312-50 Practice Exam Questions and Answers

A.  

PSK (phase-shift keying)

B.  

FSK (frequency-shift keying)

C.  

ASK (amplitude-shift keying)

D.  

QAM (quadrature amplitude modulation)

A.  

Moves the MBR to another location on the RAM and copies itself to the original location of the MBR

B.  

Moves the MBR to another location on the hard disk and copies itself to the original location of the MBR

C.  

Modifies directory table entries so that directory entries point to the virus code instead of the actual program

D.  

Overwrites the original MBR and only executes the new virus code

A.  

Fast processor to help with network traffic analysis

B.  

They must be dual-homed

C.  

Similar RAM requirements

D.  

Fast network interface cards

A.  

Network firewalls can prevent attacks because they can detect malicious HTTP traffic.

B.  

Network firewalls cannot prevent attacks because ports 80 and 443 must be opened.

C.  

Network firewalls can prevent attacks if they are properly configured.

D.  

Network firewalls cannot prevent attacks because they are too complex to configure.

A.  

Reports

B.  

Testing tools

C.  

Metrics

D.  

Taxonomy of vulnerabilities

A.  

Restore a random file.

B.  

Perform a full restore.

C.  

Read the first 512 bytes of the tape.

D.  

Read the last 512 bytes of the tape.

A.  

Micro

B.  

Worm

C.  

Trojan

D.  

Virus

A.  

Polymorphic virus

B.  

Multipart virus

C.  

Macro virus

D.  

Stealth virus

A.  

Paros Proxy

B.  

BBProxy

C.  

BBCrack

D.  

Blooover

A.  

Proper testing

B.  

Secure coding principles

C.  

Systems security and architecture review

D.  

Analysis of interrupts within the software

A.  

Port scan targeting 192.168.1.103

B.  

Teardrop attack targeting 192.168.1.106

C.  

Denial of service attack targeting 192.168.1.103

D.  

Port scan targeting 192.168.1.106

A.  

white box

B.  

grey box

C.  

red box

D.  

black box

A.  

Say nothing and continue with the security testing.

B.  

Stop work immediately and contact the authorities.

C.  

Delete the pornography, say nothing, and continue security testing.

D.  

Bring the discovery to the financial organization's human resource department.

A.  

Begin security testing.

B.  

Turn over deliverables.

C.  

Sign a formal contract with non-disclosure.

D.  

Assess what the organization is trying to protect.

A.  

Ignore the problem completely and let someone else deal with it.

B.  

Create a document that will crash the computer when opened and send it to friends.

C.  

Find an underground bulletin board and attempt to sell the bug to the highest bidder.

D.  

Notify the vendor of the bug and do not disclose it until the vendor gets a chance to issue a fix.

A.  

Threaten to publish the penetration test results if not paid.

B.  

Follow proper legal procedures against the company to request payment.

C.  

Tell other customers of the financial problems with payments from this company.

D.  

Exploit some of the vulnerabilities found on the company webserver to deface it.

A.  

Say no; the friend is not the owner of the account.

B.  

Say yes; the friend needs help to gather evidence.

C.  

Say yes; do the job for free.

D.  

Say no; make sure that the friend knows the risk she’s asking the CEH to take.

A.  

Start by foot printing the network and mapping out a plan of attack.

B.  

Ask the employer for authorization to perform the work outside the company.

C.  

Begin the reconnaissance phase with passive information gathering and then move into active information gathering.

D.  

Use social engineering techniques on the friend's employees to help identify areas that may be susceptible to attack.

A.  

-sO

B.  

-sP

C.  

-sS

D.  

-sU

A.  

The operating system performs a one-way hash of the passwords.

B.  

The operating system stores the passwords in a secret file that users cannot find.

C.  

The operating system encrypts the passwords, and decrypts them when needed.

D.  

The operating system stores all passwords in a protected segment of non-volatile memory.

A.  

Angry IP

B.  

Nikto

C.  

Ike-scan

D.  

Arp-scan

A.  

Perl

B.  

C++

C.  

Python

D.  

Java

A.  

Netcat will listen on the 10.1.0.43 interface for 1234 seconds on port 2222.

B.  

