EC-COUNCIL EC-COUNCIL Certifications 412-79V8 Questions & Answers

• Question 121:

  Which of the following attacks is an offline attack?

  A. Pre-Computed Hashes

  B. Hash Injection Attack

  C. Password Guessing

  D. Dumpster Diving

  Correct Answer: A

• Question 122:

  Transmission control protocol accepts data from a data stream, divides it into chunks, and adds a TCP header creating a TCP segment. The TCP header is the first 24 bytes of a TCP segment that contains the parameters and state of an endto-end TCP socket. It is used to track the state of communication between two TCP endpoints. For a connection to be established or initialized, the two hosts must synchronize. The synchronization requires each side to send its own initial sequence number and to receive a confirmation of exchange in an acknowledgment (ACK) from the other side The below diagram shows the TCP Header format:

  

  How many bits is a acknowledgement number?

  A. 16 bits

  B. 32 bits

  C. 8 bits

  D. 24 bits

  Correct Answer: B

• Question 123:

  Choose the correct option to define the Prefix Length.

  

  A. Prefix Length = Subnet + Host portions

  B. Prefix Length = Network + Host portions

  C. Prefix Length = Network + Subnet portions

  D. Prefix Length = Network + Subnet + Host portions

  Correct Answer: D

• Question 124:

  Which of the following pen testing reports provides detailed information about all the tasks performed during penetration testing?

  

  A. Client-Side Test Report

  B. Activity Report

  C. Host Report

  D. Vulnerability Report

  Correct Answer: A

• Question 125:

  The Internet is a giant database where people store some of their most private information on the cloud, trusting that the service provider can keep it all safe. Trojans, Viruses, DoS attacks, website defacement, lost computers, accidental publishing, and more have all been sources of major leaks over the last 15 years.

  

  What is the biggest source of data leaks in organizations today?

  A. Weak passwords and lack of identity management

  B. Insufficient IT security budget

  C. Rogue employees and insider attacks

  D. Vulnerabilities, risks, and threats facing Web sites

  Correct Answer: D

• Question 126:

  A man enters a PIN number at an ATM machine, being unaware that the person next to him was watching. Which of the following social engineering techniques refers to this type of information theft?

  A. Shoulder surfing

  B. Phishing

  C. Insider Accomplice

  D. Vishing

  Correct Answer: A

• Question 127:

  Identify the person who will lead the penetration-testing project and be the client point of contact.

  A. Database Penetration Tester

  B. Policy Penetration Tester

  C. Chief Penetration Tester

  D. Application Penetration Tester

  Correct Answer: C

• Question 128:

  Due to illegal inputs, various types of TCP stacks respond in a different manner. Some IDSs do not take into account the TCP protocol's urgency feature, which could allow testers to evade the IDS.

  

  Penetration tester needs to try different combinations of TCP flags (e.g. none, SYN/FIN, SYN/RST, SYN/ FIN/ACK, SYN/RST/ACK, and All Flags) to test the IDS. Which of the following TCP flag combinations combines the problem of initiation, midstream, and termination flags with the PSH and URG?

  A. SYN/RST/ACK

  B. SYN/FIN/ACK

  C. SYN/FIN

  D. All Flags

  Correct Answer: D

• Question 129:

  Identify the type of firewall represented in the diagram below: A. Stateful multilayer inspection firewall

  

  B. Application level gateway

  C. Packet filter

  D. Circuit level gateway

  Correct Answer: B

• Question 130:

  Identify the correct formula for Return on Investment (ROI).

  A. ROI = ((Expected Returns Cost of Investment) / Cost of Investment) * 100

  B. ROI = (Expected Returns + Cost of Investment) / Cost of Investment

  C. ROI = (Expected Returns - Cost of Investment) / Cost of Investment

  D. ROI = ((Expected Returns + Cost of Investment) / Cost of Investment) * 100

  Correct Answer: C