Fast2test 312-50v10リアル試験問題解答は更新された[2025年04月16日]
お手軽に合格させる 最新EC-COUNCIL 312-50v10問題集には745問があります
質問 # 261
Which tier in the N-tier application architecture is responsible for moving and processing data between the tiers?
- A. Application Layer
- B. Data tier
- C. Logic tier
- D. Presentation tier
正解:C
質問 # 262
The Heartbleed bug was discovered in 2014 and is widely referred to under MITRE's Common Vulnerabilities and Exposures (CVE) as CVE-2014-0160. This bug affects the OpenSSL implementation of the transport layer security (TLS) protocols defined in RFC6520.
What type of key does this bug leave exposed to the Internet making exploitation of any compromised system very easy?
- A. Public
- B. Private
- C. Root
- D. Shared
正解:B
解説:
Explanation
The data obtained by a Heartbleed attack may include unencrypted exchanges between TLS parties likely to be confidential, including any form post data in users' requests. Moreover, the confidential data exposed could include authentication secrets such as session cookies and passwords, which might allow attackers to impersonate a user of the service.
An attack may also reveal private keys of compromised parties.
References: https://en.wikipedia.org/wiki/Heartbleed
質問 # 263
Which initial procedure should an ethical hacker perform after being brought into an organization?
- A. Sign a formal contract with non-disclosure.
- B. Turn over deliverables.
- C. Assess what the organization is trying to protect.
- D. Begin security testing.
正解:A
質問 # 264
You are performing a penetration test for a client and have gained shell access to a Windows machine on the internal network. You intend to retrieve all DNS records for the internal domain, if the DNS server is at 192.168.10.2 and the domain name is abccorp.local, what command would you type at the nslookup prompt to attempt a zone transfer?
- A. is-d abccorp.local
- B. Iserver 192.168.10.2-t all
- C. List domain=Abccorp.local type=zone
- D. list server=192.168.10.2 type=all
正解:A
質問 # 265
The following is an entry captured by a network IDS. You are assigned the task of analyzing this entry. You notice the value 0x90, which is the most common NOOP instruction for the Intel processor. You figure that the attacker is attempting a buffer overflow attack.
You also notice "/bin/sh" in the ASCII part of the output.
As an analyst what would you conclude about the attack?
- A. The attacker is attempting an exploit that launches a command-line shell
- B. The attacker is attempting a buffer overflow attack and has succeeded
- C. The buffer overflow attack has been neutralized by the IDS
- D. The attacker is creating a directory on the compromised machine
正解:A
質問 # 266
You have successfully compromised a machine on the network and found a server that is alive on the same network. You tried to ping it but you didn't get any response back.
What is happening?
- A. TCP/IP doesn't support ICMP.
- B. The ARP is disabled on the target server.
- C. You need to run the ping command with root privileges.
- D. ICMP could be disabled on the target server.
正解:D
解説:
The ping utility is implemented using the ICMP "Echo request" and "Echo reply" messages.
Note: The Internet Control Message Protocol (ICMP) is one of the main protocols of the internet protocol suite. It is used by network devices, like routers, to send error messages indicating, for example, that a requested service is not available or that a host or router could not be reached.
References: https://en.wikipedia.org/wiki/Internet_Control_Message_Protocol
質問 # 267
Scenario: 1. Victim opens the attacker's web site.
2. Attacker sets up a web site which contains interesting and attractive content like 'Do you want to make S100 In a day?',
3. Victim clicks to the interesting and attractive content url.
4- Attacker creates a transparent iframe' in front of the url which victim attempt to click, so victim thinks that he/she clicks to the 'Do you want to make $1000 in a day?' url but actually he/sne clicks to the content or url that exists in the transparent iframe' which is setup by the attacker.
What is the name of the attack which is mentioned in the scenario?
- A. ClickJacking Attack
- B. HTTP Parameter Pollution
- C. HTML Injection
- D. Session Fixation
正解:A
質問 # 268
Which type of antenna is used in wireless communication?
- A. Parabolic
- B. Uni-directional
- C. Omnidirectional
- D. Bi-directional
正解:C
質問 # 269
There are several ways to gain insight on how a cryptosystem works with the goal of reverse engineering the process. A term describes when two pieces of data result in the same value is?
- A. Polymorphism
- B. Collision
- C. Escrow
- D. Collusion
正解:B
質問 # 270
You are logged in as a local admin on a Windows 7 system and you need to launch the Computer Management Console from command line.
