EC-COUNCIL EC-COUNCIL Certifications 312-50V9 Questions & Answers

• Question 261:

  An attacker attaches a rogue router in a network. He wants to redirect traffic to a LAN attached to his router as part of a man-in-the-middle attack. What measure on behalf of the legitimate admin can mitigate this attack?

  A. Only using OSPFv3 will mitigate this risk.

  B. Make sure that legitimate network routers are configured to run routing protocols with authentication.

  C. Redirection of the traffic cannot happen unless the admin allows it explicitly.

  D. Disable all routing protocols and only use static routes.

  Correct Answer: B Section: (none)

• Question 262:

  Todd has been asked by the security officer to purchase a counter-based authentication system. Which of the following best describes this type of system?

  A. A biometric system that bases authentication decisions on behavioral attributes.

  B. A biometric system that bases authentication decisions on physical attributes.

  C. An authentication system that creates one-time passwords that are encrypted with secret keys.

  D. An authentication system that uses passphrases that are converted into virtual passwords.

  Correct Answer: C Section: (none)

• Question 263:

  Internet Protocol Security IPSec is actually a suite of protocols. Each protocol within the suite provides different functionality. Collective IPSec does everything except.

  A. Protect the payload and the headers

  B. Authenticate

  C. Encrypt

  D. Work at the Data Link Layer

  Correct Answer: D Section: (none)

• Question 264:

  The establishment of a TCP connection involves a negotiation called 3 way handshake. What type of message sends the client to the server in order to begin this negotiation?

  A. RST

  B. ACK

  C. SYN-ACK

  D. SYN

  Correct Answer: D Section: (none)

• Question 265:

  Which of the following is a passive wireless packet analyzer that works on Linux-based systems?

  A. Burp Suite

  B. OpenVAS

  C. tshark

  D. Kismet

  Correct Answer: D Section: (none)

• Question 266:

  You want to do an ICMP scan on a remote computer using hping2. What is the proper syntax?

  A. hping2 host.domain.com

  B. hping2 --set-ICMP host.domain.com

  C. hping2 -i host.domain.com

  D. hping2 -1 host.domain.com

  Correct Answer: D Section: (none)

• Question 267:

  Which Metasploit Framework tool can help penetration tester for evading Anti-virus Systems?

  A. msfpayload

  B. msfcli

  C. msfencode

  D. msfd

  Correct Answer: C Section: (none)

• Question 268:

  Which of the following Nmap commands will produce the following output?

  Output: A. nmap -sN -Ps -T4 192.168.1.1

  

  B. nmap -sT -sX -Pn -p 1-65535 192.168.1.1

  C. nmap -sS -Pn 192.168.1.1

  D. nmap -sS -sU -Pn -p 1-65535 192.168.1.1

  Correct Answer: D Section: (none)

• Question 269:

  Which protocol is used for setting up secured channels between two devices, typically in VPNs?

  A. IPSEC

  B. PEM

  C. SET

  D. PPP

  Correct Answer: A Section: (none)

• Question 270:

  In cryptanalysis and computer security, 'pass the hash' is a hacking technique that allows an attacker to authenticate to a remote server/service by using the underlying NTLM and/or LanMan hash of a user's password, instead of requiring the associated plaintext password as is normally the case. Metasploit Framework has a module for this technique: psexec. The psexec module is often used by penetration testers to obtain access to a given system that you already know the credentials for. It was written by sysinternals and has been integrated within the framework. Often as penetration testers, successfully gain access to a system through some exploit, use meterpreter to grab the passwords or other methods like fgdump, pwdump, or cachedump and then utilize rainbowtables to crack those hash values.

  Which of the following is true hash type and sort order that is using in the psexec module's 'smbpass'?

  A. NT:LM

  B. LM:NT

  C. LM:NTLM

  D. NTLM:LM

  Correct Answer: B Section: (none)