• Home
  • Articles
  • Get instant access to 312-50v11 Practice Tests 2021 Free Updated Today! [Q300-Q322]

Get instant access to 312-50v11 Practice Tests 2021 Free Updated Today! [Q300-Q322]

Share

Get instant access to 312-50v11 Practice Tests 2021 Free Updated Today!

Welcome to download the newest PassLeader 312-50v11 PDF dumps ( 525  Q&As)

NEW QUESTION 300
An attacker attaches a rogue router in a network. He wants to redirect traffic to a LAN attached to his router as part of a man-in-the-middle attack. What measure on behalf of the legitimate admin can mitigate this attack?

  • A. Make sure that legitimate network routers are configured to run routing protocols with authentication.
  • B. Redirection of the traffic cannot happen unless the admin allows it explicitly.
  • C. Only using OSPFv3 will mitigate this risk.
  • D. Disable all routing protocols and only use static routes

Answer: A

 

NEW QUESTION 301
Ethical hacker jane Smith is attempting to perform an SQL injection attach. She wants to test the response time of a true or false response and wants to use a second command to determine whether the database will return true or false results for user IDs. which two SQL Injection types would give her the results she is looking for?

  • A. Time-based and union-based
  • B. union-based and error-based
  • C. Out of band and boolean-based
  • D. Time-based and boolean-based

Answer: B

Explanation:
Explanation
Union based SQL injection allows an attacker to extract information from the database by extending the results returned by the first query. The Union operator can only be used if the original/new queries have an equivalent structure Error-based SQL injection is an In-band injection technique where the error output from the SQL database is employed to control the info inside the database. In In-band injection, the attacker uses an equivalent channel for both attacks and collect data from the database.

 

NEW QUESTION 302
The network team has well-established procedures to follow for creating new rules on the firewall. This includes having approval from a manager prior to implementing any new rules. While reviewing the firewall configuration, you notice a recently implemented rule but cannot locate manager approval for it. What would be a good step to have in the procedures for a situation like this?

  • A. Have the network team document the reason why the rule was implemented without prior manager approval.
  • B. Monitor all traffic using the firewall rule until a manager can approve it.
  • C. Immediately roll back the firewall rule until a manager can approve it
  • D. Do not roll back the firewall rule as the business may be relying upon it, but try to get manager approval as soon as possible.

Answer: C

 

NEW QUESTION 303
John, a professional hacker, targeted CyberSol Inc., an MNC. He decided to discover the loT devices connected in the target network that are using default credentials and are vulnerable to various hijacking attacks. For this purpose, he used an automated tool to scan the target network for specific types of loT devices and detect whether they are using the default, factory-set credentials. What is the tool employed by John in the above scenario?

  • A. loT Inspector
  • B. Azure loT Central
  • C. AT&T loT Platform
  • D. loTSeeker

Answer: A

 

NEW QUESTION 304
After an audit, the auditors Inform you that there is a critical finding that you must tackle Immediately. You read the audit report, and the problem is the service running on port 369. Which service Is this and how can you tackle the problem?

  • A. The service is SMTP, and you must change it to SMIME. which is an encrypted way to send emails.
  • B. The findings do not require immediate actions and are only suggestions.
  • C. The service is NTP. and you have to change It from UDP to TCP in order to encrypt it
  • D. The service is LDAP. and you must change it to 636. which is LDPAPS.

Answer: D

 

NEW QUESTION 305
An attacker has installed a RAT on a host. The attacker wants to ensure that when a user attempts to go to "www.MyPersonalBank.com", the user is directed to a phishing site.
Which file does the attacker need to modify?

  • A. Boot.ini
  • B. Networks
  • C. Hosts
  • D. Sudoers

Answer: C

 

NEW QUESTION 306
Sophia is a shopping enthusiast who spends significant time searching for trendy outfits online. Clark, an attacker, noticed her activities several times and sent a fake email containing a deceptive page link to her social media page displaying all-new and trendy outfits. In excitement, Sophia clicked on the malicious link and logged in to that page using her valid credentials. Which of the following tools is employed by Clark to create the spoofed email?

