312-50V9 Exam Questions
613 real 312-50V9 exam questions with expert-verified answers and explanations. Page 5 of 13.
- Question #201Footprinting and Reconnaissance
You are performing information gathering for an important penetration test. You have found pdf, doc, and images in your objective. You decide to extract metadata from these files a...
metadata extractionMetagoofilOSINTinformation gathering - Question #202Footprinting and Reconnaissance
When you are collecting information to perform a data analysis, Google commands are very useful to find sensitive information and files. These files may contain information about p...
Google dorkingfiletype operatorOSINTsensitive file discovery - Question #203Cryptography
What is a "Collision attack" in cryptography?
collision attackhash functionscryptanalysishash collision - Question #204Social Engineering
You are tasked to perform a penetration test. While you are performing information gathering, you find an employee list in Google. You find the receptionist's email, and you send h...
phishingemail spoofingsocial engineeringmalware delivery - Question #205Hacking Web Servers
When you are getting information about a web server, it is very important to know the HTTP Methods (GET, POST, HEAD, PUT, DELETE, TRACE) that are available because there are two cr...
NMAPHTTP methodsweb server enumerationhttp-methods script - Question #206Hacking Web Applications
When you are testing a web application, it is very useful to employ a proxy tool to save every request and response. You can manually test every request and analyze the response to...
Burp Suiteweb proxyparameter testingweb vulnerability scanning - Question #207Sniffing
You are a Network Security Officer. You have two machines. The first machine (192.168.0.99) has snort installed, and the second machine (192.168.0.150) has kiwi syslog installed. Y...
Wiresharkpacket filter syntaxsyslognetwork monitoring - Question #208Cryptography
This asymmetry cipher is based on factoring the product of two large prime numbers. What cipher is described above?
RSAasymmetric encryptionprime factorizationpublic key cryptography - Question #209System Hacking
Which of the following parameters describe LM Hash (see exhibit):
LM Hashpassword hashingWindows authenticationhash weakness - Question #210Introduction to Ethical Hacking
What is the process of logging, recording, and resolving events that take place in an organization?
incident managementevent loggingsecurity operationsorganizational process - Question #211Hacking Web Applications
The Open Web Application Security Project (OWASP) is the worldwide not-for-profit charitable organization focused on improving the security of software. What item is the primary co...
OWASP Top Teninjectionweb application risksapplication security - Question #212Introduction to Ethical Hacking
You are performing a penetration test. You achieved access via a buffer overflow exploit and you proceed to find interesting data, such as files with usernames and passwords. You f...
penetration testing ethicsresponsible disclosureethical conductscope of engagement - Question #213Malware Threats
Which of the following describes the characteristics of a Boot Sector Virus?
boot sector virusMBRvirus typesmalware behavior - Question #214Scanning Networks
You have several plain-text firewall logs that you must review to evaluate network traffic. You know that in order to do fast, efficient searches of the logs you must use regular e...
grepregular expressionslog analysisfirewall logs - Question #215Introduction to Ethical Hacking
You've just been hired to perform a pen test on an organization that has been subjected to a large-scale attack. The CIO is concerned with mitigating threats and vulnerabilities to...
risk managementpenetration testing fundamentalsrisk reductionsecurity assessment - Question #216Scanning Networks
A penetration tester is conducting a port scan on a specific host. The tester found several ports opened that were confusing in concluding the Operating System (OS) version install...
NMAPport analysisservice fingerprintingOS identification - Question #217System Hacking
Which of the following is the least-likely physical characteristic to be used in biometric control that supports a large company?
biometric authenticationphysical access controlauthentication factorssecurity controls - Question #218Hacking Mobile Platforms
Which of the following is not a Bluetooth attack?
Bluetooth attacksBluejackingBluesnarfingBluesmacking - Question #219Footprinting and Reconnaissance
This phase will increase the odds of success in later phases of the penetration test. It is also the very first step in Information Gathering, and it will tell you what the "landsc...
footprintingpenetration testing phasesinformation gatheringreconnaissance - Question #220Hacking Wireless Networks
The purpose of a __________ is to deny network access to local area networks and other information assets by unauthorized wireless devices.
WIPSwireless intrusion preventionnetwork access controlunauthorized device denial - Question #221Scanning Networks
The NMAP command above performs which of the following? > NMAP -sn 192.168.11.200-215
NMAPping scanhost discoverynetwork scanning - Question #222Footprinting and Reconnaissance
You are using NMAP to resolve domain names into IP addresses for a ping sweep later. Which of the following commands looks for IP addresses?
DNS lookupA recordhost commandreconnaissance - Question #223Sniffing
Which of the following is a command line packet analyzer similar to GUI-based Wireshark?
tcpdumppacket analyzerCLI toolsnetwork sniffing - Question #224Sniffing
The configuration allows a wired or wireless network interface controller to pass all traffic it receives to the central processing unit (CPU), rather than passing only the frames...
promiscuous modeNICpacket capturenetwork interface - Question #225Evading IDS, Firewalls, and Honeypots
Which of the following is an extremely common IDS evasion technique in the web world?