Netcat will listen on port 2222 and output anything received to a remote connection on 10.1.0.43 port 1234.

C.  

Netcat will listen for a connection from 10.1.0.43 on port 1234 and output anything received to port 2222.

D.  

Netcat will listen on port 2222 and then output anything received to local interface 10.1.0.43.

A.  

Locate type=ns

B.  

Request type=ns

C.  

Set type=ns

D.  

Transfer type=ns

A.  

Mandatory

B.  

Discretionary

C.  

Rule-based

D.  

Role-based

A.  

Iris scan

B.  

Retinal scan

C.  

Facial recognition scan

D.  

Signature kinetics scan

A.  

Port scanning

B.  

Banner grabbing

C.  

Injecting arbitrary data

D.  

Analyzing service response

A.  

They do not use host system resources.

B.  

They are placed at the boundary, allowing them to inspect all traffic.

C.  

They are easier to install and configure.

D.  

They will not interfere with user interfaces.

A.  

Man-in-the-middle attack

B.  

Brute-force attack

C.  

Dictionary attack

D.  

Session hijacking

A.  

Asymmetric

B.  

Confidential

C.  

Symmetric

D.  

Non-confidential

A.  

Design

B.  

Requirements

C.  

Verification

D.  

Implementation

A.  

Blue Book

B.  

ISO 26029

C.  

Common Criteria

D.  

The Wassenaar Agreement

A.  

The victim user must open the malicious link with an Internet Explorer prior to version 8.

B.  

The session cookies generated by the application do not have the HttpOnly flag set.

C.  

The victim user must open the malicious link with a Firefox prior to version 3.

D.  

The web application should not use random tokens.

A.  

Physical

B.  

Procedural

C.  

Technical

D.  

Compliance

A.  

The web application does not have the secure flag set.

B.  

The session cookies do not have the HttpOnly flag set.

C.  

The victim user should not have an endpoint security solution.

D.  

The victim's browser must have ActiveX technology enabled.

A.  

Input validation flaw

B.  

HTTP header injection vulnerability

C.  

0-day vulnerability

D.  

Time-to-check to time-to-use flaw

A.  

c:\compmgmt.msc

B.  

c:\gpedit

C.  

c:\ncpa.cpl

D.  

c:\services.msc

A.  

Converts passwords to uppercase.

B.  

Hashes are sent in clear text over the network.

C.  

Makes use of only 32-bit encryption.

D.  

Effective length is 7 characters.

A.  

Intrusion Prevention System (IPS)

B.  

Vulnerability scanner

C.  

Protocol analyzer

D.  

Network sniffer

A.  

Height and Weight

B.  

Voice

C.  

Fingerprints

D.  

Iris patterns

A.  

A scan in which all flags are turned off

B.  

A scan in which certain flags are off

C.  

A scan in which all flags are on

D.  

A scan in which the packet size is set to zero

E.  

A scan with an illegal packet size

A.  

Grep

B.  

Notepad

C.  

MS Excel

D.  

Relational Database

A.  

NET FILE

B.  

NET USE

C.  

NET CONFIG

D.  

NET VIEW

A.  

Public Key

B.  

Secret Key

C.  

Hash Algorithm

D.  

Digest

A.  

Do not reply to email messages or popup ads asking for personal or financial information

B.  

Do not trust telephone numbers in e-mails or popup ads

C.  

Review credit card and bank account statements regularly

D.  

Antivirus, anti-spyware, and firewall software can very easily detect these type of attacks

E.  

Do not send credit card numbers, and personal or financial information via e-mail

A.  

PKI

B.  

single sign on

C.  

biometrics

D.  

SOA

A.  

Ignore it.

B.  

Try to sell the information to a well-paying party on the dark web.

C.  

Notify the web site owner so that corrective action be taken as soon as possible to patch the vulnerability.

D.  

Exploit the vulnerability without harming the web site owner so that attention be drawn to the problem.

A.  

Nmap

B.  

Snadboy

C.  

Queso

D.  

UserInfo

E.  

NetBus

A.  

Public-key cryptosystems are faster than symmetric-key cryptosystems.

B.  

Public-key cryptosystems distribute public-keys within digital signatures.

C.  

