100% Guarantee 312-50v9 Testing Material 2021

NEW QUESTION 1
Jesse receives an email with an attachment labeled “Court_Notice_21206.zip”. Inside the zip file is a file named “Court_Notice_21206.docx.exe” disguised as a word document.Upon execution, a windows appears stating, “This word document is corrupt.” In the background, the file copies itself to Jesse APPDATAlocal directory and begins to beacon to a C2 server to download additional malicious binaries. What type of malware has Jesse encountered?

• A. Trojan
• B. Worm
• C. Key-Logger
• D. Micro Virus

Answer: A

NEW QUESTION 2
Which of the followingis the least-likely physical characteristic to be used in biometric control that supports a large company?

• A. Iris patterns
• B. Voice
• C. Fingerprints
• D. Height and Weight

Answer: D

NEW QUESTION 3
Which of the following statements regarding ethical hacking is incorrect?

• A. Testing should be remotely performed offsite.
• B. Ethical hackers should never use tools that have potential of exploiting vulnerabilities in theorganizations IT system.
• C. Ethical hacking should not involve writing to or modifying the target systems.
• D. An organization should use ethical hackers who do not sell hardware/software or other consulting services.

Answer: B

NEW QUESTION 4
What isa “Collision attach” in cryptography?

• A. Collision attacks try to break the hash into two parts, with the same bytes in each part to get the private key.
• B. Collision attacks try to break the hash into three parts to get the plaintext value.
• C. Collision attacks try to find two inputs producing the same hash.
• D. Collision attacks try to get the public key

Answer: C

NEW QUESTION 5
A new wireless client is configured to join a 802.11 network. Thisclient uses the same hardware and software as many of the other clients on the network. The client can see the network, but cannot connect. A wireless packet sniffer shows that the Wireless Access Point (WAP) is not responding to the association requests being sent by the wireless client.
What is a possible source of this problem?

• A. The client cannot see the SSID of the wireless network
• B. The wireless client is not configured to use DHCP
• C. The WAP does not recognize the client's MAC address
• D. Client isconfigured for the wrong channel

Answer: C

NEW QUESTION 6
The network administrator contacts you and tells you that she noticed the temperature on the internal wireless router increases by more than 20% during weekend hours when the office was closed. She asks you to investigate the issue because she is busy dealing with a big conference and she doesn’t have time to perform the task.
What tool can you use to view the network traffic being sent and received by the wireless router?

• A. Netcat
• B. Wireshark
• C. Nessus
• D. Netstat

Answer: B

NEW QUESTION 7
You work as a Security Analyst for a retail organization. In securing the company's network, you set up a firewall and an IDS. However, hackers are able to attack the network. After investigating, you discover that your IDS is not configured properly and therefore is unable to trigger alarms when needed. What type of alert is the IDS giving?

• A. False Negative
• B. True Negative
• C. True Positive
• D. False Positive

Answer: A

NEW QUESTION 8
Your company was hired by a small healthcare provider to perform a technical assessment on the network.
What is the best approach for discovering vulnerabilities on a Windows-based computer?

• A. Use the built-in Windows Update tool
• B. Create a disk imageof a clean Windows installation
• C. Check MITRE.org for the latest list of CVE findings
• D. Used a scan tool like Nessus

Answer: D

NEW QUESTION 9
It is a short-range wireless communication technology intended to replace the cables connecting portables of fixed deviceswhile maintaining high levels of security. It allows mobile phones, computers and other devices to connect and communicate using a short- range wireless connection.
Which of the following terms best matches the definition?

• A. Bluetooth
• B. Radio-Frequency Identification
• C. WLAN
• D. InfraRed

Answer: A

NEW QUESTION 10
Which of the followingtypes of firewalls ensures that the packets are part of the established session?

• A. Switch-level firewall
• B. Stateful inspection firewall
• C. Application-level firewall
• D. Circuit-level firewall

Answer: B

NEW QUESTION 11
An attacker has installed a RAT on a host. The attacker wants to ensure that when a user attempts to go to www.MyPersonalBank.com, that the user is directed to a phishing site.
Which file does the attacker needto modify?