  • A. PLCinject
  • B. Evilginx
  • C. PyLoris
  • D. Slowloris

Answer: B

 

NEW QUESTION 307
Richard, an attacker, targets an MNC. in this process, he uses a footprinting technique to gather as much information as possible. Using this technique, he gathers domain information such as the target domain name, contact details of its owner, expiry date, and creation date. With this information, he creates a map of the organization's network and misleads domain owners with social engineering to obtain internal details of its network. What type of footprinting technique is employed by Richard?

  • A. Whois footprinting
  • B. VPN footprinting
  • C. VoIP footprinting
  • D. Email footprinting

Answer: D

Explanation:
Explanation
Email header reveals information about the mail server, original sender's email id, internal IP addressing scheme, also because the possible architecture of the target network.
Tracking Email Communications* Email tracking is employed to watch the delivery of emails to an intended recipient.* Attackers track emails to collect information a few target recipient so as to perform social engineering and other attacks.* Get recipient's system IP address* Geolocation of the recipient* When the e-mail was received and skim* Whether or not the recipient visited any links sent to them* Get recipient's browser and OS information* Time spent on reading the emails

 

NEW QUESTION 308
You are attempting to run an Nmap port scan on a web server. Which of the following commands would result in a scan of common ports with the least amount of noise in order to evade IDS?

  • A. nmap -sT -O -T0
  • B. nmap -A --host-timeout 99 -T1
  • C. nmap -A - Pn
  • D. nmap -sP -p-65535 -T5

Answer: A

 

NEW QUESTION 309
Bill is a network administrator. He wants to eliminate unencrypted traffic inside his company's network. He decides to setup a SPAN port and capture all traffic to the datacenter. He immediately discovers unencrypted traffic in port UDP 161. what protocol is this port using and how can he secure that traffic?

  • A. SNMP and he should change it to SNMP V3
  • B. RPC and the best practice is to disable RPC completely
  • C. it is not necessary to perform any actions, as SNMP is not carrying important information.
  • D. SNMP and he should change it to SNMP v2, which is encrypted

Answer: A

Explanation:
Explanation
We have various articles already in our documentation for setting up SNMPv2 trap handling in Opsview, but SNMPv3 traps are a whole new ballgame. They can be quite confusing and complicated to set up the first time you go through the process, but when you understand what is going on, everything should make more sense.
SNMP has gone through several revisions to improve performance and security (version 1, 2c and 3). By default, it is a UDP port based protocol where communication is based on a 'fire and forget' methodology in which network packets are sent to another device, but there is no check for receipt of that packet (versus TCP port when a network packet must be acknowledged by the other end of the communication link).
There are two modes of operation with SNMP - get requests (or polling) where one device requests information from an SNMP enabled device on a regular basis (normally using UDP port 161), and traps where the SNMP enabled device sends a message to another device when an event occurs (normally using UDP port
162). The latter includes instances such as someone logging on, the device powering up or down, or a wide variety of other problems that would need this type of investigation.
This blog covers SNMPv3 traps, as polling and version 2c traps are covered elsewhere in our documentation.
SNMP trapsSince SNMP is primarily a UDP port based system, traps may be 'lost' when sending between devices; the sending device does not wait to see if the receiver got the trap. This means if the configuration on the sending device is wrong (using the wrong receiver IP address or port) or the receiver isn't listening for traps or rejecting them out of hand due to misconfiguration, the sender will never know.
The SNMP v2c specification introduced the idea of splitting traps into two types; the original 'hope it gets there' trap and the newer 'INFORM' traps. Upon receipt of an INFORM, the receiver must send an acknowledgement back. If the sender doesn't get the acknowledgement back, then it knows there is an existing problem and can log it for sysadmins to find when they interrogate the device.

 

NEW QUESTION 310
Attacker Lauren has gained the credentials of an organization's internal server system, and she was often logging in during irregular times to monitor the network activities. The organization was skeptical about the login times and appointed security professional Robert to determine the issue. Robert analyzed the compromised device to find incident details such as the type of attack, its severity, target, impact, method of propagation, and vulnerabilities exploited.
What is the incident handling and response (IH&R) phase, in which Robert has determined these issues?

