312-50V7 Exam Questions

More sophisticated IDSs look for common shellcode signatures. But even these systems can be bypassed, by using polymorphic shellcode. This is a technique common among virus writers...

SYN Flood is a DOS attack in which an attacker deliberately violates the three-way handshake and opens a large number of half-open TCP connections. The signature of attack for SYN...

Which of the following type of scanning utilizes automated process of proactively identifying vulnerabilities of the computing systems present on a network?

The following script shows a simple SQL injection. The script builds an SQL query by concatenating hard-coded strings together with a string entered by the user: The user is prompt...

What are the limitations of Vulnerability scanners? (Select 2 answers)

Stephanie works as senior security analyst for a manufacturing company in Detroit. Stephanie manages network security throughout the organization. Her colleague Jason told her in c...

Dan is conducting penetration testing and has found a vulnerability in a Web Application which gave him the sessionID token via a cross site scripting vulnerability. Dan wants to r...

Jason works in the sales and marketing department for a very large advertising agency located in Atlanta. Jason is working on a very important marketing campaign for his company's...

What type of Virus is shown here?

An attacker finds a web page for a target organization that supplies contact information for the company. Using available details to make the message seem authentic, the attacker d...

How does traceroute map the route a packet travels from point A to point B?

The SYN flood attack sends TCP connections requests faster than a machine can process them. Attacker creates a random source address for each packet SYN flag set in each packet is...

Vulnerability scanners are automated tools that are used to identify vulnerabilities and misconfigurations of hosts. They also provide information regarding mitigating discovered v...

How do you defend against DHCP Starvation attack?

What type of session hijacking attack is shown in the exhibit?

What type of port scan is shown below?

Stephanie works as a records clerk in a large office building in downtown Chicago. On Monday, she went to a mandatory security awareness class (Security5) put on by her company's I...

Neil is a network administrator working in Istanbul. Neil wants to setup a protocol analyzer on his network that will receive a copy of every packet that passes through the main of...

In TCP communications there are 8 flags; FIN, SYN, RST, PSH, ACK, URG, ECE, CWR. These flags have decimal numbers assigned to them: FIN = 1 SYN = 2 RST = 4 PSH = 8 ACK = 16 URG = 3...

Peter extracts the SID list from Windows 2008 Server machine using the hacking tool "SIDExtracter". Here is the output of the SIDs: From the above list identify the user account wi...

Jayden is a network administrator for her company. Jayden wants to prevent MAC spoofing on all the Cisco switches in the network. How can she accomplish this?

What is the problem with this ASP script (login.asp)?

Google uses a unique cookie for each browser used by an individual user on a computer. This cookie contains information that allows Google to identify records about that user on it...

In Trojan terminology, what is required to create the executable file chess.exe as shown below?

How many bits encryption does SHA-1 use?

Syslog is a standard for logging program messages. It allows separation of the software that generates messages from the system that stores them and the software that reports and a...

This attack uses social engineering techniques to trick users into accessing a fake Web site and divulging personal information. Attackers send a legitimate-looking e-mail asking u...

Which of the following statements would NOT be a proper definition for a Trojan Horse?

What is the correct command to run Netcat on a server using port 56 that spawns command shell when connected?

SNMP is a connectionless protocol that uses UDP instead of TCP packets (True or False)

TCP/IP Session Hijacking is carried out in which OSI layer?

In which part of OSI layer, ARP Poisoning occurs?

You want to hide a secret.txt document inside c:\windows\system32\tcpip.dll kernel library using ADS streams. How will you accomplish this?

You just purchased the latest DELL computer, which comes pre-installed with Windows 7, McAfee antivirus software and a host of other applications. You want to connect Ethernet wire...

Your computer is infected by E-mail tracking and spying Trojan. This Trojan infects the computer with a single file - emos.sys. Which step would you perform to detect this type of...

In the context of Trojans, what is the definition of a Wrapper?

Which type of hacker represents the highest risk to your network?

Shayla is an IT security consultant, specializing in social engineering and external penetration tests. Shayla has been hired on by Treks Avionics, a subcontractor for the Departme...

What port number is used by Kerberos protocol?

What does FIN in TCP flag define?

Annie has just succeeded in stealing a secure cookie via a XSS attack. She is able to replay the cookie even while the session is invalid on the server. Why do you think this is po...

This attack technique is used when a Web application is vulnerable to an SQL Injection but the results of the Injection are not visible to the attacker.

A common technique for luring e-mail users into opening virus-launching attachments is to send messages that would appear to be relevant or important to many of their potential rec...

What file system vulnerability does the following command take advantage of? type c:\anyfile.exe > c:\winnt\system32\calc.exe:anyfile.exe

You are the Security Administrator of Xtrinity, Inc. You write security policies and conduct assessments to protect the company's network. During one of your periodic checks to see...

In what stage of Virus life does a stealth virus gets activated with the user performing certain actions such as running an infected program?

What is a sniffing performed on a switched network called?

A rootkit is a collection of tools (programs) that enable administrator-level access to a computer. This program hides itself deep into an operating system for malicious activity a...

Which Steganography technique uses Whitespace to hide secret messages?

Cyber Criminals have long employed the tactic of masking their true identity. In IP spoofing, an attacker gains unauthorized access to a computer or a network by making it appear t...