Free 365 Days Exam Updates 312-50v10 dumps with test Engine Practice [Q373-Q395]

Rate this post

Free 365 Days Exam Updates 312-50v10 dumps with test Engine Practice

Updated Verified 312-50v10 dumps Q&As – 100% Pass Guaranteed

More About EC-Council 312-50 Exam

CEH is the baseline exam for the U.S. Department of Defense, which makes it even more credible. It is thorough in all the required phases affecting ethical hacking. This includes reconnaissance, attaining access, enumerating, keeping access, and ensuring that your tracks are well-covered. Commonly, 312-50v10 certification test is available for taking via ECC Exam or Pearson VUE. It is 4 hours long and the candidates will have to answer 125 multiple-choice questions. If you want to get the CEH certificate, you will need to make sure that you get about 60-85% of the answers correctly. Currently, there is a new version of this test, which is 312-50v11. You can check its details on the official website.

For more info visit:

312-50v10 Exam Reference

Module 18: IoT Hacking

This area includes the learners’ knowledge of IoT concepts; cryptography tools; IoT security tools; different IoT threats & attacks; IoT hacking.

Q373. Firewalk has just completed the second phase (the scanning phase) and a technician receives the output shown below. What conclusions can be drown based on these scan results?
TCP port 21 – no response
TCP port 22 – no response
TCP port 23 – Time-to-live exceeded

The scan on port 23 was able to make a connection to the destination host prompting the firewall to respond with a TTL error

The lack of response from ports 21 and 22 indicate that those services are not running on the destination server

The scan on port 23 passed through the filtering device. This indicates that port 23 was not blocked at the firewall

The firewall itself is blocking ports 21 through 23 and a service is listening on port 23 of the target host

Explanation

Q374. How is the public key distributed in an orderly, controlled fashion so that the users can be sure of the sender’s identity?

Hash value

Private key

Digital signature

Digital certificate

Q375. What type of OS fingerprinting technique sends specially crafted packets to the remote OS and analyzes the received response?

Passive

Reflective

Active

Distributive

Q376. Which type of security document is written with specific step-by-step details?

Process

Procedure

Policy

Paradigm

Q377. Which definition among those given below best describes a covert channel?

A server program using a port that is not well known.

Making use of a protocol in a way it is not intended to be used.

It is the multiplexing taking place on a communication link.

It is one of the weak channels used by WEP which makes it insecure

Q378. A Certificate Authority (CA) generates a key pair that will be used for encryption and decryption of email. The integrity of the encrypted email is dependent on the security of which of the following?

Public key

Private key

Modulus length

Email server certificate

Q379. Bluetooth uses which digital modulation technique to exchange information between paired devices?

PSK (phase-shift keying)

FSK (frequency-shift keying)

ASK (amplitude-shift keying)

QAM (quadrature amplitude modulation)

Phase shift keying is the form of Bluetooth modulation used to enable the higher data rates achievable with Bluetooth 2 EDR (Enhanced Data Rate). Two forms of PSK are used: /4 DQPSK, and 8DPSK.
References: http://www.radio-electronics.com/info/wireless/bluetooth/radio-interface- modulation.php

Q380. Which of the following DoS tools is used to attack target web applications by starvation of available sessions on the web server? The tool keeps sessions at halt using never-ending POST transmissions and sending an arbitrarily large content-length header value.

Stacheldraht

LOIC

R-U-Dead-Yet? (RUDY)

MyDoom

Q381. env x='(){ :;};echo exploit’ bash -c ‘cat/etc/passwd’
What is the Shellshock bash vulnerability attempting to do a vulnerable Linux host?

Removes the passwd file

Changes all passwords in passwd

Add new user to the passwd file

Display passwd content to prompt

Q382. What is the term coined for logging, recording and resolving events in a company?

Internal Procedure

Security Policy

Incident Management Process

Metrics

Q383. An incident investigator asks to receive a copy of the event logs from all firewalls, proxy servers, and
Intrusion Detection Systems (IDS) on the network of an organization that has experienced a possible
breach of security. When the investigator attempts to correlate the information in all of the logs, the
sequence of many of the logged events do not match up.
What is the most likely cause?

The network devices are not all synchronized.

Proper chain of custody was not observed while collecting the logs.

The attacker altered or erased events from the logs.

The security breach was a false positive.

Q384. A medium-sized healthcare IT business decides to implement a risk management strategy.
Which of the following is NOT one of the five basic responses to risk?

Delegate

Avoid

Mitigate

There are five main ways to manage risk: acceptance, avoidance, transference, mitigation or exploitation.
References: http://www.dbpmanagement.com/15/5-ways-to-manage-risk

Q385. Eric has discovered a fantastic package of tools named Dsniff on the Internet. He has learnt to use these tools in his lab and is now ready for real world exploitation. He was able to effectively intercept communications between the two entities and establish credentials with both sides of the connections. The two remote ends of the communication never notice that Eric is relaying the information between the two. What would you call this attack?

Interceptor

Man-in-the-middle

ARP Proxy

Poisoning Attack

Q386. Which of the following programming languages is most susceptible to buffer overflow attacks, due to its lack of a built-in-bounds checking mechanism?

Output:
Segmentation fault

Python

Java

C++

Q387. Defining rules, collaborating human workforce, creating a backup plan, and testing the plans are within what phase of the Incident Handling Process?

Preparation phase

Containment phase

Recovery phase

Identification phase

Q388. The company ABC recently contract a new accountant. The accountant will be working with the financial statements. Those financial statements need to be approved by the CFO and then they will be sent to the accountant but the CFO is worried because he wants to be sure that the information sent to the accountant was not modified once he approved it. What is the following options can be useful to ensure the integrity of the data?

The CFO can use a hash algorithm in the document once he approved the financial statements

The CFO can use an excel file with a password

The financial statements can be sent twice, one by email and the other delivered in USB and the accountant can compare both to be sure is the same document

The document can be sent to the accountant using an exclusive USB for that document

Q389. An nmap command that includes the host specification of 202.176.56-57.* will scan _______ number of hosts.

256

512

Over 10, 000

Q390. Which of the following scanning method splits the TCP header into several packets and makes it difficult
for packet filters to detect the purpose of the packet?

ICMP Echo scanning

SYN/FIN scanning using IP fragments

ACK flag probe scanning

IPID scanning

Q391. At a Windows Server command prompt, which command could be used to list the running services?

Sc query type= running

Sc query \servername

Sc query

Sc config

Q392. A covert channel is a channel that

transfers information over, within a computer system, or network that is outside of the security policy.

transfers information over, within a computer system, or network that is within the security policy.

transfers information via a communication path within a computer system, or network for transfer of data.

transfers information over, within a computer system, or network that is encrypted.

Q393. You have several plain-text firewall logs that you must review to evaluate network traffic.
You know that in order to do fast, efficient searches of the logs you must use regular expressions.
Which command-line utility are you most likely to use?

Grep

Notepad

MS Excel

Relational Database

grep is a command-line utility for searching plain-text data sets for lines matching a regular expression.
References: https://en.wikipedia.org/wiki/Grep

Q394. Which of the following Bluetooth hacking techniques does an attacker use to send messages to users without the recipient’s consent, similar to email spamming?

Bluesmacking

Bluesniffing

Bluesnarfing

Bluejacking

Q395. Jesse receives an email with an attachment labeled “Court_Notice_21206.zip”. Inside the zip file is a file named “Court_Notice_21206.docx.exe” disguised as a word document. Upon execution, a window appears stating, “This word document is corrupt.” In the background, the file copies itself to Jesse APPDATAlocal directory and begins to beacon to a C2 server to download additional malicious binaries.
What type of malware has Jesse encountered?

Trojan

Worm

Macro Virus

Key-Logger

Explanation
In computing, Trojan horse, or Trojan, is any malicious computer program which is used to hack into a computer by misleading users of its true intent. Although their payload can be anything, many modern forms act as a backdoor, contacting a controller which can then have unauthorized access to the affected computer.
References: https://en.wikipedia.org/wiki/Trojan_horse_(computing)

Loading …

Provide Valid Dumps To Help You Prepare For Certified Ethical Hacker Exam (CEH v10) Exam: https://www.prepawaypdf.com/EC-COUNCIL/312-50v10-practice-exam-dumps.html

Online 312-50v10 Test Brain Dump Question and Test Engine [Q267-Q288]
Real 712-50 Dumps – EC-COUNCIL Correct Answers updated on 2022 [Q200-Q222]
2022 Updated Verified Pass 312-50v11 Study Guides & Best Courses [Q34-Q49]
A fully updated 2022 712-50 Exam Dumps exam guide from training expert PrepAwayPDF [Q249-Q272]