  • A. Incident recording and assignment
  • B. Eradication
  • C. Incident triage
  • D. Preparation

Answer: C

 

NEW QUESTION 311
Based on the following extract from the log of a compromised machine, what is the hacker really trying to steal?

  • A. SAM file
  • B. Repair file
  • C. wwwroot
  • D. har.txt

Answer: A

 

NEW QUESTION 312
what are common files on a web server that can be misconfigured and provide useful Information for a hacker such as verbose error messages?

  • A. administration.config
  • B. httpd.conf
  • C. php.ini
  • D. idq.dll

Answer: D

Explanation:
Explanation
idq.dll may be a library employed by ISAPI for indexing.idq.dll may be a system process that's needed for your PC to figure properly. It shouldn't be removed.The idq.dll is an executable file on your computer's disk drive . This file contains machine language . If you begin the software Microsoft Windows on your PC, the commands contained in idq.dll are going to be executed on your PC. For this purpose, the file is loaded into the most memory (RAM) and runs there as a Microsoft Indexing Service ISAPI Extension process (also called a task).
Is idq.dll harmful?This process is taken into account safe. it's unlikely to pose any harm to your system.
Can I stop or remove idq.dll?Since idq.dll may be a system process it shouldn't be stopped. the method is required for your PC to figure properly. Also the corresponding software Microsoft Windows shouldn't be uninstalled.
Is idq.dll CPU intensive?This process is taken into account to be CPU intensive. Without proper management, CPU intensive processes can manipulate system resources causing speed loss. Check the Microsoft Windows settings to ascertain if you'll close up unneeded modules or services.
Why is idq.dll giving me errors?System process issues are mainly a results of conflicting applications running on your PC. Consider uninstalling any applications you're not using. Then reboot your computer.

 

NEW QUESTION 313
joe works as an it administrator in an organization and has recently set up a cloud computing service for the organization. To implement this service, he reached out to a telecom company for providing Internet connectivity and transport services between the organization and the cloud service provider, in the NIST cloud deployment reference architecture, under which category does the telecom company fall in the above scenario?

  • A. Cloud consumer
  • B. Cloud carrier
  • C. Cloud auditor
  • D. Cloud booker

Answer: B

Explanation:
A cloud carrier acts as an intermediary that provides connectivity and transport of cloud services between cloud consumers and cloud providers.
Cloud carriers provide access to consumers through network, telecommunication and other access devices. for instance, cloud consumers will obtain cloud services through network access devices, like computers, laptops, mobile phones, mobile web devices (MIDs), etc.
The distribution of cloud services is often provided by network and telecommunication carriers or a transport agent, wherever a transport agent refers to a business organization that provides physical transport of storage media like high-capacity hard drives.
Note that a cloud provider can started SLAs with a cloud carrier to provide services consistent with the level of SLAs offered to cloud consumers, and will require the cloud carrier to provide dedicated and secure connections between cloud consumers and cloud providers.

 

NEW QUESTION 314
Johnson, an attacker, performed online research for the contact details of reputed cybersecurity firms. He found the contact number of sibertech.org and dialed the number, claiming himself to represent a technical support team from a vendor. He warned that a specific server is about to be compromised and requested sibertech.org to follow the provided instructions. Consequently, he prompted the victim to execute unusual commands and install malicious files, which were then used to collect and pass critical Information to Johnson's machine. What is the social engineering technique Steve employed in the above scenario?

  • A. Elicitation
  • B. Quid pro quo
  • C. Diversion theft
  • D. Phishing

Answer: A

Explanation:
Explanation
Elicitation may be a lively effort to extract project-related information from all relevant stakeholders. the target is to obviously define the business or project objectives. Requirements elicitation uses various analytics and techniques that leave complete, concise and clear requirements to be gathered. A Standish Group report lists "incomplete requirements" because the leading explanation for software project failure and divulges that poor requirements account for 50% of project failures. Poor requirements are a results of sub-standard elicitation which can also cause scope creep, budget overrun and inadequate process redesign.
Elicitation is vital as many stakeholders are unable to accurately articulate the business problem. Therefore, analysts performing the elicitation got to make sure that the wants produced are clearly understandable, useful and relevant. A well defined problem and clear requirements will go an extended thanks to creating the right solution that adds value to the business.

