Free Eccouncil 312-50 Exam Dumps and 312-50 Exam Questions

Question No: 1

MultipleChoice

Darius is analysing logs from IDS. He want to understand what have triggered one alert and verify if it's true positive or false positive. Looking at the logs he copy and paste basic details like below:

source IP: 192.168.21.100

source port: 80

destination IP: 192.168.10.23

destination port: 63221

What is the most proper answer.

Options

AThis is most probably true negative.

BThis is most probably true positive which triggered on secure communication between client and server.

CThis is most probably false-positive, because an alert triggered on reversed traffic.

DThis is most probably false-positive because IDS is monitoring one direction traffic.

Question No: 2

MultipleChoice

Analyst is investigating proxy logs and found out that one of the internal user visited website storing suspicious Java scripts. After opening one of them, he noticed that it is very hard to understand the code and that all codes differ from the typical Java script. What is the name of this technique to hide the code and extend analysis time?

Options

AEncryption

BCode encoding

CObfuscation

DSteganography

Question No: 3

MultipleChoice

What does the -oX flag do in an Nmap scan?

Options

APerform an express scan

BOutput the results in truncated format to the screen

CPerform an Xmas scan

DOutput the results in XML format to a file

Question No: 4

MultipleChoice

DHCP snooping is a great solution to prevent rogue DHCP servers on your network. Which security feature on switches leverages the DHCP snooping database to help prevent man-in-the-middle attacks?

Options

APort security

BA Layer 2 Attack Prevention Protocol (LAPP)

CDynamic ARP inspection (DAI)

DSpanning tree

Question No: 5

MultipleChoice

A company's policy requires employees to perform file transfers using protocols which encrypt traffic. You suspect some employees are still performing file transfers using unencrypted protocols because the employees do not like changes. You have positioned a network sniffer to capture traffic from the laptops used by employees in the data ingest department. Using Wire shark to examine the captured traffic, which command can be used as a display filter to find unencrypted file transfers?

Options

Atcp.port != 21

Btcp.port = 23

Ctcp.port ==21

Dtcp.port ==21 || tcp.port ==22

Question No: 6

MultipleChoice

During the process of encryption and decryption, what keys are shared?

Options

APrivate keys

BUser passwords

CPublic keys

DPublic and private keys

Question No: 7

MultipleChoice

Your business has decided to add credit card numbers to the data it backs up to tape. Which of the

following represents the best practice your business should observe?

Options

AHire a security consultant to provide direction.

BDo not back up cither the credit card numbers or then hashes.

CBack up the hashes of the credit card numbers not the actual credit card numbers.

DEncrypt backup tapes that are sent off-site.

Question No: 8

MultipleChoice

Developers at your company are creating a web application which will be available for use by anyone on the Internet, The developers have taken the approach of implementing a Three-Tier Architecture for the web application. The developers are now asking you which network should the Presentation Tier (front- end web server) be placed in?

Options

Aisolated vlan network

BMesh network

CDMZ network

DInternal network

Question No: 9

MultipleChoice

An attacker tries to do banner grabbing on a remote web server and executes the following command.

Nmap done: 1 IP address (1 host up) scanned in 6.42 seconds

What did the hacker accomplish?

Options

Anmap can't retrieve the version number of any running remote service.

BThe hacker successfully completed the banner grabbing.

CThe hacker should've used nmap -O host.domain.com.

DThe hacker failed to do banner grabbing as he didn't get the version of the Apache web server.

Question No: 10

MultipleChoice

Company XYZ has asked you to assess the security of their perimeter email gateway. From your office in New York, you craft a specially formatted email message and send it across the Internet to an employee of Company XYZ. The employee of Company XYZ is aware of your test.

Your email message looks like this:

From: jim_miller@companyxyz.com

To: michelle_saunders@companyxyz.com

Subject: Test message

Date: 4/3/2017 14:37

The employee of Company XYZ receives your email message. This proves that Company XYZ's email gateway doesn't prevent what?

Options

AEmail Phishing

BEmail Masquerading

CEmail Spoofing

DEmail Harvesting