312-50v10試験無料問題集（745題）「EC-COUNCIL Certified Ethical Hacker Exam (CEH v10) 認定」

出題：1

If there is an Intrusion Detection System (IDS) in intranet, which port scanning technique cannot be used?

A. Idle Scan

B. Spoof Scan

C. TCP Connect scan

D. TCP SYN

正解：D 解答を投票する

出題：2

Advanced encryption standard is an algorithm used for which of the following?

A. Key recovery

B. Data integrity

C. Key discovery

D. Bulk data encryption

正解：D 解答を投票する

出題：3

After gaining access to the password hashes used to protect access to a web based application, knowledge of which cryptographic algorithms would be useful to gain access to the application?

A. RSA

B. SHA1

C. AES

D. Diffie-Helman

正解：B 解答を投票する

出題：4

The network in ABC company is using the network address 192.168.1.64 with mask 255.255.255.192. In the network the servers are in the addresses 192.168.1.122, 192.168.1.123 and 192.168.1.124.
An attacker is trying to find those servers but he cannot see them in his scanning. The command he is using is:
nmap 192.168.1.64/28.
Why he cannot see the servers?

A. The network must be down and the nmap command and IP address are ok.

B. He is scanning from 192.168.1.64 to 192.168.1.78 because of the mask /28 and the servers are not in that range.

C. He needs to add the command ''''ip address'''' just before the IP address.

D. He needs to change the address to 192.168.1.0 with the same mask.

正解：B 解答を投票する

出題：5

During a penetration test, the tester conducts an ACK scan using NMAP against the external interface of the DMZ firewall. NMAP reports that port 80 is unfiltered. Based on this response, which type of packet inspection is the firewall conducting?

A. Host

B. Stateful

C. Stateless

D. Application

正解：C 解答を投票する

出題：6

Backing up data is a security must. However, it also has certain level of risks when mishandled. Which of the following is the greatest threat posed by backups?

A. A backup is incomplete because no verification was performed

B. A backup is unavailable during disaster recovery

C. A backup is the source of Malware or illicit information

D. An unencrypted backup can be misplaced or stolen

正解：D 解答を投票する

出題：7

Which technical characteristic do Ethereal/Wireshark, TCPDump, and Snort have in common?

A. They use the same packet capture utility.

B. They send alerts to security monitors.

C. They are written in Java.

D. They use the same packet analysis engine.

正解：A 解答を投票する

出題：8

You want to do an ICMP scan on a remote computer using hping2. What is the proper syntax?

A. hping2 --set-ICMP host.domain.com

B. hping2 -1 host.domain.com

C. hping2 -i host.domain.com

D. hping2 host.domain.com

正解：B 解答を投票する

出題：9

Which statement best describes a server type under an N-tier architecture?

A. A group of servers with a unique role

B. A group of servers at a specific layer

C. A single server at a specific layer

D. A single server with a specific role

正解：A 解答を投票する

出題：10

A pentester gains access to a Windows application server and needs to determine the settings of the built-in Windows firewall. Which command would be used?

A. Ipconfig firewall show config

B. Netsh firewall show config

C. Net firewall show config

D. WMIC firewall show config

正解：B 解答を投票する

出題：11

Which of the following types of jailbreaking allows user-level access but does not allow iboot-level access?

A. Bootrom Exploit

B. iBoot Exploit

C. Sandbox Exploit

D. Userland Exploit

正解：D 解答を投票する

出題：12

While performing online banking using a Web browser, Kyle receives an email that contains an image of a well-crafted art. Upon clicking the image, a new tab on the web browser opens and shows an animated GIF of bills and coins being swallowed by a crocodile. After several days, Kyle noticed that all his funds on the bank was gone. What Web browser-based security vulnerability got exploited by the hacker?

A. Cross-Site Request Forgery

B. Web Form Input Validation

C. Cross-Site Scripting

D. Clickjacking

正解：A 解答を投票する

出題：13

By using a smart card and pin, you are using a two-factor authentication that satisfies

A. Something you have and something you are

B. Something you are and something you remember

C. Something you know and something you are

D. Something you have and something you know

正解：D 解答を投票する