EC-COUNCIL EC-COUNCIL Certifications 312-50V9 Questions & Answers

• Question 181:

  When analyzing the IDS logs, the system administrator noticed an alert was logged when the external router was accessed from the administrator's computer to update the router configuration. What type of an alert is this?

  A. False positive

  B. False negative

  C. True positve

  D. True negative

  Correct Answer: A Section: (none)

• Question 182:

  Low humidity in a data center can cause which of the following problems?

  A. Heat

  B. Corrosion

  C. Static electricity

  D. Airborne contamination

  Correct Answer: C Section: (none)

• Question 183:

  A consultant is hired to do physical penetration testing at a large financial company. In the first day of his assessment, the consultant goes to the company`s building dressed like an electrician and waits in the lobby for an employee to pass through the main access gate, then the consultant follows the employee behind to get into the restricted area. Which type of attack did the consultant perform?

  A. Man trap

  B. Tailgating

  C. Shoulder surfing

  D. Social engineering

  Correct Answer: B Section: (none)

• Question 184:

  Which property ensures that a hash function will not produce the same hashed value for two different messages?

  A. Collision resistance

  B. Bit length

  C. Key strength

  D. Entropy

  Correct Answer: A Section: (none)

• Question 185:

  How can telnet be used to fingerprint a web server?

  A. telnet webserverAddress 80 HEAD / HTTP/1.0

  B. telnet webserverAddress 80 PUT / HTTP/1.0

  C. telnet webserverAddress 80 HEAD / HTTP/2.0

  D. telnet webserverAddress 80 PUT / HTTP/2.0

  Correct Answer: A Section: (none)

• Question 186:

  A computer science student needs to fill some information into a secured Adobe PDF job application that was received from a prospective employer. Instead of requesting a new document that allowed the forms to be completed, the student decides to write a script that pulls passwords from a list of commonly used passwords to try against the secured PDF until the correct password is found or the list is exhausted.

  Which cryptography attack is the student attempting?

  A. Man-in-the-middle attack

  B. Brute-force attack

  C. Dictionary attack

  D. Session hijacking

  Correct Answer: C Section: (none)

• Question 187:

  Which of the following is a symmetric cryptographic standard?

  A. DSA

  B. PKI

  C. RSA

  D. 3DES

  Correct Answer: D Section: (none)

• Question 188:

  A circuit level gateway works at which of the following layers of the OSI Model?

  A. Layer 5 - Application

  B. Layer 4 ?TCP

  C. Layer 3 ?Internet protocol

  D. Layer 2 ?Data link

  Correct Answer: B Section: (none)

• Question 189:

  A company firewall engineer has configured a new DMZ to allow public systems to be located away from the internal network. The engineer has three security zones set:

  

  The engineer wants to configure remote desktop access from a fixed IP on the remote network to a remote desktop server in the DMZ. Which rule would best fit this requirement?

  A. Permit 217.77.88.0/24 11.12.13.0/24 RDP 3389

  B. Permit 217.77.88.12 11.12.13.50 RDP 3389

  C. Permit 217.77.88.12 11.12.13.0/24 RDP 3389

  D. Permit 217.77.88.0/24 11.12.13.50 RDP 3389

  Correct Answer: B Section: (none)

• Question 190:

  Windows file servers commonly hold sensitive files, databases, passwords and more. Which of the following choices would be a common vulnerability that usually exposes them?

  A. Cross-site scripting

  B. SQL injection

  C. Missing patches

  D. CRLF injection

  Correct Answer: C Section: (none)