Ethical Hacker Certified - 312-50 Exam Practice Test

Question 1

What ports should be blocked on the firewall to prevent NetBIOS traffic from not coming through the firewall if your network is comprised of Windows NT, 2000, and XP?

A. 161

B. 445

C. 1024

D. 139

E. 110

F. 135

Correct Answer: B,D,F

Question 2

Which access control mechanism allows for multiple systems to use a central authentication server (CAS) that permits users to authenticate once and gain access to multiple systems?

A. Single sign-on

B. Discretionary Access Control (DAC)

C. Windows authentication

D. Role Based Access Control (RBAC)

Correct Answer: A

Question 3

Geena, a cloud architect, uses a master component in the Kubernetes cluster architecture that scans newly generated pods and allocates a node to them. This component can also assign nodes based on factors such as the overall resource requirement, data locality, software/hardware/policy restrictions, and internal workload interventions.
Which of the following master components is explained in the above scenario?

A. Kube-scheduler

B. Etcd cluster

C. Kube-controller-manager

D. Kube-apiserver

Correct Answer: A

Question 4

In order to tailor your tests during a web-application scan, you decide to determine which web-server version is hosting the application. On using the sV flag with Nmap. you obtain the following response:
80/tcp open http-proxy Apache Server 7.1.6
what Information-gathering technique does this best describe?

A. Brute forcing

B. Banner grabbing

C. Dictionary attack

D. WhOiS lookup

Correct Answer: B

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 5

If executives are found liable for not properly protecting their company's assets and information systems, what type of law would apply in this situation?

A. Criminal

B. Civil

C. Common

D. International

Correct Answer: B

Question 6

Jake, a professional hacker, installed spyware on a target iPhone to spy on the target user's activities. He can take complete control of the target mobile device by jailbreaking the device remotely and record audio, capture screenshots, and monitor all phone calls and SMS messages. What is the type of spyware that Jake used to infect the target device?

A. Zscaler

B. DroidSheep

C. Trident

D. Androrat

Correct Answer: C

Question 7

Which DNS resource record can indicate how long any "DNS poisoning" could last?

A. NS

B. TIMEOUT

C. MX

D. SOA

Correct Answer: D

Question 8

You are a cybersecurity consultant for a global organization. The organization has adopted a Bring Your Own Device (BYOD)policy, but they have recently experienced a phishing incident where an employee's device was compromised. In the investigation, you discovered that the phishing attack occurred through a third-party email app that the employee had installed. Given the need to balance security and user autonomy under the BYOD policy, how should the organization mitigate the risk of such incidents? Moreover, consider a measure that would prevent similar attacks without overly restricting the use of personal devices.

A. Provide employees with corporate-owned devices for work-related tasks.

B. Conduct regular cybersecurity awareness training, focusing on phishing attacks.

C. Implement a mobile device management solution that restricts the installation of non-approved applications.

D. Require all employee devices to use a company-provided VPN for internet access.

Correct Answer: B

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 9

What type of virus is most likely to remain undetected by antivirus software?

A. Macro virus

B. Cavity virus

C. Stealth virus

D. File-extension virus

Correct Answer: C

Question 10

As a security analyst for Sky Secure Inc., you are working with a client that uses a multi-cloud strategy, utilizing services from several cloud providers. The client wants to implement a system that will provide unified security management across all their cloud platforms. They need a solution that allows them to consistently enforce security policies, identify and respond to threats, and maintain visibility of all their cloud resources. Which of the following should you recommend as the best solution?

A. Rely on the built-in security features of each cloud platform.

B. implement separate security management tools for each cloud platform.

C. Use a hardware-based firewall to secure all cloud resources.

D. Use a Cloud Access Security Broker (CASB).

Correct Answer: D

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 11

Calvin, a software developer, uses a feature that helps him auto-generate the content of a web page without manual involvement and is integrated with SSI directives. This leads to a vulnerability in the developed web application as this feature accepts remote user inputs and uses them on the page. Hackers can exploit this feature and pass malicious SSI directives as input values to perform malicious activities such as modifying and erasing server files. What is the type of injection attack Calvin's web application is susceptible to?

A. CRLF injection

B. Server-side template injection

C. Server-side JS injection

D. Server-side includes injection

Correct Answer: D

Question 12

What does a firewall check to prevent particular ports and applications from getting packets into an organization?

A. Network layer headers and the session layer port numbers

B. Presentation layer headers and the session layer port numbers

C. Transport layer port numbers and application layer headers

D. Application layer port numbers and the transport layer headers

Correct Answer: C

Question 13

Robin, an attacker, is attempting to bypass the firewalls of an organization through the DNS tunneling method in order to exfiltrate dat a. He is using the NSTX tool for bypassing the firewalls. On which of the following ports should Robin run the NSTX tool?

A. Port 50

B. Port 53

C. Port 80

D. Port 23

Correct Answer: B

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 14

What piece of hardware on a computer's motherboard generates encryption keys and only releases a part of the key so that decrypting a disk on a new piece of hardware is not possible?

A. GPU

B. UEFI

C. CPU

D. TPM

Correct Answer: D

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 15

which of the following protocols can be used to secure an LDAP service against anonymous queries?

A. WPA

B. NTLM

C. RADIUS

D. SSO

Correct Answer: B

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 16

In Trojan terminology, what is a covert channel?

A. It is a kernel operation that hides boot processes and services to mask detection

B. It is Reverse tunneling technique that uses HTTPS protocol instead of HTTP protocol to establish connections

C. A legitimate communication path within a computer system or network for transfer of data

D. A channel that transfers information within a computer system or network in a way that violates the security policy

Correct Answer: D

Question 17

The company ABC recently contracts a new accountant. The accountant will be working with the financial statements. Those financial statements need to be approved by the CFO and then they will be sent to the accountant but the CFO is worried because he wants to be sure that the information sent to the accountant was not modified once he approved it. Which of the following options can be useful to ensure the integrity of the data?

A. The CFO can use an excel file with a password

B. The document can be sent to the accountant using an exclusive USB for that document

C. The CFO can use a hash algorithm in the document once he approved the financial statements

D. The financial statements can be sent twice, one by email and the other delivered in USB and the accountant can compare both to be sure is the same document

Correct Answer: C

Question 18

Larry, a security professional in an organization, has noticed some abnormalities In the user accounts on a web server. To thwart evolving attacks, he decided to harden the security of the web server by adopting a countermeasures to secure the accounts on the web server.
Which of the following countermeasures must Larry implement to secure the user accounts on the web server?

A. Retain all unused modules and application extensions

B. Enable all non-interactive accounts that should exist but do not require interactive login

C. Enable unused default user accounts created during the installation of an OS

D. Limit the administrator or toot-level access to the minimum number of users

Correct Answer: D

EC-COUNCIL Ethical Hacker Certified - 312-50 Exam Practice Test

Latest Update

Useful Links

Contact Us