EC-COUNCIL EC-COUNCIL Certifications 312-50V9 Questions & Answers

• Question 151:

  Which of the following techniques does a vulnerability scanner use in order to detect a vulnerability on a target service?

  A. Port scanning

  B. Banner grabbing

  C. Injecting arbitrary data

  D. Analyzing service response

  Correct Answer: D Section: (none)

• Question 152:

  In the software security development life cycle process, threat modeling occurs in which phase?

  A. Design

  B. Requirements

  C. Verification

  D. Implementation

  Correct Answer: A Section: (none)

• Question 153:

  What is the most secure way to mitigate the theft of corporate information from a laptop that was left in a hotel room?

  A. Set a BIOS password.

  B. Encrypt the data on the hard drive.

  C. Use a strong logon password to the operating system.

  D. Back up everything on the laptop and store the backup in a safe place.

  Correct Answer: B Section: (none)

• Question 154:

  A Network Administrator was recently promoted to Chief Security Officer at a local university. One of employee's new responsibilities is to manage the implementation of an RFID card access system to a new server room on campus. The server room will house student enrollment information that is securely backed up to an off-site location.

  During a meeting with an outside consultant, the Chief Security Officer explains that he is concerned that the existing security controls have not been designed properly. Currently, the Network Administrator is responsible for approving and issuing RFID card access to the server room, as well as reviewing the electronic access logs on a weekly basis.

  Which of the following is an issue with the situation?

  A. Segregation of duties

  B. Undue influence

  C. Lack of experience

  D. Inadequate disaster recovery plan

  Correct Answer: A Section: (none)

• Question 155:

  Which of the following is a strong post designed to stop a car?

  A. Gate

  B. Fence

  C. Bollard

  D. Reinforced rebar

  Correct Answer: C Section: (none)

• Question 156:

  Which of the following cryptography attack methods is usually performed without the use of a computer?

  A. Ciphertext-only attack

  B. Chosen key attack

  C. Rubber hose attack

  D. Rainbow table attack

  Correct Answer: C Section: (none)

• Question 157:

  A hacker was able to sniff packets on a company's wireless network. The following information was discovered:

  

  Using the Exlcusive OR, what was the original message?

  A. 00101000 11101110

  B. 11010111 00010001

  C. 00001101 10100100

  D. 11110010 01011011

  Correct Answer: B Section: (none)

• Question 158:

  Which of the following is an example of an asymmetric encryption implementation?

  A. SHA1

  B. PGP

  C. 3DES

  D. MD5

  Correct Answer: B Section: (none)

• Question 159:

  Firewalk has just completed the second phase (the scanning phase) and a technician receives the output shown below. What conclusions can be drawn based on these scan results?

  

  A. The firewall itself is blocking ports 21 through 23 and a service is listening on port 23 of the target host.

  B. The lack of response from ports 21 and 22 indicate that those services are not running on the destination server.

  C. The scan on port 23 passed through the filtering device. This indicates that port 23 was not blocked at the firewall.

  D. The scan on port 23 was able to make a connection to the destination host prompting the firewall to respond with a TTL error.

  Correct Answer: C Section: (none)

• Question 160:

  During a penetration test, the tester conducts an ACK scan using NMAP against the external interface of the DMZ firewall. NMAP reports that port 80 is unfiltered. Based on this response, which type of packet inspection is the firewall conducting?

  A. Host

  B. Stateful

  C. Stateless

  D. Application

  Correct Answer: C Section: (none)