312-50v10試験無料問題集（745題）「EC-COUNCIL Certified Ethical Hacker Exam (CEH v10) 認定」

出題：1

What is the correct process for the TCP three-way handshake connection establishment and connection termination?

A. Connection Establishment: SYN, SYN-ACK, ACKConnection Termination: FIN, ACK-FIN, ACK

B. Connection Establishment: ACK, ACK-SYN, SYNConnection Termination: FIN, ACK-FIN, ACK

C. Connection Establishment: FIN, ACK-FIN, ACKConnection Termination: SYN, SYN-ACK, ACK

D. Connection Establishment: SYN, SYN-ACK, ACKConnection Termination: ACK, ACK-SYN, SYN

正解：A 解答を投票する

出題：2

Which of the following is a form of penetration testing that relies heavily on human interaction and often involves tricking people into breaking normal security procedures?

A. Tailgating

B. Eavesdropping

C. Piggybacking

D. Social Engineering

正解：D 解答を投票する

出題：3

Which of the below hashing functions are not recommended for use?

A. MD5, SHA-1

B. SHA-2. SHA-3

C. SHA-1.ECC

D. MD5. SHA-5

正解：C 解答を投票する

出題：4

You are monitoring the network of your organizations. You notice that:
1. There are huge outbound connections from your Internal Network to External IPs.
2. On further investigation, you see that the External IPs are blacklisted.
3. Some connections are accepted, and some are dropped.
4. You find that it is a CnC communication.
Which of the following solution will you suggest?

A. Both B and C

B. Clean the Malware which are trying to Communicate with the External Blacklist IP's

C. Block the Blacklist IP's @ Firewall

D. Update the Latest Signatures on your IDS/IPS

正解：A 解答を投票する

出題：5

Study the snort rule given below:

From the options below, choose the exploit against which this rule applies.

A. SQL Slammer

B. MS Blaster

C. MyDoom

D. WebDav

正解：B 解答を投票する

出題：6

Which of the following is the most important phase of ethical hacking wherein you need to spend considerable amount of time?

A. Gaining access

B. Escalating privileges

C. Network mapping

D. Footprinting

正解：D 解答を投票する

出題：7

Which of the following is a command line packet analyzer similar to GUI-based Wireshark?

A. etherea

B. Jack the ripper

C. nessus

D. tcpdump

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：8

Least privilege is a security concept that requires that a user is

A. given privileges equal to everyone else in the department.

B. limited to those functions required to do the job.

C. trusted to keep all data and access to that data under their sole control.

D. given root or administrative privileges.

正解：B 解答を投票する

出題：9

Diffie-Hellman (DH) groups determine the strength of the key used in the key exchange process. Which of the following is the correct bit size of the Diffie-Hellman (DH) group 5?

A. 768 bit key

B. 1025 bit key

C. 2048 bit key

D. 1536 bit key

正解：D 解答を投票する

出題：10

You perform a scan of your company's network and discover that TCP port 123 is open. What services by default run on TCP port 123?

A. Network Time Protocol

B. Telnet

C. POP3

D. DNS

正解：A 解答を投票する

出題：11

In many states sending spam is illegal. Thus, the spammers have techniques to try and ensure that no one knows they sent the spam out to thousands of users at a time. Which of the following best describes what spammers use to hide the origin of these types of e-mails?

A. A blacklist of companies that have their mail server relays configured to allow traffic only to their specific domain name.

B. A blacklist of companies that have their mail server relays configured to be wide open.

C. Tools that will reconfigure a mail server's relay component to send the e-mail back to the spammers occasionally.

D. Mail relaying, which is a technique of bouncing e-mail from internal to external mails servers continuously.

正解：D 解答を投票する

出題：12

What is the process of logging, recording, and resolving events that take place in an organization?

A. Metrics

B. Internal Procedure

C. Security Policy

D. Incident Management Process

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：13

If you want only to scan fewer ports than the default scan using Nmap tool, which option would you use?

A. -F

B. -r

C. -sP

D. -P

正解：D 解答を投票する

出題：14

Which cipher encrypts the plain text digit (bit or byte) one by one?

A. Classical cipher

B. Stream cipher

C. Modern cipher

D. Block cipher

正解：B 解答を投票する

312-50v10試験無料問題集「EC-COUNCIL Certified Ethical Hacker Exam (CEH v10) 認定」