312-50V10 Online Practice Questions and Answers

When conducting a penetration test, it is crucial to use all means to get all available information about the target network. One of the ways to do that is by sniffing the network. Which of the following cannot be performed by the passive network sniffing?

A. Identifying operating systems, services, protocols and devices

B. Modifying and replaying captured network traffic

C. Collecting unencrypted information about usernames and passwords

D. Capturing a network traffic for further analysis

Which of the following problems can be solved by using Wireshark?

A. Tracking version changes of source code

B. Checking creation dates on all webpages on a server

C. Resetting the administrator password on multiple systems

D. Troubleshooting communication resets between two systems

Which protocol and port number might be needed in order to send log messages to a log analysis tool that resides behind a firewall?

A. UDP 123

B. UDP 541

C. UDP 514

D. UDP 415

A consultant has been hired by the V.P. of a large financial organization to assess the company's security posture. During the security testing, the consultant comes across child pornography on the V.P.'s computer. What is the consultant's obligation to the financial organization?

A. Say nothing and continue with the security testing.

B. Stop work immediately and contact the authorities.

C. Delete the pornography, say nothing, and continue security testing.

D. Bring the discovery to the financial organization's human resource department.

Which of the following is a primary service of the U.S. Computer Security Incident Response Team (CSIRT)?

A. CSIRT provides an incident response service to enable a reliable and trusted single point of contact for reporting computer security incidents worldwide.

B. CSIRT provides a computer security surveillance service to supply a government with important intelligence information on individuals travelling abroad.

C. CSIRT provides a penetration testing service to support exception reporting on incidents worldwide by individuals and multi-national corporations.

D. CSIRT provides a vulnerability assessment service to assist law enforcement agencies with profiling an individual's property or company's asset.

To determine if a software program properly handles a wide range of invalid input, a form of automated testing can be used to randomly generate invalid input in an attempt to crash the program.

What term is commonly used when referring to this type of testing?

A. Fuzzing

B. Randomizing

C. Mutating

D. Bounding

Look at the following output. What did the hacker accomplish?

A. The hacker used whois to gather publicly available records for the domain.

B. The hacker used the "fierce" tool to brute force the list of available domains.

C. The hacker listed DNS records on his own domain.

D. The hacker successfully transferred the zone and enumerated the hosts.

You want to do an ICMP scan on a remote computer using hping2. What is the proper syntax?

A. hping2 host.domain.com

B. hping2 --set-ICMP host.domain.com

C. hping2 -i host.domain.com

D. hping2 -1 host.domain.com

Which of the following is a protocol specifically designed for transporting event messages?

A. SYSLOG

B. SMS

C. SNMP

D. ICMP

A distributed port scan operates by:

A. Blocking access to the scanning clients by the targeted host

B. Using denial-of-service software against a range of TCP ports

C. Blocking access to the targeted host by each of the distributed scanning clients

D. Having multiple computers each scan a small number of ports, then correlating the results