• A. Hosts
• B. Networks
• C. Boot.ini
• D. Sudoers

Answer: A

NEW QUESTION 12
An incident investigator asks to receive a copy of the event from all firewalls, prosy servers, and Intrusion Detection Systems (IDS) on the network of an organization that has experienced a possible breach of security. When the investigator attempts to correlate the information in all of the logs the sequence of many of the logged events do not match up.
What is the most likely cause?

• A. The network devices are not all synchronized
• B. The securitybreach was a false positive.
• C. The attack altered or erased events from the logs.
• D. Proper chain of custody was not observed while collecting the logs.

Answer: C

NEW QUESTION 13
An Internet Service Provider (ISP) has a need to authenticate users connecting using analog modems, digital Subscriber Line (DSL), wireless data services, and virtual Private Networks (VPN) over a Frame Relay network.
Which AAA protocol is most likely able to handle this requirement?

• A. DIAMETER
• B. Kerberos
• C. RADIUS
• D. TACACS+

Answer: D

NEW QUESTION 14
Jimmy is standing outside a secure entrance to a facility. He is pretending to having a tense conversation on his cell phone as an authorized employee badges in. Jimmy, while still on the phone, grabs the door as it beginsto close.
What just happened?

• A. Masquading
• B. Phishing
• C. Whaling
• D. Piggybacking

Answer: D

NEW QUESTION 15
Which of the following is considered the best way to prevent Personally Identifiable Information (PII) from web application vulnerabilities?

• A. Use encrypted communications protocols to transmit PII
• B. Use full disk encryption on all hard drives to protect PII
• C. Use cryptographic storage to store all PII
• D. Use a security token to log onto into all Web application that use PII

Answer: A

NEW QUESTION 16
The “white box testing” methodology enforces what kind of restriction?

• A. The internal operation of a system is completely known to the tester.
• B. Only the internal operation of a system is known to the tester.
• C. Only the external operation of a system is accessible to the tester.
• D. The internal operation of a system is only partly accessible to the tester.

Answer: A

NEW QUESTION 17
You just set up a security system in your network. In what kind of system would you find thefollowing string of characters used as a rule within its configuration?
alert tcp any any ->192.168.100.0/24 21 (msg: "FTP on the network!";)

• A. A firewall IPTable
• B. A Router IPTable
• C. An Intrusion Detection System
• D. FTP Server rule

Answer: C

NEW QUESTION 18
After trying multiple exploits, you’ve gained root access to a Centos 6 answer. To ensure you maintain access. What would you do first?

• A. Disable IPTables
• B. Create User Account
• C. Downloadand Install Netcat
• D. Disable Key Services

Answer: C

NEW QUESTION 19
As a Certified Ethical hacker, you were contracted by aprivate firm to conduct an external security assessment through penetration testing.
What document describes the specified of the testing, the associated violations, and essentially protects both the organization’s interest and your li abilities as a tester?

• A. Term of Engagement
• B. Non-Disclosure Agreement
• C. Project Scope
• D. Service Level Agreement

Answer: B

NEW QUESTION 20
Under the “Post-attach Phase and Activities,” it is the responsibility of the tester to restore the system to a pre-test state.
Which of the following activities should not be included in this phase? I.Removing all files uploaded on the system
II.Cleaning all registry entries III.Mapping of network state
IV.Removing all tools and maintaining backdoor for reporting

• A. III
• B. IV
• C. III and IV
• D. All should be included.

Answer: A

NEW QUESTION 21
Which of the following is the successor of SSL?

• A. RSA
• B. GRE
• C. TLS
• D. IPSec

Answer: C

NEW QUESTION 22
Which of the following statements is TRUE?

• A. Sniffers operation on Layer 3 of the OSI model
• B. Sniffers operation on Layer 2 of the OSI model
• C. Sniffers operation on the Layer 1 of the OSI model
• D. Sniffers operation on both Layer 2 & Layer 3 of the OSImodel

Answer: D

NEW QUESTION 23
Which mode of IPSec should you use to assure security and confidentiality of data within the same LAN?

• A. ESP confidential
• B. AH Tunnel mode
• C. ESP transport mode
• D. AH permiscuous

Answer: C

NEW QUESTION 24
Which of these options is the most secure procedure for strong backup tapes?

• A. In a climate controlled facility offsite
• B. Inside the data center for faster retrieval in afireproof safe
• C. In a cool dry environment
• D. On a different floor in the same building

Answer: A

NEW QUESTION 25
......