• Home
  • Articles
  • [Sep-2021] Pass EC-COUNCIL 312-50v11 Exam in First Attempt Guaranteed! [Q37-Q52]

[Sep-2021] Pass EC-COUNCIL 312-50v11 Exam in First Attempt Guaranteed! [Q37-Q52]

Share

[Sep-2021] Pass EC-COUNCIL 312-50v11 Exam in First Attempt Guaranteed!

Full 312-50v11 Practice Test and 525 unique questions with explanations waiting just for you, get it now!

NEW QUESTION 37
Which of the following antennas is commonly used in communications for a frequency band of 10 MHz to VHF and UHF?

  • A. Omnidirectional antenna
  • B. Dipole antenna
  • C. Parabolic grid antenna
  • D. Yagi antenna

Answer: D

 

NEW QUESTION 38
What is the file that determines the basic configuration (specifically activities, services, broadcast receivers, etc.) in an Android application?

  • A. resources.asrc
  • B. AndroidManifest.xml
  • C. classes.dex
  • D. APK.info

Answer: B

Explanation:
Explanation
The AndroidManifest.xml file contains information of your package, including components of the appliance like activities, services, broadcast receivers, content providers etc.It performs another tasks also:* it's responsible to guard the appliance to access any protected parts by providing the permissions.* It also declares the android api that the appliance goes to use.* It lists the instrumentation classes. The instrumentation classes provides profiling and other informations. These informations are removed just before the appliance is published etc.This is the specified xml file for all the android application and located inside the basis directory.

 

NEW QUESTION 39
Morris, a professional hacker, performed a vulnerability scan on a target organization by sniffing the traffic on the network lo identify the active systems, network services, applications, and vulnerabilities. He also obtained the list of the users who are currently accessing the network. What is the type of vulnerability assessment that Morris performed on the target organization?

  • A. Credentialed assessment
  • B. internal assessment
  • C. Passive assessment
  • D. External assessment

Answer: A

Explanation:
Explanation
Detached weakness evaluation adopts an interesting strategy: In checking network traffic, it endeavors to order a hub's working framework, ports and benefits, and to find weaknesses a functioning scan like Nessus or Qualys probably won't discover on the grounds that ports are hindered or another host has come on the web.
The information may then give setting to security occasions, for example, relating with IDS alarms to lessen bogus positives.
Uninvolved investigation offers two key points of interest. The first is perceivability. There's regularly a wide hole between the thing you believe is running on your organization and what really is. Both organization and host scan report just what they see. Scan are obstructed by organization and host firewalls. In any event, when a host is live, the data accumulated is here and there restricted to flag checks and some noninvasive setup checks. In the event that your scan has the host certifications, it can question for more data, however bogus positives are an immense issue, you actually may not see everything. Further, rootkits that introduce themselves may run on a nonscanned port or, on account of UDP, may not react to an irregular test. On the off chance that a functioning weakness appraisal scan doesn't see it, it doesn't exist to the scan.
Host firewalls are regular even on worker PCs, so how would you identify a rebel worker or PC with a functioning output? An inactive sensor may see mavericks on the off chance that they're visiting on the organization; that is perceivability a scanner won't give you. A detached sensor likewise will recognize action to and from a port that isn't generally filtered, and may identify nonstandard port utilization, given the sensor can interpret and order the traffic. For instance, basic stream examination won't distinguish SSH or telnet on Port 80, however convention investigation may.
The subsequent significant favorable position of inactive investigation is that it's noninvasive- - it doesn't intrude on organization tasks. Dynamic weakness evaluation scanners are obtrusive and can disturb administrations, regardless of their designers' endeavors to limit the potential for blackouts. In any event, utilizing alleged safe sweeps, we've taken out switches, our NTP administration and a large group of other basic framework segments. Quite a long while prior, we even bobbed our center switch twice with a nmap port output.

 

NEW QUESTION 40
Calvin, a grey-hat hacker, targets a web application that has design flaws in its authentication mechanism. He enumerates usernames from the login form of the web application, which requests users to feed data and specifies the incorrect field in case of invalid credentials. Later, Calvin uses this information to perform social engineering.
Which of the following design flaws in the authentication mechanism is exploited by Calvin?

  • A. User impersonation
  • B. Insecure transmission of credentials
  • C. Password reset mechanism
  • D. Verbose failure messages

Answer: C

 

NEW QUESTION 41
You are a penetration tester tasked with testing the wireless network of your client Brakeme SA. You are attempting to break into the wireless network with the SSID "Brakeme-lnternal." You realize that this network uses WPA3 encryption, which of the following vulnerabilities is the promising to exploit?

