EC-COUNCIL EC-COUNCIL Certifications 312-50V12 Questions & Answers

• Question 561:

  Henry is a penetration tester who works for XYZ organization. While performing enumeration on a client organization, he queries the DNS server for a specific cached DNS record. Further, by using this cached record, he determines the sites recently visited by the organization's user. What is the enumeration technique used by Henry on the organization?

  A. DNS zone walking

  B. DNS cache snooping

  C. DNS SEC zone walking

  D. DNS cache poisoning

  Correct Answer: B

• Question 562:

  How can rainbow tables be defeated?

  A. Use of non-dictionary words

  B. All uppercase character passwords

  C. Password salting

  D. Lockout accounts under brute force password cracking attempts

  Correct Answer: C

  https://en.wikipedia.org/wiki/Salt_(cryptography)

  A salt is random data that is used as an additional input to a one-way function that hashes data, a password, or passphrase. Salts are used to safeguard passwords in storage. Historically a password was stored in plaintext on a system, but over time additional safeguards were developed to protect a user's password against being read from the system. A salt is one of those methods.

  A new salt is randomly generated for each password. In a typical setting, the salt and the password (or its version after key stretching) are concatenated and processed with a cryptographic hash function, and the output hash value (but not the original password) is stored with the salt in a database. Hashing allows for later authentication without keeping and therefore risking exposure of the plaintext password in the event that the authentication data store is compromised. Salts defend against a pre-computed hash attack, e.g. rainbow tables. Since salts do not have to be memorized by humans they can make the size of the hash table required for a successful attack prohibitively large without placing a burden on the users. Since salts are different in each case, they also protect commonly used passwords, or those users who use the same password on several sites, by making all salted hash instances for the same password different from each other.

• Question 563:

  Stephen, an attacker, targeted the industrial control systems of an organization. He generated a fraudulent email with a malicious attachment and sent it to employees of the target organization. An employee who manages the sales software of the operational plant opened the fraudulent email and clicked on the malicious attachment. This resulted in the malicious attachment being downloaded and malware being injected into the sales software maintained in the victim's system. Further, the malware propagated itself to other networked systems, finally damaging the industrial automation components. What is the attack technique used by Stephen to damage the industrial systems?

  A. Spear-phishing attack

  B. SMishing attack

  C. Reconnaissance attack

  D. HMI-based attack

  Correct Answer: A

• Question 564:

  Mary found a high vulnerability during a vulnerability scan and notified her server team. After analysis, they sent her proof that a fix to that issue had already been applied. The vulnerability that Marry found is called what?

  A. False-negative

  B. False-positive

  C. Brute force attack

  D. Backdoor

  Correct Answer: B

  https://www.infocyte.com/blog/2019/02/16/cybersecurity-101-what-you-need-to-know-about-false-positives-and-false-negatives/

  False positives are mislabeled security alerts, indicating there is a threat when in actuality, there isn't. These false/non-malicious alerts (SIEM events) increase noise for already over- worked security teams and can include software bugs,

  poorly written software, or unrecognized network traffic.

  False negatives are uncaught cyber threats -- overlooked by security tooling because they're dormant, highly sophisticated (i.e. file-less or capable of lateral movement) or the security infrastructure in place lacks the technological ability to

  detect these attacks.

• Question 565:

  How does a denial-of-service attack work?

  A. A hacker prevents a legitimate user (or group of users) from accessing a service

  B. A hacker uses every character, word, or letter he or she can think of to defeat authentication

  C. A hacker tries to decipher a password by using a system, which subsequently crashes the network

  D. A hacker attempts to imitate a legitimate user by confusing a computer or even another person

  Correct Answer: A

• Question 566:

  Ethical hacker Jane Doe is attempting to crack the password of the head of the IT department at ABC Company. She is utilizing a rainbow table and notices that, upon entering a password, extra characters are added to the password after submission. What countermeasure is the company using to protect against rainbow tables?

  A. Password key hashing

  B. Password salting

  C. Password hashing

  D. Account lockout

  Correct Answer: B

  Passwords are usually delineated as "hashed and salted". salting is simply the addition of a unique, random string of characters renowned solely to the site to every parole before it's hashed, typically this "salt" is placed in front of each password. The salt value needs to be hold on by the site, which means typically sites use the same salt for each parole. This makes it less effective than if individual salts are used. The use of unique salts means that common passwords shared by multiple users ?like "123456" or "password" ?aren't revealed revealed when one such hashed password is known ?because despite the passwords being the same the immediately and hashed values are not. Large salts also protect against certain methods of attack on hashes, including rainbow tables or logs of hashed passwords previously broken. Both hashing and salting may be repeated more than once to increase the issue in breaking the security.

• Question 567:

  In Trojan terminology, what is a covert channel?

  

  A. A channel that transfers information within a computer system or network in a way that violates the security policy

  B. A legitimate communication path within a computer system or network for transfer of data

  C. It is a kernel operation that hides boot processes and services to mask detection

  D. It is Reverse tunneling technique that uses HTTPS protocol instead of HTTP protocol to establish connections

  Correct Answer: A

• Question 568:

  Which system consists of a publicly available set of databases that contain domain name registration contact information?

  A. WHOIS

  B. CAPTCHA

  C. IANA

  D. IETF

  Correct Answer: A

• Question 569:

  Scenario: Joe turns on his home computer to access personal online banking. When he enters the URL www.bank.com. the website is displayed, but it prompts him to re-enter his credentials as if he has never visited the site before. When he examines the website URL closer, he finds that the site is not secure and the web address appears different. What type of attack he is experiencing?.

  A. Dos attack

  B. DHCP spoofing

  C. ARP cache poisoning

  D. DNS hijacking

  Correct Answer: D

• Question 570:

  Which type of malware spreads from one system to another or from one network to another and causes similar types of damage as viruses do to the infected system?

  A. Rootkit

  B. Trojan

  C. Worm

  D. Adware

  Correct Answer: C