 

NEW QUESTION 315
John, a professional hacker, targeted an organization that uses LDAP for accessing distributed directory services. He used an automated tool to anonymously query the IDAP service for sensitive information such as usernames. addresses, departmental details, and server names to launch further attacks on the target organization.
What is the tool employed by John to gather information from the IDAP service?

  • A. jxplorer
  • B. Ike-scan
  • C. Zabasearch
  • D. EarthExplorer

Answer: A

Explanation:
JXplorer could be a cross platform LDAP browser and editor. it's a standards compliant general purpose LDAP client which will be used to search, scan and edit any commonplace LDAP directory, or any directory service with an LDAP or DSML interface.
It is extremely flexible and can be extended and custom in a very number of the way. JXplorer is written in java, and also the source code and source code build system ar obtainable via svn or as a packaged build for users who wish to experiment or any develop the program.
JX is is available in 2 versions; the free open source version under an OSI Apache two style licence, or within the JXWorkBench Enterprise bundle with inbuilt reporting, administrative and security tools.
JX has been through a number of different versions since its creation in 1999; the foremost recent stable release is version 3.3.1, the August 2013 release.
JXplorer could be a absolutely useful LDAP consumer with advanced security integration and support for the harder and obscure elements of the LDAP protocol. it's been tested on Windows, Solaris, linux and OSX, packages are obtainable for HPUX, AIX, BSD and it should run on any java supporting OS.

 

NEW QUESTION 316
John, a professional hacker, decided to use DNS to perform data exfiltration on a target network, in this process, he embedded malicious data into the DNS protocol packets that even DNSSEC cannot detect. Using this technique. John successfully injected malware to bypass a firewall and maintained communication with the victim machine and C&C server. What is the technique employed by John to bypass the firewall?

  • A. DNS tunneling method
  • B. DNS enumeration
  • C. DNSSEC zone walking
  • D. DNS cache snooping

Answer: A

Explanation:
DNS tunneling may be a method wont to send data over the DNS protocol, a protocol which has never been intended for data transfer. due to that, people tend to overlook it and it's become a well-liked but effective tool in many attacks. Most popular use case for DNS tunneling is obtaining free internet through bypassing captive portals at airports, hotels, or if you are feeling patient the not-so-cheap on the wing Wi-Fi. On those shared internet hotspots HTTP traffic is blocked until a username/password is provided, however DNS traffic is usually still allowed within the background: we will encode our HTTP traffic over DNS and voila, we've internet access. This sounds fun but reality is, browsing anything on DNS tunneling is slow. Like, back to 1998 slow. Another more dangerous use of DNS tunneling would be bypassing network security devices (Firewalls, DLP appliances...) to line up an immediate and unmonitored communications channel on an organisation's network. Possibilities here are endless: Data exfiltration, fixing another penetration testing tool... you name it. To make it even more worrying, there's an outsized amount of easy to use DNS tunneling tools out there. There's even a minimum of one VPN over DNS protocol provider (warning: the planning of the web site is hideous, making me doubt on the legitimacy of it). As a pentester all this is often great, as a network admin not such a lot .
How does it work:
For those that ignoramus about DNS protocol but still made it here, i feel you deserve a really brief explanation on what DNS does: DNS is sort of a phonebook for the web , it translates URLs (human-friendly language, the person's name), into an IP address (machine-friendly language, the phone number). That helps us remember many websites, same as we will remember many people's names. For those that know what DNS is i might suggest looking here for a fast refresh on DNS protocol, but briefly what you would like to understand is: * A Record: Maps a website name to an IP address. example.com ? 12.34.52.67 * NS Record (a.k.a. Nameserver record): Maps a website name to an inventory of DNS servers, just in case our website is hosted in multiple servers. example.com ? server1.example.com, server2.example.com Who is involved in DNS tunneling? * Client. Will launch DNS requests with data in them to a website . * One Domain that we will configure. So DNS servers will redirect its requests to an outlined server of our own. * Server. this is often the defined nameserver which can ultimately receive the DNS requests. The 6 Steps in DNS tunneling (simplified): 1. The client encodes data during a DNS request. The way it does this is often by prepending a bit of knowledge within the domain of the request. for instance : mypieceofdata.server1.example.com 2. The DNS request goes bent a DNS server. 3. The DNS server finds out the A register of your domain with the IP address of your server. 4. The request for mypieceofdata.server1.example.com is forwarded to the server. 5. The server processes regardless of the mypieceofdata was alleged to do. Let's assume it had been an HTTP request. 6. The server replies back over DNS and woop woop, we've got signal.

