question #305IoT Hacking
An organization has automated the operation of critical infrastructure from a remote location. For this purpose, all the industrial control systems are connected to the Internet. T...
OT SecurityICS SecurityNetwork MonitoringThreat Detection - Question #306System Hacking
By performing a penetration test, you gained access under a user account. During the test, you established a connection with your own machine via the SMB service and occasionally e...
bash historytrace cleanuppost-exploitationLinux commands - Question #307Hacking Mobile Platforms
Don, a student, came across a gaming app in a third-party app store and Installed it. Subsequently, all the legitimate apps in his smartphone were replaced by deceptive application...
mobile malwareAndroid securityapp store securityadware - Question #308Hacking Web Servers
You start performing a penetration test against a specific website and have decided to start from grabbing all the links from the main page. What Is the best Linux pipe to achieve...
web scrapingcommand line toolsreconnaissancelink extraction - Question #309Cryptography
in this form of encryption algorithm, every Individual block contains 64-bit data, and three keys are used, where each key consists of 56 bits. Which is this encryption algorithm?
Encryption AlgorithmBlock CipherTriple DESCryptography Basics - Question #310System Hacking
John, a security analyst, is analyzing a server suspected of being compromised. The attacker has used a non admin account and has already gained a foothold on the system. John disc...
privilege escalationDLL hijackingsystem hackingpost-exploitation - Question #311System Hacking
John, a professional hacker, performs a network attack on a renowned organization and gains unauthorized access to the target network. He remains in the network without being detec...
Advanced Persistent Threat (APT)Data ExfiltrationStealth AttacksNetwork Compromise - Question #312Scanning Networks
To create a botnet. the attacker can use several techniques to scan vulnerable machines. The attacker first collects Information about a large number of vulnerable machines to crea...
Botnet creationNetwork scanningHit-list scanningMalware propagation - Question #313Footprinting and Reconnaissance
You have been authorized to perform a penetration test against a website. You want to use Google dorks to footprint the site but only want results that show file extensions. What G...
Google dorksFootprintingSearch operators - Question #314Session Hijacking
Judy created a forum, one day. she discovers that a user is posting strange images without writing comments. She immediately calls a security expert, who discovers that the followi...
Session HijackingWeb Application SecurityCross-Site ScriptingMalicious Code - Question #315Hacking Wireless Networks
in this attack, an adversary tricks a victim into reinstalling an already-in-use key. This is achieved by manipulating and replaying cryptographic handshake messages. When the vict...
KRACKWPA2 vulnerabilityKey reinstallation attackWireless security - Question #316Evading IDS, Firewalls, and Honeypots
John, a professional hacker, decided to use DNS to perform data exfiltration on a target network, in this process, he embedded malicious data into the DNS protocol packets that eve...
DNS tunnelingFirewall evasionData exfiltrationC2 communication - Question #317Hacking Web Applications
John is investigating web-application firewall logs and observers that someone is attempting to inject the following: What type of attack is this?
Buffer OverflowWeb Application SecurityAttack TypesWAF - Question #318Vulnerability Analysis
A post-breach forensic investigation revealed that a known vulnerability in Apache Struts was to blame for the Equifax data breach that affected 143 million customers. A fix was av...
Patch managementVulnerability managementSecurity processesSoftware vulnerabilities - Question #319Vulnerability Analysis
After an audit, the auditors Inform you that there is a critical finding that you must tackle Immediately. You read the audit report, and the problem is the service running on port...
LDAPNetwork SecurityPort SecurityProtocol Encryption - Question #320Evading IDS, Firewalls, and Honeypots
Kevin, a professional hacker, wants to penetrate CyberTech Inc.'s network. He employed a technique, using which he encoded packets with Unicode characters. The company's IDS cannot...
IDS evasionPacket obfuscationUnicode encodingTraffic concealment - Question #321Cloud Computing
Heather's company has decided to use a new customer relationship management tool. After performing the appropriate research, they decided to purchase a subscription to a cloud-host...
Cloud computingSaaSCloud service models - Question #322Denial-of-Service
A DDOS attack is performed at layer 7 to take down web infrastructure. Partial HTTP requests are sent to the web infrastructure or applications. Upon receiving a partial request, t...
DDoS attackLayer 7 attackSlowlorisApplication-layer DoS - Question #323Hacking Mobile Platforms
Which iOS jailbreaking technique patches the kernel during the device boot so that it becomes jailbroken after each successive reboot?
iOS jailbreakingUntethered jailbreakingMobile device security - Question #324Malware Threats
The network users are complaining because their system are slowing down. Further, every time they attempt to go a website, they receive a series of pop-ups with advertisements. Wha...
AdwareMalware symptomsPop-up adsSystem performance - Question #325Scanning Networks
You are a penetration tester and are about to perform a scan on a specific server. The agreement that you signed with the client contains the following specific condition for the s...
NmapPort ScanningIP SpoofingDecoy Scan - Question #326Footprinting and Reconnaissance
A penetration tester is performing the footprinting process and is reviewing publicly available information about an organization by using the Google search engine. Which of the fo...
FootprintingGoogle dorkingOSINTReconnaissance - Question #327Vulnerability Analysis
Mr. Omkar performed tool-based vulnerability assessment and found two vulnerabilities. During analysis, he found that these issues are not true vulnerabilities. What will you call...
