EC-COUNCIL EC-COUNCIL Certifications 412-79V8 Questions & Answers

• Question 171:

  John, the penetration testing manager in a pen testing firm, needs to prepare a pen testing pricing report for a client.

  Which of the following factors does he need to consider while preparing the pen testing pricing report?

  

  A. Number of employees in the client organization

  B. Complete structure of the organization

  C. Number of client computers to be tested and resources required to perform a pen test

  D. Number of servers available in the client organization

  Correct Answer: B

• Question 172:

  Amazon Consulting Corporation provides penetration testing and managed security services to

  companies. Legality and regulatory compliance is one of the important components in conducting a

  successful security audit.

  Before starting a test, one of the agreements both the parties need to sign relates to limitations,

  constraints, liabilities, code of conduct, and indemnification considerations between the parties.

  

  Which agreement requires a signature from both the parties (the penetration tester and the company)?

  A. Non-disclosure agreement

  B. Client fees agreement

  C. Rules of engagement agreement

  D. Confidentiality agreement

  Correct Answer: D

• Question 173:

  This is a group of people hired to give details of the vulnerabilities present in the system found after a penetration test. They are elite and extremely competent penetration testers and intrusion analysts. This team prepares a report on the vulnerabilities in the system, attack methods, and how to defend against them.

  

  What is this team called?

  A. Blue team

  B. Tiger team

  C. Gorilla team

  D. Lion team

  Correct Answer: B

• Question 174:

  ARP spoofing is a technique whereby an attacker sends fake ("spoofed") Address Resolution Protocol (ARP) messages onto a Local Area Network. Generally, the aim is to associate the attacker's MAC address with the IP address of another host (such as the default gateway), causing any traffic meant for that IP address to be sent to the attacker instead. ARP spoofing attack is used as an opening for other attacks.

  

  What type of attack would you launch after successfully deploying ARP spoofing?

  A. Parameter Filtering

  B. Social Engineering

  C. Input Validation

  D. Session Hijacking

  Correct Answer: D

• Question 175:

  Vulnerability assessment is an examination of the ability of a system or application, including the current security procedures and controls, to withstand assault.

  

  What does a vulnerability assessment identify?

  A. Disgruntled employees

  B. Weaknesses that could be exploited

  C. Physical security breaches

  D. Organizational structure

  Correct Answer: B

• Question 176:

  The Web parameter tampering attack is based on the manipulation of parameters exchanged between client and server in order to modify application data, such as user credentials and permissions, price and quantity of products, etc. Usually, this information is stored in cookies, hidden form fields, or URL Query Strings, and is used to increase application functionality and control. This attack takes advantage of the fact that many programmers rely on hidden or fixed fields (such as a hidden tag in a form or a parameter in a URL) as the only security measure for certain operations. Attackers can easily modify these parameters to bypass the security mechanisms that rely on them.

  

  What is the best way to protect web applications from parameter tampering attacks?

  A. Validating some parameters of the web application

  B. Minimizing the allowable length of parameters

  C. Using an easily guessable hashing algorithm

  D. Applying effective input field filtering parameters

  Correct Answer: B

• Question 177:

  Which of the following is the range for assigned ports managed by the Internet Assigned Numbers Authority (IANA)?

  A. 3001-3100

  B. 5000-5099

  C. 6666-6674

  D. 0 1023

  Correct Answer: D

• Question 178:

  Identify the injection attack represented in the diagram below:

  

  A. XPath Injection Attack

  B. XML Request Attack

  C. XML Injection Attack

  D. Frame Injection Attack

  Correct Answer: C

• Question 179:

  Which of the following approaches to vulnerability assessment relies on the administrator providing baseline of system configuration and then scanning continuously without incorporating any information found at the time of scanning?

  

  A. Service-based Assessment Solutions

  B. Product-based Assessment Solutions

  C. Tree-based Assessment

  D. Inference-based Assessment

  Correct Answer: C

• Question 180:

  What is a goal of the penetration testing report?

  

  A. The penetration testing report helps you comply with local laws and regulations related to environmental conditions in the organization.

  B. The penetration testing report allows you to sleep better at night thinking your organization is protected

  C. The pen testing report helps executive management to make decisions on implementing security controls in the organization and helps the security team implement security controls and patch any flaws discovered during testing.

  D. The penetration testing report allows you to increase sales performance by effectively communicating with the internal security team.

  Correct Answer: C