nerdexam
Exams312-50V9Questions#225
EC-Council

312-50V9 · Question #225

312-50V9 Question #225: Real Exam Question with Answer & Explanation

The correct answer is A: unicode characters. Unicode attacks can be effective against applications that understand it. Unicode is the international standard whose goal is to represent every character needed by every written human language as a single integer number. What is known as Unicode evasion should more correctly be

Question

Which of the following is an extremely common IDS evasion technique in the web world?

Options

  • Aunicode characters
  • Bspyware
  • Cport knocking
  • Dsubnetting

Explanation

Unicode attacks can be effective against applications that understand it. Unicode is the international standard whose goal is to represent every character needed by every written human language as a single integer number. What is known as Unicode evasion should more correctly be referenced as UTF-8 evasion. Unicode characters are normally represented with two bytes, but this is impractical in real life. One aspect of UTF-8 encoding causes problems: non-Unicode characters can be represented What is worse is multiple representations of each character can exist. Non-Unicode character encodings are known as overlong characters, and may be signs of attempted attack.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 312-50V9 Practice