Which command would you use?
- A. c:\services.msc
- B. c:\compmgmt.msc
- C. c:\ncpa.cp
- D. c:\gpedit
正解:B
解説:
To start the Computer Management Console from command line just type compmgmt.msc
/computer:computername in your run box or at the command line and it should automatically open the Computer Management console.
References: http://www.waynezim.com/tag/compmgmtmsc/
質問 # 271
Why containers are less secure that virtual machines?
- A. Host OS on containers has a larger surface attack.
- B. Containers may full fill disk space of the host.
- C. A compromise container may cause a CPU starvation of the host.
- D. Containers are attached to the same virtual network.
正解:A
質問 # 272
Which of the following programming languages is most susceptible to buffer overflow attacks, due to its lack of a built-in-bounds checking mechanism?
Output:
Segmentation fault
- A. C++
- B. C#
- C. Java
- D. Python
正解:A
質問 # 273
What is one of the advantages of using both symmetric and asymmetric cryptogrsphy in SSL/TLS?
- A. Symmetric encryption allows the server to security transmit the session keys out-of-band.
- B. Asymmetric cryptography is computationally expensive in comparison. However, it is well-suited to securely negotiate keys for use with symmetric cryptography.
- C. Symmetric algorithms such as AES provide a failsafe when asymmetric methods fail.
- D. Supporting both types of algorithms allows less-powerful devices such as mobile phones to use symmetric encryption instead.
正解:B
質問 # 274 
Identify the correct terminology that defines the above statement.
- A. Security Policy Implementation
- B. Designing Network Security
- C. Vulnerability Scanning
- D. Penetration Testing
正解:D
質問 # 275
The chance of a hard drive failure is once every three years. The cost to buy a new hard drive is $300. It will require 10 hours to restore the OS and software to the new hard disk. It will require a further 4 hours to restore the database from the last backup to the new hard disk. The recovery person earns $10/hour. Calculate the SLE, ARO, and ALE. Assume the EF = 1 (100%).
What is the closest approximate cost of this replacement and recovery operation per year?
- A. $1320
- B. $146
- C. $440
- D. $100
正解:B
解説:
The annualized loss expectancy (ALE) is the product of the annual rate of occurrence (ARO) and the single loss expectancy (SLE).
Suppose than an asset is valued at $100,000, and the Exposure Factor (EF) for this asset is 25%. The single loss expectancy (SLE) then, is 25% * $100,000, or $25,000.
In our example the ARO is 33%, and the SLE is 300+14*10 (as EF=1). The ALO is thus:
33%*(300+14*10) which equals 146.
References: https://en.wikipedia.org/wiki/Annualized_loss_expectancy
質問 # 276
You have several plain-text firewall logs that you must review to evaluate network traffic. You know that in order to do fast, efficient searches of the logs you must use regular expressions.
Which command-line utility are you most likely to use?
- A. Notepad
- B. Relational Database
- C. Grep
- D. MS Excel
正解:C
解説:
Explanation
grep is a command-line utility for searching plain-text data sets for lines matching a regular expression.
References: https://en.wikipedia.org/wiki/Grep
質問 # 277
When an alert rule is matched in a network-based IDS like snort, the IDS does which of the following?
- A. Stops checking rules, sends an alert, and lets the packet continue
- B. Blocks the connection with the source IP address in the packet
- C. Drops the packet and moves on to the next one
- D. Continues to evaluate the packet until all rules are checked
正解:D
質問 # 278
Your team has won a contract to infiltrate an organization. The company wants to have the attack be as realistic as possible; therefore, they did not provide any information besides the company name. What should be the first step in security testing the client?
- A. Enumeration
- B. Reconnaissance
- C. Scanning
- D. Escalation
正解:B
質問 # 279
To maintain compliance with regulatory requirements, a security audit of the systems on a network must be performed to determine their compliance with security policies. Which one of the following tools would most likely be used in such an audit?
- A. Intrusion Detection System
- B. Port scanner
- C. Vulnerability scanner
- D. Protocol analyzer
正解:C
質問 # 280
Seth is starting a penetration test from inside the network. He hasn't been given any information about the network. What type of test is he conducting?
- A. Internal, Whitebox
- B. External, Blackbox
- C. Internal, Blackbox
- D. External, Whitebox
正解:C
質問 # 281
......
最新の312-50v10学習ガイド2025年最新の- 提供するのはテストエンジンとPDF:https://jp.fast2test.com/312-50v10-premium-file.html