312-50v9試験無料問題集（125題）「EC-COUNCIL Certified Ethical Hacker v9 認定」

出題：1

Which of the following tools can be used for passiveOS fingerprinting?

A. Tracert

B. ping

C. tcpdump

D. nmap

正解：D 解答を投票する

出題：2

It isan entity or event with the potential to adversely impact a system through unauthorized access destruction disclosures denial of service or modification of data.
Which of the following terms best matches this definition?

A. Attack

B. Risk

C. Vulnerability

D. Threat

正解：D 解答を投票する

出題：3

During a recent security assessment, you discover the organization has one Domain Name Server (DNS) in a Demilitarized Zone (DMZ) and a second DNS server on the internal Network.
What is this type of DNS configuration commonly called?

A. DynDNS

B. DNSSEC

C. Split DNS

D. DNS Scheme

正解：C 解答を投票する

出題：4

You just set up a security system in your network. In what kind of system would you find thefollowing string of characters used as a rule within its configuration?
alert tcp any any ->192.168.100.0/24 21 (msg: "FTP on the network!";)

A. FTP Server rule

B. An Intrusion Detection System

C. A firewall IPTable

D. A Router IPTable

正解：B 解答を投票する

出題：5

The security concept of "separation of duties" is most similar to the operation ofwhich type of security device?

A. Firewall

B. Intrusion Detection System

C. Bastion host

D. Honeypot

正解：A 解答を投票する

出題：6

This asymmetry cipther is based on factoring the product of two large prime numbers. What cipher is described above?

A. MD5

B. SHA

C. RSA

D. RC5

正解：C 解答を投票する

出題：7

What term describes the amount of risk that remains after the vulnerabilities are classified and the countermeasures have been deployed?

A. ResidualRisk

B. Deferred Risk

C. Impact Risk

D. Inherent Risk

正解：A 解答を投票する

出題：8

Which of these options is the most secure procedure for strong backup tapes?

A. In a climate controlled facility offsite

B. In a cool dry environment

C. On a different floor in the same building

D. Inside the data center for faster retrieval in afireproof safe

正解：A 解答を投票する

出題：9

Which of the following is a low-tech way of gaining unauthorized access to systems?

A. Eavesdropping

B. Scanning

C. Social engineering

D. Sniffing

正解：C 解答を投票する

出題：10

Your team has won a contract to infiltrate an organization. The company wants to have the attack be a realistic as possible; therefore, they did not provide any information besides the company name.
What should be thefirst step in security testing the client?

A. Reconnaissance

B. Scanning

C. Escalation

D. Enumeration

正解：A 解答を投票する

312-50v9試験無料問題集「EC-COUNCIL Certified Ethical Hacker v9 認定」