EC0-350無料問題集「EC-COUNCIL Ethical hacking and countermeasures」

質問 1

_____________ is a type of symmetric-key encryption algorithm that transforms a fixed-length block of plaintext (unencrypted text) data into a block of ciphertext (encrypted text) data of the same length.

（A）Stream Cipher

（B）Bit Cipher

（C）Block Cipher

（D）Hash Cipher

正解：C 解答を投票する

質問 2

Which security control role does encryption meet?

（A）Preventative

（B）Defensive

（C）Offensive

（D）Detective

正解：A 解答を投票する

質問 3

Use the traceroute results shown above to answer the following question:

The perimeter security at targetcorp.com does not permit ICMP TTL-expired packets out.

（A）False

（B）True

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

When working with Windows systems, what is the RID of the true administrator account?

（A）501

（B）512

（C）1001

（D）1000

（E）1024

（F）500

正解：F 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

Jake works as a system administrator at Acme Corp. Jason, an accountant of the firm befriends him at the canteen and tags along with him on the pretext of appraising him about potential tax benefits. Jason waits for Jake to swipe his access card and follows him through the open door into the secure systems area. How would you describe Jason's behavior within a security context?

（A）Trailing

（B）Tailgating

（C）Smooth Talking

（D）Swipe Gating

正解：B 解答を投票する

質問 6

You are a Administrator of Windows server. You want to find the port number for POP3. What file would you find the information in and where?
Select the best answer.

（A）/etc/services

（B）%windir%\\system32\\drivers\\etc\\services

（C）%windir%\\etc\\services

（D）%windir%/system32/drivers/etc/services

（E）system32\\drivers\\etc\\services

正解：B 解答を投票する

質問 7

SNMP is a connectionless protocol that uses UDP instead of TCP packets (True or False)

（A）true

（B）false

正解：A 解答を投票する

質問 8

Google uses a unique cookie for each browser used by an individual user on a computer. This cookie contains information that allows Google to identify records about that user on its database. This cookie is submitted every time a user launches a Google search, visits a site using AdSense etc. The information stored in Google's database, identified by the cookie, includes Everything you search for using Google Every web page you visit that has Google Adsense ads How would you prevent Google from storing your search keywords?

（A）Use MAC OS X instead of Windows 7. Mac OS has higher level of privacy controls by default.

（B）Block Google Cookie by applying Privacy and Security settings in your web browser

（C）Do not use Google but use another search engine Bing which will not collect and store your search keywords

（D）Disable the Google cookie using Google Advanced Search settings on Google Search page

正解：B 解答を投票する

質問 9

What is a NULL scan?

（A）A scan in which all flags are turned off

（B）A scan in which the packet size is set to zero

（C）A scan in which certain flags are off

（D）A scan in which all flags are on

（E）A scan with a illegal packet size

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

After an attacker has successfully compromised a remote computer, what would be one of the last steps that would be taken to ensure that the compromise is not traced back to the source of the problem?

（A）Setup a backdoor

（B）Install pactehs

（C）Cover your tracks

（D）Install a zombie for DDOS

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 11

How does an operating system protect the passwords used for account logins?

（A）The operating system encrypts the passwords, and decrypts them when needed.

（B）The operating system stores all passwords in a protected segment of non-volatile memory.

（C）The operating system stores the passwords in a secret file that users cannot find.

（D）The operating system performs a one-way hash of the passwords.

正解：D 解答を投票する

質問 12

John wishes to install a new application onto his Windows 2000 server.
He wants to ensure that any application he uses has not been Trojaned.
What can he do to help ensure this?

（A）Obtain the application from a CD-ROM disc

（B）Compare the file's virus signature with the one published on the distribution media

（C）Obtain the application via SSL

（D）Compare the file's MD5 signature with the one published on the distribution media

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 13

You have retrieved the raw hash values from a Windows 2000 Domain Controller. Using social engineering, you come to know that they are enforcing strong passwords. You understand that all users are required to use passwords that are at least 8 characters in length. All passwords must also use 3 of the 4 following categories: lower case letters, capital letters, numbers and special characters.
With your existing knowledge of users, likely user account names and the possibility that they will choose the easiest passwords possible, what would be the fastest type of password cracking attack you can run against these hash values and still get results?

（A）Hybrid Attack

（B）Dictionary Attack

（C）Brute Force Attack

（D）Online Attack

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

An Nmap scan shows the following open ports, and nmap also reports that the OS guessing results to match too many signatures hence it cannot reliably be identified:
21 ftp
23 telnet
80 http
443 https
What does this suggest?

（A）The host is not firewalled

（B）The host is not a Linux or Solaris system

（C）The host is not properly patched

（D）This is a Windows Domain Controller

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 15

Several of your co-workers are having a discussion over the etc/passwd file. They are at odds over what types of encryption are used to secure Linux passwords.(Choose all that apply.

（A）Linux passwords are encrypted with asymmetric algrothims

（B）Linux passwords can be encrypted with Blowfish

（C）Linux passwords can be encrypted with MD5

（D）Linux passwords can be encrypted with DES

（E）Linux passwords can be encrypted with SHA

正解：B、C、D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

EC0-350 無料問題集「EC-COUNCIL Ethical hacking and countermeasures」

弊社を連絡する

関連リンク

トップ試験