Vulnerability AssessmentFalse PositiveVulnerability ScanningSecurity Terminology - Question #328Scanning Networks
Sam is a penetration tester hired by Inception Tech, a security organization. He was asked to perform port scanning on a target host in the network. While performing the given task...
Port ScanningTCP Maimon ScanNetwork ReconnaissanceTCP Flags - Question #329Sniffing
Based on the below log, which of the following sentences are true? Mar 1, 2016, 7:33:28 AM 10.240.250.23 54373 10.249.253.15 22 tcp_ip
Log analysisSSHPort numbersClient-server model - Question #330Hacking Wireless Networks
You want to analyze packets on your wireless network. Which program would you use?
Wireless networksPacket analysisWiresharkAirpcap - Question #331Sniffing
When conducting a penetration test, it is crucial to use all means to get all available information about the target network. One of the ways to do that is by sniffing the network....
Passive sniffingNetwork sniffingPenetration testing - Question #332Social Engineering
An unauthorized individual enters a building following an employee through the employee entrance after the lunch rush. What type of breach has the individual just performed?
Social engineeringTailgatingPhysical security - Question #333Hacking Wireless Networks
Which of these is capable of searching for and locating rogue access points?
Rogue Access PointsWireless SecurityWIPS - Question #334System Hacking
You are tasked to configure the DHCP server to lease the last 100 usable IP addresses in subnet to 10.1.4.0/23. Which of the following IP addresses could be teased as a result of t...
SubnettingIP AddressingDHCPNetwork Configuration - Question #335Scanning Networks
You want to do an ICMP scan on a remote computer using hping2. What is the proper syntax?
hping2ICMP scanCommand syntaxNetwork scanning - Question #336System Hacking
An Internet Service Provider (ISP) has a need to authenticate users connecting via analog modems, Digital Subscriber Lines (DSL), wireless data services, and Virtual Private Networ...
AAA protocolsRADIUSAuthenticationISP networking - Question #337Evading IDS, Firewalls, and Honeypots
Which of the following options represents a conceptual characteristic of an anomaly-based IDS over a signature-based IDS?
IDSAnomaly-based IDSSignature-based IDSUnknown attacks - Question #338Hacking Web Applications
Cross-site request forgery involves:
CSRFWeb application securityClient-side attacksRequest forgery - Question #339System Hacking
Which of the following is considered an exploit framework and has the ability to perform automated attacks on services, ports, applications and unpatched security flaws in a comput...
Exploit frameworkMetasploitVulnerability exploitationAutomated attacks - Question #340Cryptography
A computer science student needs to fill some information into a secured Adobe PDF job application that was received from a prospective employer. Instead of requesting a new docume...
dictionary attackpassword crackingcryptography attacks - Question #341System Hacking
You are logged in as a local admin on a Windows 7 system and you need to launch the Computer Management Console from command line. Which command would you use?
Windows commandsComputer Management Consolecompmgmt.mscSystem administration - Question #342Evading IDS, Firewalls, and Honeypots
Which of the following scanning method splits the TCP header into several packets and makes it difficult for packet filters to detect the purpose of the packet?
Network ScanningIP FragmentationFirewall EvasionIDS Evasion - Question #343Evading IDS, Firewalls, and Honeypots
You have compromised a server and successfully gained a root access. You want to pivot and pass traffic undetected over the network and evade any possible Intrusion Detection Syste...
IDS EvasionEncryptionCovert CommunicationPost-exploitation - Question #344Malware Threats
A hacker has successfully infected an internet-facing server which he will then use to send junk mail, take part in coordinated attacks, or host junk email content. Which sort of t...
botnettrojanmalwareDDoS attacks - Question #345Cryptography
How can rainbow tables be defeated?
Rainbow tablesPassword securitySaltingHashing - Question #346Introduction to Ethical Hacking
Bob, your senior colleague, has sent you a mail regarding a deal with one of the clients. You are requested to accept the offer and you oblige. After 2 days, Bab denies that he had...
Non-repudiationInformation Security PrinciplesDigital SignaturesEmail Security - Question #347SQL Injection
Attempting an injection attack on a web server based on responses to True/False Questio n:s is called which of the following?
SQL InjectionBlind SQLiInjection AttacksWeb Application Security - Question #348Cryptography
You are the lead cybersecurity analyst at a multinational corporation that uses a hybrid encryption system to secure inter-departmental communications. The system uses RSA encrypti...
CryptographyHybrid EncryptionAESQuantum Algorithms - Question #349Evading IDS, Firewalls, and Honeypots
The security administrator of ABC needs to permit Internet traffic in the host 10.0.0.2 and UDP traffic in the host 10.0.0.3. He also needs to permit all FTP traffic to the rest of...
ACLsfirewall rulesnetwork securitypacket filtering - Question #350Footprinting and Reconnaissance
Which of the following provides a security professional with most information about the system's security posture?
reconnaissanceport scanningbanner grabbingvulnerability assessment - Question #351SQL Injection
Firewalls are the software or hardware systems that are able to control and monitor the traffic coming in and out the target network based on pre-defined set of rules. Which of the...
Firewall typesWeb Application Firewall (WAF)SQL Injection protectionSecurity controls