  • A. AP Myconfiguration
  • B. Dragonblood
  • C. Cross-site request forgery
  • D. Key reinstallation attack

Answer: B

Explanation:
Explanation
Dragonblood allows an attacker in range of a password-protected Wi-Fi network to get the password and gain access to sensitive information like user credentials, emails and mastercard numbers. consistent with the published report:"The WPA3 certification aims to secure Wi-Fi networks, and provides several advantages over its predecessor WPA2, like protection against offline dictionary attacks and forward secrecy.
Unfortunately, we show that WPA3 is suffering from several design flaws, and analyze these flaws both theoretically and practically. Most prominently, we show that WPA3's Simultaneous Authentication of Equals (SAE) handshake, commonly referred to as Dragonfly, is suffering from password partitioning attacks."Our Wi-Fi researchers at WatchGuard are educating businesses globally that WPA3 alone won't stop the Wi-Fi hacks that allow attackers to steal information over the air (learn more in our recent blog post on the topic).
These Dragonblood vulnerabilities impact alittle amount of devices that were released with WPA3 support, and makers are currently making patches available. one among the most important takeaways for businesses of all sizes is to know that a long-term fix might not be technically feasible for devices with lightweight processing capabilities like IoT and embedded systems. Businesses got to consider adding products that enable a Trusted Wireless Environment for all kinds of devices and users alike.Recognizing that vulnerabilities like KRACK and Dragonblood require attackers to initiate these attacks by bringing an "Evil Twin" Access Point or a Rogue Access Point into a Wi-Fi environment, we've been that specialize in developing Wi-Fi security solutions that neutralize these threats in order that these attacks can never occur. The Trusted Wireless Environment framework protects against the "Evil Twin" Access Point and Rogue Access Point. one among these hacks is required to initiate the 2 downgrade or side-channel attacks referenced in Dragonblood.What's next? WPA3 is an improvement over WPA2 Wi-Fi encryption protocol, however, as we predicted, it still doesn't provide protection from the six known Wi-Fi threat categories. It's highly likely that we'll see more WPA3 vulnerabilities announced within the near future.To help reduce Wi-Fi vulnerabilities, we're asking all of you to hitch the Trusted Wireless Environment movement and advocate for a worldwide security standard for Wi-Fi.

 

NEW QUESTION 42
Joel, a professional hacker, targeted a company and identified the types of websites frequently visited by its employees. Using this information, he searched for possible loopholes in these websites and injected a malicious script that can redirect users from the web page and download malware onto a victim's machine.
Joel waits for the victim to access the infected web application so as to compromise the victim's machine.
Which of the following techniques is used by Joel in the above scenario?

  • A. MarioNet attack
  • B. DNS rebinding attack
  • C. Clickjacking attack
  • D. Watering hole attack

Answer: C

 

NEW QUESTION 43
Don, a student, came across a gaming app in a third-party app store and Installed it. Subsequently, all the legitimate apps in his smartphone were replaced by deceptive applications that appeared legitimate. He also received many advertisements on his smartphone after Installing the app. What is the attack performed on Don in the above scenario?

  • A. Clickjacking
  • B. SIM card attack
  • C. SMS phishing attack
  • D. Agent Smith attack

Answer: A

Explanation:
Clickjacking is an attack that tricks a user into clicking a webpage element which is invisible or disguised as another element. this will cause users to unwittingly download malware, visit malicious sites , provide credentials or sensitive information, transfer money, or purchase products online. Typically, clickjacking is performed by displaying an invisible page or HTML element, inside an iframe, on top of the page the user sees. The user believes they're clicking the visible page but actually they're clicking an invisible element within the additional page transposed on top of it. The invisible page might be a malicious page, or a legitimate page the user didn't shall visit - for instance , a page on the user's banking site that authorizes the transfer of cash . There are several variations of the clickjacking attack, such as: * Likejacking - a way during which the Facebook "Like" button is manipulated, causing users to "like" a page they really didn't shall like. * Cursorjacking - a UI redressing technique that changes the cursor for the position the user perceives to a different position. Cursorjacking relies on vulnerabilities in Flash and therefore the Firefox browser, which have now been fixed.
Clickjacking attack example
1. The attacker creates a beautiful page which promises to offer the user a free trip to Tahiti. 2. within the background the attacker checks if the user is logged into his banking site and if so, loads the screen that permits transfer of funds, using query parameters to insert the attacker's bank details into the shape . 3. The bank transfer page is displayed in an invisible iframe above the free gift page, with the "Confirm Transfer" button exactly aligned over the "Receive Gift" button visible to the user. 4. The user visits the page and clicks the "Book My Free Trip" button. 5. actually the user is clicking on the invisible iframe, and has clicked the "Confirm Transfer" button. Funds are transferred to the attacker. 6. The user is redirected to a page with information about the free gift (not knowing what happened within the background).
This example illustrates that, during a clickjacking attack, the malicious action (on the bank website, during this case) can't be traced back to the attacker because the user performed it while being legitimately signed into their own account.
Clickjacking mitigation
There are two general ways to defend against clickjacking: * Client-side methods - the foremost common is named Frame Busting. Client-side methods are often effective in some cases, but are considered to not be a best practice, because they will be easily bypassed. * Server-side methods - the foremost common is X-Frame-Options. Server-side methods are recommended by security experts as an efficient thanks to defend against clickjacking.

