312-50v8無料問題集「EC-COUNCIL Certified Ethical Hacker v8」

質問 1

What techniques would you use to evade IDS during a Port Scan? (Select 4 answers)

（A）Overload the IDS with Junk traffic to mask your scan

（B）Use fragmented IP packets

（C）Connect to proxy servers or compromised Trojaned machines to launch attacks

（D）Use source routing (if possible)

（E）Spoof your IP address when launching attacks and sniff responses from the server

正解：B、C、D、E 解答を投票する

質問 2

You want to know whether a packet filter is in front of 192.168.1.10. Pings to 192.168.1.10 don't get answered. A basic nmap scan of 192.168.1.10 seems to hang without returning any information. What should you do next?

（A）Run NULL TCP hping2 against 192.168.1.10

（B）The firewall is blocking all the scans to 192.168.1.10

（C）Run nmap XMAS scan against 192.168.1.10

（D）Use NetScan Tools Pro to conduct the scan

正解：A 解答を投票する

質問 3

You perform the above traceroute and notice that hops 19 and 20 both show the same IP address.

This probably indicates what?

（A）A Honeypot

（B）A host based IDS

（C）An application proxying firewall

（D）A stateful inspection firewall

正解：D 解答を投票する

質問 4

You are trying to package a RAT Trojan so that Anti-Virus software will not detect it. Which of the listed technique will NOT be effective in evading Anti-Virus scanner?

（A）Convert the Trojan.exe file extension to Trojan.txt disguising as text file

（B）Encrypt the Trojan using multiple hashing algorithms like MD5 and SHA-1

（C）Break the Trojan into multiple smaller files and zip the individual pieces

（D）Change the content of the Trojan using hex editor and modify the checksum

正解：A 解答を投票する

質問 5

Low humidity in a data center can cause which of the following problems?

（A）Airborne contamination

（B）Heat

（C）Corrosion

（D）Static electricity

正解：D 解答を投票する

質問 6

The following script shows a simple SQL injection. The script builds an SQL query by concatenating hard-coded strings together with a string entered by the user:

The user is prompted to enter the name of a city on a Web form. If she enters Chicago, the query assembled by the script looks similar to the following:
SELECT * FROM OrdersTable WHERE ShipCity = 'Chicago'
How will you delete the OrdersTable from the database using SQL Injection?

（A）cmdshell'; 'del c:\sql\mydb\OrdersTable' //

（B）EXEC; SELECT * OrdersTable > DROP -

（C）Chicago'; drop table OrdersTable -

（D）Delete table'blah'; OrdersTable -

正解：C 解答を投票する

質問 7

__________ is found in all versions of NTFS and is described as the ability to fork file data into existing files without affecting their functionality, size, or display to traditional file browsing utilities like dir or Windows Explorer

（A）Alternate Data Streams

（B）Merge Streams

（C）Steganography

（D）NetBIOS vulnerability

正解：A 解答を投票する

質問 8

To what does "message repudiation" refer to what concept in the realm of email security?

（A）Message repudiation means a sender can claim they did not actually send a particular message.

（B）Message repudiation means a recipient can be sure that a message was sent from a particular person.

（C）Message repudiation means a user can claim damages for a mail message that damaged their reputation.

（D）Message repudiation means a recipient can be sure that a message was sent from a certain host.

（E）Message repudiation means a user can validate which mail server or servers a message was passed through.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

Bob has been hired to do a web application security test. Bob notices that the site is dynamic and must make use of a back end database. Bob wants to see if SQL Injection would be possible. What is the first character that Bob should use to attempt breaking valid SQL request?

（A）Single Quote

（B）Double Quote

（C）Exclamation Mark

（D）Semi Column

正解：A 解答を投票する

質問 10

One way to defeat a multi-level security solution is to leak data via

（A）a bypass regulator.

（B）steganography.

（C）a covert channel.

（D）asymmetric routing.

正解：C 解答を投票する

質問 11

Which tool is used to automate SQL injections and exploit a database by forcing a given
web application to connect to another database controlled by a hacker?

（A）SQLInjector

（B）NetCat

（C）Cain and Abel

（D）DataThief

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

Which is the right sequence of packets sent during the initial TCP three way handshake?

（A）SYN,ACK,SYN-ACK

（B）FIN,FIN-ACK,ACK

（C）SYN,URG,ACK

（D）SYN,SYN-ACK,ACK

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 13

Which system consists of a publicly available set of databases that contain domain name registration contact information?

（A）WHOIS

（B）CAPTCHA

（C）IETF

（D）IANA

正解：A 解答を投票する

質問 14

A Network Administrator was recently promoted to Chief Security Officer at a local university. One of employee's new responsibilities is to manage the implementation of an RFID card access system to a new server room on campus. The server room will house student enrollment information that is securely backed up to an off-site location.
During a meeting with an outside consultant, the Chief Security Officer explains that he is concerned that the existing security controls have not been designed properly. Currently, the Network Administrator is responsible for approving and issuing RFID card access to the server room, as well as reviewing the electronic access logs on a weekly basis.
Which of the following is an issue with the situation?

（A）Segregation of duties

（B）Undue influence

（C）Inadequate disaster recovery plan

（D）Lack of experience

正解：A 解答を投票する

質問 15

Smart cards use which protocol to transfer the certificate in a secure manner?

（A）Point to Point Protocol (PPP)

（B）Extensible Authentication Protocol (EAP)

（C）Layer 2 Tunneling Protocol (L2TP)

（D）Point to Point Tunneling Protocol (PPTP)

正解：B 解答を投票する

質問 16

You may be able to identify the IP addresses and machine names for the firewall, and the names of internal mail servers by:

（A）Examining the SMTP header information generated in response to an e-mail message sent to an invalid address

（B）Sending a mail message to a valid address on the target network,and examining the header information generated by the IMAP servers

（C）Sending a mail message to an invalid address on the target network,and examining the header information generated by the POP servers

（D）Examining the SMTP header information generated by using the -mx command parameter of DIG

正解：A 解答を投票する

質問 17

An NMAP scan of a server shows port 69 is open. What risk could this pose?

（A）Cleartext login

（B）Unauthenticated access

（C）Web portal data leak

（D）Weak SSL version

正解：B 解答を投票する

質問 18

Which definition below best describes a covert channel?

（A）Making use of a protocol in a way it was not intended to be used

（B）It is one of the weak channels used by WEP that makes it insecure

（C）It is the multiplexing taking place on a communication link

（D）A server program using a port that is not well known

正解：A 解答を投票する

質問 19

Which of the following is a detective control?

（A）Continuity of operations plan

（B）Security policy

（C）Smart card authentication

（D）Audit trail

正解：D 解答を投票する

質問 20

Network Intrusion Detection systems can monitor traffic in real time on networks.
Which one of the following techniques can be very effective at avoiding proper detection?

（A）Use of only TCP based protocols.

（B）Use of only UDP based protocols.

（C）Fragmentation of packets.

（D）Use of fragmented ICMP traffic only.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

312-50v8 無料問題集「EC-COUNCIL Certified Ethical Hacker v8」

弊社を連絡する

関連リンク

トップ試験