IDS evasionunicode encodingweb obfuscationsignature bypass - Question #226Cryptography
Which of the following is the structure designed to verify and authenticate the identity of individuals within the enterprise taking part in a data exchange?
PKIdigital certificatesidentity authenticationpublic key infrastructure - Question #227Hacking Web Applications
Which of the following is a design pattern based on distinct pieces of software providing application functionality as services to other applications?
SOAservice oriented architectureweb servicessoftware design patterns - Question #228Cryptography
Which mode of IPSec should you use to assure security and confidentiality of data within the same LAN?
IPSecESP transport modeLAN encryptionVPN protocols - Question #229Cryptography
Which of the following is assured by the use of a hash?
hashingdata integritycryptographic hashCIA triad - Question #230Introduction to Ethical Hacking
Which of the following is the greatest threat posed by backups?
backup securityunencrypted datadata theft riskrisk management - Question #231Introduction to Ethical Hacking
An incident investigator asks to receive a copy of the event logs from all firewalls, proxy servers, and Intrusion Detection Systems (IDS) on the network of an organization that ha...
log correlationtime synchronizationNTPincident investigation - Question #232Introduction to Ethical Hacking
In Risk Management, how is the term "likelihood" related to the concept of "threat?"
risk managementthreat likelihoodvulnerabilitythreat-source - Question #233Introduction to Ethical Hacking
The chance of a hard drive failure is once every three years. The cost to buy a new hard drive is $300. It will require 10 hours to restore the OS and software to the new hard disk...
SLEAROALEquantitative risk assessment - Question #234System Hacking
A network administrator discovers several unknown files in the root directory of his Linux FTP server. One of the files is a tarball, two are shell script files, and the third is a...
FTP anonymous accessfile system permissionsnetcatprivilege escalation - Question #235Hacking Web Applications
While performing online banking using a Web browser, a user receives an email that contains a link to an interesting Web site. When the user clicks on the link, another Web browser...
CSRFcross-site request forgerysession managementweb attacks - Question #236Session Hijacking
A company's security policy states that all Web browsers must automatically delete their HTTP browser cookies upon terminating. What sort of security breach is this policy attempti...
HTTP cookiessession hijackingcookie theftsecurity policy - Question #237Hacking Web Applications
A company's Web development team has become aware of a certain type of security vulnerability in their Web software. To mitigate the possibility of this vulnerability being exploit...
XSSinput validationHTML injectionweb vulnerability mitigation - Question #238Hacking Web Applications
Which of the following is considered the best way to protect Personally Identifiable Information (PII) from Web application vulnerabilities?
PII protectioncryptographic storageweb application securitydata protection - Question #239Hacking Web Applications
Which of the following is one of the most effective ways to prevent Cross-site Scripting (XSS) flaws in software applications?
XSS preventioninput validationoutput encodingsecure coding - Question #240Introduction to Ethical Hacking
An Internet Service Provider (ISP) has a need to authenticate users connecting using analog modems, Digital Subscriber Lines (DSL), wireless data services, and Virtual Private Netw...
RADIUSAAA protocolsnetwork authenticationaccess control - Question #241Vulnerability Analysis
To determine if a software program properly handles a wide range of invalid input, a form of automated testing can be used to randomly generate invalid input in an attempt to crash...
fuzzinginput validationautomated testingsoftware testing - Question #242Vulnerability Analysis
To maintain compliance with regulatory requirements, a security audit of the systems on a network must be performed to determine their compliance with security policies. Which one...
vulnerability scannercompliance auditsecurity auditregulatory requirements - Question #243Introduction to Ethical Hacking
Which of these options is the most secure procedure for storing backup tapes?
backup securityoffsite storagephysical securitydata protection - Question #244Introduction to Ethical Hacking
What term describes the amount of risk that remains after the vulnerabilities are classified and the countermeasures have been deployed?
residual riskrisk managementcountermeasuresrisk classification - Question #245Evading IDS, Firewalls, and Honeypots
Session splicing is an IDS evasion technique in which an attacker delivers data in multiple, smallsized packets to the target computer, making it very difficult for an IDS to detec...
session splicingIDS evasionpacket fragmentationWhisker - Question #246Scanning Networks
Which of the following tools can be used for passive OS fingerprinting?
passive OS fingerprintingtcpdumptraffic analysisreconnaissance - Question #247Evading IDS, Firewalls, and Honeypots
You are the Systems Administrator for a large corporate organization. You need to monitor all network traffic on your local network for suspicious activities and receive notificati...
network-based IDSintrusion detectionnetwork monitoringsecurity alerts - Question #248Evading IDS, Firewalls, and Honeypots
What does a firewall check to prevent particular ports and applications from getting packets into an organization?
firewallport filteringtransport layerapplication layer headers - Question #249Evading IDS, Firewalls, and Honeypots
You work as a Security Analyst for a retail organization. In securing the company's network, you set up a firewall and an IDS. However, hackers are able to attack the network. Afte...
false negativeIDS alertsIDS configurationintrusion detection - Question #250Evading IDS, Firewalls, and Honeypots
Which of the following types of firewalls ensures that the packets are part of the established session?
stateful inspectionfirewall typessession trackingpacket filtering