 

NEW QUESTION 317
#!/usr/bin/python import socket buffer=[""A""] counter=50 while len(buffer)<=100: buffer.append (""A""*counter) counter=counter+50 commands= [""HELP"",""STATS ."",""RTIME ."",""LTIME. "",""SRUN ."',""TRUN ."",""GMON
."",""GDOG ."",""KSTET .",""GTER ."",""HTER ."", ""LTER .",""KSTAN .""] for command in commands: for buffstring in buffer: print ""Exploiting"" +command +"":""+str(len(buffstring)) s=socket.socket(socket.AF_INET, socket.SOCK_STREAM) s.connect(('127.0.0.1', 9999)) s.recv(50) s.send(command+buffstring) s.close() What is the code written for?

  • A. Bruteforce
  • B. Encryption
  • C. Denial-of-service (DOS)
  • D. Buffer Overflow

Answer: D

 

NEW QUESTION 318
"........is an attack type for a rogue Wi-Fi access point that appears to be a legitimate one offered on the premises, but actually has been set up to eavesdrop on wireless communications. It is the wireless version of the phishing scam. An attacker fools wireless users into connecting a laptop or mobile phone to a tainted hot-spot by posing as a legitimate provider. This type of attack may be used to steal the passwords of unsuspecting users by either snooping the communication link or by phishing, which involves setting up a fraudulent web site and luring people there." Fill in the blank with appropriate choice.

  • A. Sinkhole Attack
  • B. Signal Jamming Attack
  • C. Evil Twin Attack
  • D. Collision Attack

Answer: C

 

NEW QUESTION 319
Study the snort rule given below and interpret the rule. alert tcp any any --> 192.168.1.0/24 111 (content:"|00 01 86 a5|"; msG. "mountd access";)

  • A. An alert is generated when a TCP packet is originated from port 111 of any IP address to the
    192.168.1.0 subnet
  • B. An alert is generated when a TCP packet originating from any IP address is seen on the network and destined for any IP address on the 192.168.1.0 subnet on port 111
  • C. An alert is generated when a TCP packet is generated from any IP on the 192.168.1.0 subnet and destined to any IP on port 111
  • D. An alert is generated when any packet other than a TCP packet is seen on the network and destined for the 192.168.1.0 subnet

Answer: B

 

NEW QUESTION 320
Steve, an attacker, created a fake profile on a social media website and sent a request to Stell a. Stella was enthralled by Steve's profile picture and the description given for his profile, and she initiated a conversation with him soon after accepting the request. After a few days. Sieve started asking about her company details and eventually gathered all the essential information regarding her company. What is the social engineering technique Steve employed in the above scenario?

  • A. Honey trap
  • B. Piggybacking
  • C. Diversion theft
  • D. Baiting

Answer: D

 

NEW QUESTION 321
Which utility will tell you in real time which ports are listening or in another state?

  • A. Netstat
  • B. Nmap
  • C. Loki
  • D. TCPView

Answer: D

 

NEW QUESTION 322
......

Sep-2021 Latest ITExamDownload 312-50v11 Exam Dumps with PDF and Exam Engine: https://www.itexamdownload.com/312-50v11-valid-questions.html

Premium Quality EC-COUNCIL 312-50v11 Online dumps: https://drive.google.com/open?id=1S6Uq8s__Yn4MHaF2DqYcD2yeQ6cK5J1k

Related Articles

more
EC-COUNCIL 312-50v11 Certification Practice Exam

Copyright © 2026 ITExamDownload NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy