312-50v8試験無料問題集（880題）「EC-COUNCIL Certified Ethical Hacker v8 認定」

出題：1

What is Hunt used for?

A. Hunt is used to intercept traffic i.e. man-in-the-middle traffic

B. Hunt is used for password cracking

C. Hunt is used to sniff traffic

D. Hunt is used to footprint networks

E. Hunt is used to hack web servers

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

Jason is the network administrator of Spears Technology. He has enabled SNORT IDS to detect attacks going through his network. He receives Snort SMS alerts on his iPhone whenever there is an attempted intrusion to his network.
He receives the following SMS message during the weekend.

An attacker Chew Siew sitting in Beijing, China had just launched a remote scan on Jason's network with the hping command.
Which of the following hping2 command is responsible for the above snort alert?

A. chenrocks:/home/siew # hping -D -V -R -S -Z -Y 192.168.2.56 -p 22 -c 5 -t 118

B. chenrocks:/home/siew # hping -S -R -P -A -F -U 192.168.2.56 -p 22 -c 5 -t 118

C. chenrocks:/home/siew # hping -G -T -H -S -L -W 192.168.2.56 -p 22 -c 5 -t 118

D. chenrocks:/home/siew # hping -F -Q -J -A -C -W 192.168.2.56 -p 22 -c 5 -t 118

正解：B 解答を投票する

出題：3

You are writing security policy that hardens and prevents Footprinting attempt by Hackers. Which of the following countermeasures will NOT be effective against this attack?

A. Perform Footprinting techniques and remove any sensitive information found on DMZ sites

B. Prevent search engines from caching a Webpage and use anonymous registration services

C. Configure routers to restrict the responses to Footprinting requests

D. Configure Web Servers to avoid information leakage and disable unwanted protocols

E. Evaluate the information before publishing it on the Website/Intranet

F. Use an IDS that can be configured to refuse suspicious traffic and pick up Footprinting patterns

G. Monitor every employee computer with Spy cameras,keyloggers and spy on them

H. Lock the ports with suitable Firewall configuration

I. Disable directory and use split-DNS

正解：G 解答を投票する

出題：4

Jake is a network administrator who needs to get reports from all the computer and network devices on his network. Jake wants to use SNMP but is afraid that won't be secure since passwords and messages are in clear text. How can Jake gather network information in a secure manner?

A. He can use SecWMI

B. Jake can use SNMPrev5

C. Jake can use SecSNMP

D. He can use SNMPv3

正解：D 解答を投票する

出題：5

Hayden is the network security administrator for her company, a large finance firm based in Miami. Hayden just returned from a security conference in Las Vegas where they talked about all kinds of old and new security threats; many of which she did not know of. Hayden is worried about the current security state of her company's network so she decides to start scanning the network from an external IP address. To see how some of the hosts on her network react, she sends out SYN packets to an IP range. A number of IPs responds with a SYN/ACK response. Before the connection is established she sends RST packets to those hosts to stop the session. She does this to see how her intrusion detection system will log the traffic. What type of scan is Hayden attempting here?

A. The type of scan,she is using is called a NULL scan

B. She is utilizing a SYN scan to find live hosts that are listening on her network

C. Hayden is using a half-open scan to find live hosts on her network

D. Hayden is attempting to find live hosts on her company's network by using an XMAS scan

正解：C 解答を投票する

出題：6

Study the log below and identify the scan type.

A. nmap -sS 192.168.1.10

B. nmap -sV 192.168.1.10

C. nmap -sO -T 192.168.1.10

D. nmap -sR 192.168.1.10

正解：C 解答を投票する

出題：7

Nathan is testing some of his network devices. Nathan is using Macof to try and flood the ARP cache of these switches. If these switches' ARP cache is successfully flooded, what will be the result?

A. If the ARP cache is flooded,the switches will drop into pix mode making it less susceptible to attacks.

B. The switches will route all traffic to the broadcast address created collisions.

C. The switches will drop into hub mode if the ARP cache is successfully flooded.

D. Depending on the switch manufacturer,the device will either delete every entry in its ARP cache or reroute packets to the nearest switch.

正解：C 解答を投票する

出題：8

An engineer is learning to write exploits in C++ and is using the exploit tool Backtrack. The engineer wants to compile the newest C++ exploit and name it calc.exe. Which command would the engineer use to accomplish this?

A. g++ hackersExploit.py -o calc.exe

B. g++ -i hackersExploit.pl -o calc.exe

C. g++ hackersExploit.cpp -o calc.exe

D. g++ --compile -i hackersExploit.cpp -o calc.exe

正解：C 解答を投票する

出題：9

What are two things that are possible when scanning UDP ports? (Choose two.

A. Nothing

B. The four-way handshake will not be completed

C. An RFC 1294 message will be returned

D. An ICMP message will be returned

E. A reset will be returned

正解：A,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

Which of the following tools can be used to perform a zone transfer?

正解：B,D,F,G 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：11

Which tool is used to automate SQL injections and exploit a database by forcing a given
web application to connect to another database controlled by a hacker?

A. DataThief

B. SQLInjector

C. NetCat

D. Cain and Abel

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：12

Which element of Public Key Infrastructure (PKI) verifies the applicant?

A. Validation authority

B. Registration authority

C. Certificate authority

D. Verification authority

正解：B 解答を投票する

出題：13

What is the primary drawback to using advanced encryption standard (AES) algorithm with a 256 bit key to share sensitive data?

A. It has been proven to be a weak cipher; therefore,should not be trusted to protect sensitive data.

B. It is a symmetric key algorithm,meaning each recipient must receive the key through a different channel than the message.

C. Due to the key size,the time it will take to encrypt and decrypt the message hinders efficient communication.

D. To get messaging programs to function with this algorithm requires complex configurations.

正解：B 解答を投票する

出題：14

You are doing IP spoofing while you scan your target. You find that the target has port 23 open. Anyway you are unable to connect. Why?

A. The OS does not reply to telnet even if port 23 is open

B. You need an automated telnet tool

C. You cannot spoof + TCP

D. A firewall is blocking port 23

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：15

Bob was frustrated with his competitor, Brownies Inc., and decided to launch an attack that would result in serious financial losses. He planned the attack carefully and carried out the attack at the appropriate moment.
Meanwhile, Trent, an administrator at Brownies Inc., realized that their main financial transaction server had been attacked. As a result of the attack, the server crashed and Trent needed to reboot the system, as no one was able to access the resources of the company. This process involves human interaction to fix it.
What kind of Denial of Service attack was best illustrated in the scenario above?

A. DoS attacks which involves crashing a network or system

B. DoS attacks which involves flooding a network or system

C. Simple DDoS attack

D. DoS attacks which is done accidentally or deliberately

正解：A 解答を投票する

出題：16

What is the purpose of conducting security assessments on network resources?

A. Documentation

B. Implementation

C. Validation

D. Management

正解：C 解答を投票する

312-50v8試験無料問題集「EC-COUNCIL Certified Ethical Hacker v8 認定」