EC-COUNCIL EC-COUNCIL Certifications 312-50 Questions & Answers

• Question 301:

  What does the following command achieve?

  Telnet

  HEAD /HTTP/1.0

  A. This command returns the home page for the IP address specified

  B. This command opens a backdoor Telnet session to the IP address specified

  C. This command returns the banner of the website specified by IP address

  D. This command allows a hacker to determine the sites security

  E. This command is bogus and will accomplish nothing

  Correct Answer: C

  This command is used for banner grabbing. Banner grabbing helps identify the service and version of web server running.

• Question 302:

  What are the six types of social engineering?(Choose six).

  A. Spoofing

  B. Reciprocation

  C. Social Validation

  D. Commitment

  E. Friendship

  F. Scarcity

  G. Authority

  H. Accountability

  Correct Answer: BCDEFG

  All social engineering is performed by taking advantage of human nature. For in-depth information on the subject review, read Robert Cialdini's book, Influence: Science and Practice.

• Question 303:

  Usernames, passwords, e-mail addresses, and the location of CGI scripts may be obtained from which of the following information sources?

  A. Company web site

  B. Search engines

  C. EDGAR Database query

  D. Whois query

  Correct Answer: A

  Whois query would not enable us to find the CGI scripts whereas in the actual website, some of them will have scripts written to make the website more user friendly. The EDGAR database would in fact give us a lot of the information requested but not the location of CGI scripts, as would a simple search engine on the Internet if you have the time needed.

• Question 304:

  Jack Hacker wants to break into Brown Co.'s computers and obtain their secret double fudge cookie recipe. Jack calls Jane, an accountant at Brown Co., pretending to be an administrator from Brown Co. Jack tells Jane that there has been a problem with some accounts and asks her to tell him her password 'just to double check our records'. Jane believes that Jack is really an administrator, and tells him her password. Jack now has a user name and password, and can access Brown Co.'s computers, to find the cookie recipe. This is an example of what kind of attack?

  A. Reverse Psychology

  B. Social Engineering

  C. Reverse Engineering

  D. Spoofing Identity

  E. Faking Identity

  Correct Answer: B

  This is a typical case of pretexting. Pretexting is the act of creating and using an invented scenario (the pretext) to persuade a target to release information or perform an action and is usually done over the telephone.

• Question 305:

  Jack Hacker wants to break into company's computers and obtain their secret double fudge cookie recipe. Jacks calls Jane, an accountant at company pretending to be an administrator from company. Jack tells Jane that there has been a problem with some accounts and asks her to verify her password with him "just to double check our records". Jane does not suspect anything amiss, and parts with her password. Jack can now access company's computers with a valid user name and password, to steal the cookie recipe.

  What kind of attack is being illustrated here? (Choose the best answer)

  A. Reverse Psychology

  B. Reverse Engineering

  C. Social Engineering

  D. Spoofing Identity

  E. Faking Identity

  Correct Answer: C

  This is a typical case of pretexting. Pretexting is the act of creating and using an invented scenario (the pretext) to persuade a target to release information or perform an action and is usually done over the telephone.

• Question 306:

  What is the most common vehicle for social engineering attacks?

  A. Phone

  B. Email

  C. In person

  D. P2P Networks

  Correct Answer: A

  Pretexting is the act of creating and using an invented scenario (the pretext) to persuade a target to release information or perform an action and is usually done over the telephone.

• Question 307:

  Why is Social Engineering considered attractive by hackers and also adopted by experts in the field?

  A. It is done by well known hackers and in movies as well.

  B. It does not require a computer in order to commit a crime.

  C. It is easy and extremely effective to gain information.

  D. It is not considered illegal.

  Correct Answer: C

  Social engineering is a collection of techniques used to manipulate people into performing actions or divulging confidential information. While similar to a confidence trick or simple fraud, the term typically applies to trickery for information

  gathering or computer system access and in most (but not all) cases the attacker never comes face-to-face with the victim. The term has been popularized in recent years by well known (reformed) computer criminal and security consultant

  Kevin Mitnick who points out that it's much easier to trick someone into giving you his or her password for a system than to spend the effort to hack in.

  He claims it to be the single most effective method in his arsenal.

• Question 308:

  Your boss at ABC.com asks you what are the three stages of Reverse Social Engineering.

  A. Sabotage, advertising, Assisting

  B. Sabotage, Advertising, Covering

  C. Sabotage, Assisting, Billing

  D. Sabotage, Advertising, Covering

  Correct Answer: A

  Typical social interaction dictates that if someone gives us something then it is only right for us to return the favour. This is known as reverse social engineering, when an attacker sets up a situation where the victim encounters a problem, they ask the attacker for help and once the problem is solved the victim then feels obliged to give the information requested by the attacker.

• Question 309:

  After a client sends a connection request (SYN) packet to the server, the server will respond (SYN- ACK) with a sequence number of its choosing, which then must be acknowledge (ACK) by the client. This sequence number is predictable; the attack connects to a service first with its own IP address, records the sequence number chosen and then opens a second connection from a forget IP address. The attack doesn't see the SYN-ACK (or any other packet) from the server, but can guess the correct responses. If the source IP Address is used for authentication, the attacker can use the one-side communication to break into the server.

  What attacks can you successfully launch against a server using the above technique?

  A. Session Hijacking attacks

  B. Denial of Service attacks

  C. Web Page defacement attacks

  D. IP Spoofing Attacks

  Correct Answer: A

  The term Session Hijacking refers to the exploitation of a valid computer session - sometimes also called a session key - to gain unauthorised access to information or services in a computer system. In particular, it is used to refer to the theft of a magic cookie used to authenticate a user to a remote server. It has particular relevance to web developers, as the HTTP cookies used to maintain a session on many web sites can be easily stolen by an attacker using an intermediary computer or with access to the saved cookies on the victim's computer.

• Question 310:

  Which of the following attacks takes best advantage of an existing authenticated connection

  A. Spoofing

  B. Session Hijacking

  C. Password Sniffing

  D. Password Guessing

  Correct Answer: B

  Session hijacking is the act of taking control of a user session after successfully obtaining or generating an authentication session ID. Session hijacking involves an attacker using captured, brute forced or reverse-engineered session IDs to seize control of a legitimate user's Web application session while that session is still in progress.