Public-key cryptosystems do not require a secure key distribution channel.

D.  

Public-key cryptosystems do not provide technical non-repudiation via digital signatures.

A.  

MD5

B.  

SHA-1

C.  

RC4

D.  

MD4

A.  

Defense in depth

B.  

Three-way handshake

C.  

Covert channels

D.  

Exponential backoff algorithm

A.  

An extensible security framework named COBIT

B.  

A list of flaws and how to fix them

C.  

Web application patches

D.  

A security certification for hardened web applications

A.  

Legal, performance, audit

B.  

Audit, standards based, regulatory

C.  

Contractual, regulatory, industry

D.  

Legislative, contractual, standards based

A.  

They provide a repeatable framework.

B.  

Anyone can run the command line scripts.

C.  

They are available at low cost.

D.  

They are subject to government regulation.

A.  

Certificate authority

B.  

Validation authority

C.  

Registration authority

D.  

Verification authority

A.  

Due to the key size, the time it will take to encrypt and decrypt the message hinders efficient communication.

B.  

To get messaging programs to function with this algorithm requires complex configurations.

C.  

It has been proven to be a weak cipher; therefore, should not be trusted to protect sensitive data.

D.  

It is a symmetric key algorithm, meaning each recipient must receive the key through a different channel than the message.

A.  

The root CA is the recovery agent used to encrypt data when a user's certificate is lost.

B.  

The root CA stores the user's hash value for safekeeping.

C.  

The CA is the trusted root that issues certificates.

D.  

The root CA is used to encrypt email messages to prevent unintended disclosure of data.

A.  

Poly key exchange

B.  

Cross certification

C.  

Poly key reference

D.  

Cross-site exchange

A.  

A static NAT uses a many-to-many mapping.

B.  

A static NAT uses a one-to-many mapping.

C.  

A static NAT uses a many-to-one mapping.

D.  

A static NAT uses a one-to-one mapping.

A.  

Unplug the network connection on the company’s web server.

B.  

Determine the origin of the attack and launch a counterattack.

C.  

Record as much information as possible from the attack.

D.  

Perform a system restart on the company’s web server.

A.  

Control Objectives for Information and Related Technology (COBIT)

B.  

Sarbanes-Oxley Act (SOX)

C.  

Health Insurance Portability and Accountability Act (HIPAA)

D.  

Payment Card Industry Data Security Standards (PCI DSS)

A.  

Sarbanes-Oxley Act (SOX)

B.  

Gramm-Leach-Bliley Act (GLBA)

C.  

Fair and Accurate Credit Transactions Act (FACTA)

D.  

Federal Information Security Management Act (FISMA)

A.  

Employers promote monitoring activities of employees as long as the employees demonstrate trustworthiness.

B.  

Employers use informal verbal communication channels to explain employee monitoring activities to employees.

C.  

Employers use network surveillance to monitor employee email traffic, network access, and to record employee keystrokes.

D.  

Employers provide employees written statements that clearly discuss the boundaries of monitoring activities and consequences.

A.  

Regulatory compliance

B.  

Peer review

C.  

Change management

D.  

Penetration testing

A.  

guidelines and practices for security controls.

B.  

financial soundness and business viability metrics.

C.  

standard best practice for configuration management.

D.  

contract agreement writing standards.

A.  

Process

B.  

Procedure

C.  

Policy

D.  

Paradigm

A.  

At least once a year and after any significant upgrade or modification

B.  

At least once every three years or after any significant upgrade or modification

C.  

At least twice a year or after any significant upgrade or modification

D.  

At least once every two years and after any significant upgrade or modification

A.  

Truecrypt

B.  

Sub7

C.  

Nessus

D.  

Clamwin

A.  

Penetration testing

B.  

Social engineering

C.  

Vulnerability scanning

D.  

Access control list reviews

A.  

By implementing written security procedures, enabling employee security training, and promoting the benefits of security

B.  

By using informal networks of communication, establishing secret passing procedures, and immediately terminating employees

C.  

By sharing security secrets with employees, enabling employees to share secrets, and establishing a consultative help line

D.  

By decreasing an employee's vacation time, addressing ad-hoc employment clauses, and ensuring that managers know employee strengths