EC-COUNCIL EC-COUNCIL Certifications 312-50V11 Questions & Answers

• Question 181:

  John is investigating web-application firewall logs and observers that someone is attempting to inject the following:

  char buff[10]; buff[>o] - 'a':

  What type of attack is this?

  A. CSRF

  B. XSS

  C. Buffer overflow

  D. SQL injection

  Correct Answer: C

  Buffer overflow this attack is an anomaly that happens when software writing data to a buffer overflows the buffer's capacity, leading to adjacent memory locations being overwritten. In other words, an excessive amount of information is being passed into a container that doesn't have enough space, which information finishes up replacing data in adjacent containers.Buffer overflows are often exploited by attackers with a goal of modifying a computer's memory so as to undermine or take hold of program execution.

  

  What's a buffer?A buffer, or data buffer, is a neighborhood of physical memory storage wont to temporarily store data while it's being moved from one place to a different . These buffers typically sleep in RAM memory. Computers frequently use buffers to assist improve performance; latest hard drives cash in of buffering to efficiently access data, and lots of online services also use buffers. for instance , buffers are frequently utilized in online video streaming to stop interruption. When a video is streamed, the video player downloads and stores perhaps 20% of the video at a time during a buffer then streams from that buffer. This way, minor drops in connection speed or quick service disruptions won't affect the video stream performance.Buffers are designed to contain specific amounts of knowledge . Unless the program utilizing the buffer has built-in instructions to discard data when an excessive amount of is shipped to the buffer, the program will overwrite data in memory adjacent to the buffer.Buffer overflows are often exploited by attackers to corrupt software. Despite being well-understood, buffer overflow attacks are still a serious security problem that torment cyber-security teams. In 2014 a threat referred to as `heartbleed' exposed many many users to attack due to a buffer overflow vulnerability in SSL software. How do attackers exploit buffer overflows?An attacker can deliberately feed a carefully crafted input into a program which will cause the program to undertake and store that input during a buffer that isn't large enough, overwriting portions of memory connected to the buffer space. If the memory layout of the program is well-defined, the attacker can deliberately overwrite areas known to contain executable code. The attacker can then replace this code together with his own executable code, which may drastically change how the program is meant to figure .For example if the overwritten part in memory contains a pointer (an object that points to a different place in memory) the attacker's code could replace that code with another pointer that points to an exploit payload. this will transfer control of the entire program over to theattacker's code.

• Question 182:

  Elliot is in the process of exploiting a web application that uses SQL as a back-end database. He's determined that the application is vulnerable to SQL injection, and has introduced conditional timing delays into injected queries to determine whether they are successful. What type of SQL injection is Elliot most likely performing?

  A. Error-based SQL injection

  B. Blind SQL injection

  C. Union-based SQL injection

  D. NoSQL injection

  Correct Answer: B

• Question 183:

  Alice, a professional hacker, targeted an organization's cloud services. She infiltrated the targets MSP provider by sending spear-phishing emails and distributed custom-made malware to compromise user accounts and gain remote access to the cloud service. Further, she accessed the target customer profiles with her MSP account, compressed the customer data, and stored them in the MSP. Then, she used this information to launch further attacks on the target organization. Which of the following cloud attacks did Alice perform in the above scenario?

  A. Cloud hopper attack

  B. Cloud cryptojacking

  C. Cloudborne attack

  D. Man-in-the-cloud (MITC) attack

  Correct Answer: A

  Operation Cloud Hopper was an in depth attack and theft of data in 2017 directed at MSP within the uk (U.K.), us (U.S.), Japan, Canada, Brazil, France, Switzerland, Norway, Finland, Sweden, South Africa , India, Thailand, South Korea and Australia. The group used MSP as intermediaries to accumulate assets and trade secrets from MSP client engineering, MSP industrial manufacturing, retail, energy, pharmaceuticals, telecommunications, and government agencies.Operation Cloud Hopper used over 70 variants of backdoors, malware and trojans. These were delivered through spear-phishing emails. The attacks scheduled tasks or leveraged services/utilities to continue Microsoft Windows systems albeit the pc system was rebooted. It installed malware and hacking tools to access systems and steal data.

• Question 184:

  A penetration tester is performing the footprinting process and is reviewing publicly available information about an organization by using the Google search engine.

  Which of the following advanced operators would allow the pen tester to restrict the search to the organization's web domain?

  A. [allinurl:]

  B. [location:]

  C. [site:]

  D. [link:]

  Correct Answer: C

• Question 185:

  A large company intends to use Blackberry for corporate mobile phones and a security analyst is assigned to evaluate the possible threats. The analyst will use the Blackjacking attack method to demonstrate how an attacker could circumvent perimeter defenses and gain access to the Prometric Online Testing ? Reports https://ibt1.prometric.com/users/custom/report_queue/rq_str... corporate network. What tool should the analyst use to perform a Blackjacking attack?

  A. Paros Proxy

  B. BBProxy

  C. Blooover

  D. BBCrack

  Correct Answer: B

• Question 186:

  Annie, a cloud security engineer, uses the Docker architecture to employ a client/server model in the application she is working on. She utilizes a component that can process API requests and handle various Docker objects, such as containers, volumes. Images, and networks. What is the component of the Docker architecture used by Annie in the above scenario?

  A. Docker client

  B. Docker objects

  C. Docker daemon

  D. Docker registries

  Correct Answer: C

  Docker uses a client-server design. The docker client talks to the docker daemon, that will the work of building, running, and distributing your docker containers. The docker client and daemon will run on the same system, otherwise you will connect a docker consumer to a remote docker daemon. The docker consumer and daemon communicate using a REST API, over OS sockets or a network interface.

  

  The docker daemon (dockerd) listens for docker API requests and manages docker objects like pictures, containers, networks, and volumes. A daemon may communicate with other daemons to manage docker services.

• Question 187:

  What kind of detection techniques is being used in antivirus softwares that identifies malware by collecting data from multiple protected systems and instead of analyzing files locally it's made on the premiers environment?

  A. VCloud based

  B. Honypot based

  C. Behaviour based

  D. Heuristics based

  Correct Answer: A

• Question 188:

  A regional bank hires your company to perform a security assessment on their network after a recent data breach. The attacker was able to steal financial data from the bank by compromising only a single server. Based on this information, what should be one of your key recommendations to the bank?

  A. Place a front-end web server in a demilitarized zone that only handles external web traffic

  B. Require all employees to change their anti-virus program with a new one

  C. Move the financial data to another server on the same IP subnet

  D. Issue new certificates to the web servers from the root certificate authority

  Correct Answer: A

• Question 189:

  Which of the following is the best countermeasure to encrypting ransomwares?

  A. Use multiple antivirus softwares

  B. Pay a ransom

  C. Keep some generation of off-line backup

  D. Analyze the ransomware to get decryption key of encrypted data

  Correct Answer: C

• Question 190:

  Tony is a penetration tester tasked with performing a penetration test. After gaining initial access to a target system, he finds a list of hashed passwords.

  Which of the following tools would not be useful for cracking the hashed passwords?

  A. John the Ripper

  B. Hashcat

  C. netcat

  D. THC-Hydra

  Correct Answer: A