 

NEW QUESTION 44
The collection of potentially actionable, overt, and publicly available information is known as

  • A. Open-source intelligence
  • B. Human intelligence
  • C. Real intelligence
  • D. Social intelligence

Answer: A

 

NEW QUESTION 45
Nedved is an IT Security Manager of a bank in his country. One day. he found out that there is a security breach to his company's email server based on analysis of a suspicious connection from the email server to an unknown IP Address.
What is the first thing that Nedved needs to do before contacting the incident response team?

  • A. Migrate the connection to the backup email server
  • B. Disconnect the email server from the network
  • C. Leave it as it Is and contact the incident response te3m right away
  • D. Block the connection to the suspicious IP Address from the firewall

Answer: B

 

NEW QUESTION 46
Techno Security Inc. recently hired John as a penetration tester. He was tasked with identifying open ports in the target network and determining whether the ports are online and any firewall rule sets are encountered.
John decided to perform a TCP SYN ping scan on the target network.
Which of the following Nmap commands must John use to perform the TCP SYN ping scan?

  • A. nmap -sn -PS < target IP address >
  • B. nmap -sn -PO < target IP address >
  • C. nmap -sn -PA < target IP address >
  • D. nmap -sn -PP < target IP address >

Answer: A

 

NEW QUESTION 47
Henry Is a cyber security specialist hired by BlackEye - Cyber security solutions. He was tasked with discovering the operating system (OS) of a host. He used the Unkornscan tool to discover the OS of the target system. As a result, he obtained a TTL value, which Indicates that the target system is running a Windows OS. Identify the TTL value Henry obtained, which indicates that the target OS is Windows.

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: B

 

NEW QUESTION 48
A computer science student needs to fill some information into a secured Adobe PDF job application that was received from a prospective employer. Instead of requesting a new document that allowed the forms to be completed, the student decides to write a script that pulls passwords from a list of commonly used passwords to try against the secured PDF until the correct password is found or the list is exhausted.
Which cryptography attack is the student attempting?

  • A. Brute-force attack
  • B. Dictionary attack
  • C. Session hijacking
  • D. Man-in-the-middle attack

Answer: B

 

NEW QUESTION 49
Mary, a penetration tester, has found password hashes in a client system she managed to breach. She needs to use these passwords to continue with the test, but she does not have time to find the passwords that correspond to these hashes. Which type of attack can she implement in order to continue?

  • A. Pass the hash
  • B. LLMNR/NBT-NS poisoning
  • C. Pass the ticket
  • D. Internal monologue attack

Answer: A

 

NEW QUESTION 50
Which of the following tools performs comprehensive tests against web servers, including dangerous files and CGIs?

  • A. Dsniff
  • B. John the Ripper
  • C. Snort
  • D. Nikto

Answer: D

 

NEW QUESTION 51
You are a penetration tester tasked with testing the wireless network of your client Brakeme SA. You are attempting to break into the wireless network with the SSID "Brakeme-Internal." You realize that this network uses WPA3 encryption.
Which of the following vulnerabilities is the promising to exploit?

  • A. Dragonblood
  • B. AP misconfiguration
  • C. Cross-site request forgery
  • D. Key reinstallation attack

Answer: A

 

NEW QUESTION 52
......

Prepare for your EC-COUNCIL certification with the updated ITExamDownload 312-50v11 exam questions: https://drive.google.com/open?id=1S6Uq8s__Yn4MHaF2DqYcD2yeQ6cK5J1k

Get Latest 312-50v11 Dumps Exam Questions in here: https://www.itexamdownload.com/312-50v11-valid-questions.html

Related Articles

more
EC-COUNCIL 312-50v11 Certification Practice Exam

Copyright © 2026 ITExamDownload NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy