Pass Eccouncil 312-50V10 Exam With 100% Guarantee

https://www.pass4itsure.com/312-50v10.
html
2020 Latest pass4itsure 312-50V10 PDF and VCE dumps Download
312-50V10Q&As
Certified Ethical Hacker Exam (C|EH v10)
Pass ECCouncil 312-50V10 Exam with 100%

Guarantee
Free Download Real Questions & Answers PDF and VCE file from:
https://www.pass4itsure.com/312-50v10.html
100% Passing Guarantee

100% Money Back Assurance
Following Questions and Answers are all new published by ECCouncil

Official Exam Center
312-50V10 VCE Dumps | 312-50V10 Practice Test | 312-50V10 Study Guide 1/7
QUESTION 1
You have successfully gained access to your client\\'s internal network and successfully comprised a Linux server which
is part of the internal IP network. You want to know which Microsoft Windows workstations have file sharing enabled.
Which port would you see listening on these Windows machines in the network?
A. 445
B. 3389
C. 161
D. 1433
Correct Answer: A
The following ports are associated with file sharing and server message block (SMB) communications: References:
https://support.microsoft.com/en-us/kb/298804
QUESTION 2
Which of the following guidelines or standards is associated with the credit card industry?
A. Control Objectives for Information and Related Technology (COBIT)
B. Sarbanes-Oxley Act (SOX)
C. Health Insurance Portability and Accountability Act (HIPAA)
D. Payment Card Industry Data Security Standards (PCI DSS)
Correct Answer: D
QUESTION 3
What is the role of test automation in security testing?
A. It can accelerate benchmark tests and repeat them with a consistent test setup. But it cannot replace manual testing
completely.
B. It is an option but it tends to be very expensive.
C. It should be used exclusively. Manual testing is outdated because of low speed and possible test setup
inconsistencies.
D. Test automation is not usable in security due to the complexity of the tests.
Correct Answer: A
QUESTION 4
Employees in a company are no longer able to access Internet web sites on their computers. The network administrator
is able to successfully ping IP address of web servers on the Internet and is able to open web sites by using an IP
address in place of the URL. The administrator runs the nslookup command for www.eccouncil.org and receives an
error message stating there is no response from the server. What should the administrator do next?
A. Configure the firewall to allow traffic on TCP ports 53 and UDP port 53.
B. Configure the firewall to allow traffic on TCP ports 80 and UDP port 443.
C. Configure the firewall to allow traffic on TCP port 53.
D. Configure the firewall to allow traffic on TCP port 8080.
Correct Answer: A
QUESTION 5
What port number is used by LDAP protocol?
A. 110
B. 389
C. 464
D. 445
Correct Answer: B
QUESTION 6
What is the way to decide how a packet will move from an untrusted outside host to a protected inside that is behind a
firewall, which permits the hacker to determine which ports are open and if the packets can pass through the packet-
filtering of the firewall?
A. Firewalking
B. Session hijacking
C. Network sniffing
D. Man-in-the-middle attack
Correct Answer: A
QUESTION 7
A security consultant decides to use multiple layers of anti-virus defense, such as end user desktop anti-virus and E-
mail gateway. This approach can be used to mitigate which kind of attack?
A. Forensic attack
B. ARP spoofing attack
C. Social engineering attack
D. Scanning attack
Correct Answer: C
QUESTION 8
Bob, a network administrator at BigUniversity, realized that some students are connecting their notebooks in the wired
network to have Internet access. In the university campus, there are many Ethernet ports available for professors and
authorized visitors but not for students.
He identified this when the IDS alerted for malware activities in the network.
What should Bob do to avoid this problem?
A. Disable unused ports in the switches
B. Separate students in a different VLAN
C. Use the 802.1x protocol
D. Ask students to use the wireless network
Correct Answer: C
QUESTION 9
The chance of a hard drive failure is once every three years. The cost to buy a new hard drive is $300. It will require 10
hours to restore the OS and software to the new hard disk. It will require a further 4 hours to restore the database from
the last backup to the new hard disk. The recovery person earns $10/hour. Calculate the SLE, ARO, and ALE. Assume
the EF = 1 (100%).
What is the closest approximate cost of this replacement and recovery operation per year?
A. $146
B. $1320
C. $440
D. $100
Correct Answer: A
The annualized loss expectancy (ALE) is the product of the annual rate of occurrence (ARO) and the single loss
expectancy (SLE).
Suppose than an asset is valued at $100,000, and the Exposure Factor (EF) for this asset is 25%. The single loss
expectancy (SLE) then, is 25% * $100,000, or $25,000. In our example the ARO is 33%, and the SLE is 300+14*10 (as
EF=1).
The ALO is thus:
33%*(300+14*10) which equals 146.
References: https://en.wikipedia.org/wiki/Annualized_loss_expectancy
QUESTION 10
In the field of cryptanalysis, what is meant by a "rubber-hose" attack?
A. Attempting to decrypt cipher text by making logical assumptions about the contents of the original plain text.
B. Extraction of cryptographic secrets through coercion or torture.
C. Forcing the targeted key stream through a hardware-accelerated device such as an ASIC.
D. A backdoor placed into a cryptographic algorithm by its creator.
Correct Answer: B
QUESTION 11
While performing online banking using a Web browser, Kyle receives an email that contains an image of a well-crafted
art. Upon clicking the image, a new tab on the web browser opens and shows an animated GIF of bills and coins being
swallowed by a crocodile. After several days, Kyle noticed that all his funds on the bank was gone. What Web browser-
based security vulnerability got exploited by the hacker?
A. Clickjacking
B. Web Form Input Validation
C. Cross-Site Request Forgery
D. Cross-Site Scripting
Correct Answer: C
QUESTION 12
One advantage of an application-level firewall is the ability to:
A. filter packets at the network level.
B. filter specific commands, such as http:post.
C. retain state information for each packet.
D. monitor tcp handshaking.
Correct Answer: B
QUESTION 13
One of the Forbes 500 companies has been subjected to a large scale attack. You are one of the shortlisted pen testers
that they may hire. During the interview with the CIO, he emphasized that he wants to totally eliminate all risks. What is
one of the first things you should do when hired?
A. Interview all employees in the company to rule out possible insider threats.
B. Establish attribution to suspected attackers.
C. Explain to the CIO that you cannot eliminate all risk, but you will be able to reduce risk to acceptable levels.
D. Start the Wireshark application to start sniffing network traffic.
Correct Answer: C
312-50V10 VCE Dumps 312-50V10 Practice Test 312-50V10 Study Guide
To Read the Whole Q&As, please purchase the Complete Version from Our website.
Try our product !
100% Guaranteed Success

100% Money Back Guarantee
365 Days Free Update
Instant Download After Purchase
24x7 Customer Support
Average 99.9% Success Rate
More than 800,000 Satisfied Customers Worldwide
Multi-Platform capabilities - Windows, Mac, Android, iPhone, iPod, iPad, Kindle
We provide exam PDF and VCE of Cisco, Microsoft, IBM, CompTIA, Oracle and other IT Certifications.
You can view Vendor list of All Certification Exams offered:
https://www.pass4itsure.com/allproducts
Need Help
Please provide as much detail as possible so we can best assist you.
To update a previously submitted ticket:
Any charges made through this site will appear as Global Simulators Limited.
All trademarks are the property of their respective owners.
Copyright © pass4itsure, All Rights Reserved.
Powered by TCPDF (www.tcpdf.org)

Pass Eccouncil 312-50V10 Exam With 100% Guarantee

Uploaded by

Copyright:

Available Formats

Pass Eccouncil 312-50V10 Exam With 100% Guarantee

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Pass Eccouncil 312-50V10 Exam With 100% Guarantee

Uploaded by

Copyright:

Available Formats

https://www.pass4itsure.com/312-50v10.

Pass ECCouncil 312-50V10 Exam with 100%

100% Passing Guarantee

Following Questions and Answers are all new published by ECCouncil

A. Control Objectives for Information and Related Technology (COBIT)

B. Sarbanes-Oxley Act (SOX)

C. Health Insurance Portability and Accountability Act (HIPAA)

D. Payment Card Industry Data Security Standards (PCI DSS)

What is the role of test automation in security testing?

B. It is an option but it tends to be very expensive.

C. Configure the firewall to allow traffic on TCP port 53.

D. Configure the firewall to allow traffic on TCP port 8080.

What port number is used by LDAP protocol?

B. ARP spoofing attack

C. Social engineering attack

What should Bob do to avoid this problem?

A. Disable unused ports in the switches

B. Separate students in a different VLAN

C. Use the 802.1x protocol

D. Ask students to use the wireless network

The ALO is thus:

33%*(300+14*10) which equals 146.

In the field of cryptanalysis, what is meant by a "rubber-hose" attack?

B. Extraction of cryptographic secrets through coercion or torture.

D. A backdoor placed into a cryptographic algorithm by its creator.

B. Web Form Input Validation

C. Cross-Site Request Forgery

One advantage of an application-level firewall is the ability to:

A. filter packets at the network level.

B. filter specific commands, such as http:post.

C. retain state information for each packet.

D. monitor tcp handshaking.

B. Establish attribution to suspected attackers.

D. Start the Wireshark application to start sniffing network traffic.

312-50V10 VCE Dumps 312-50V10 Practice Test 312-50V10 Study Guide

Try our product !

100% Guaranteed Success

Powered by TCPDF (www.tcpdf.org)

You might also like

33%(300+1410) which equals 146.