312-50V8 Online Practice Questions and Answers

This asymmetry cipther is based on factoring the product of two large prime numbers. What cipher is described above?

A. SHA

B. RC5

C. RSA

D. MD5

What is the best description of SQL Injection?

A. It is a Denial of Service Attack.

B. It is an attack used to modify code in an application.

C. It is and attack used to gain unauthorized access to a database.

D. It isa Man-in-the-Middle attack between your SQL Server and Web App Server.

Which of the following is one of the key features found in a worm but not seen in a virus?

A. The payload is very small,usually below 800 bytes.

B. It is self replicating without need for user intervention.

C. It does not have the ability to propagate on its own.

D. All of them cannot be detected by virus scanners.

Exhibit:

The following is an entry captured by a network IDS.You are assigned the task of analyzing this entry. You

notice the value 0x90, which is the most common NOOP instruction for the

Intel processor. You figure that the attacker is attempting a buffer overflow attack. You also notice "/bin/sh"

in the ASCII part of the output. As an analyst what would you conclude about the attack?

A. The buffer overflow attack has been neutralized by the IDS

B. The attacker is creating a directory on the compromised machine

C. The attacker is attempting a buffer overflow attack and has succeeded

D. The attacker is attempting an exploit that launches a command-line shell

_____ is the process of converting something from one representation to the simplest form. It deals with the way in which systems convert data from one form to another.

A. Canonicalization

B. Character Mapping

C. Character Encoding

D. UCS transformation formats

Which of the following does proper basic configuration of snort as a network intrusion detection system require?

A. Limit the packets captured to the snort configuration file.

B. Capture every packet on the network segment.

C. Limit the packets captured to a single segment.

D. Limit the packets captured to the /var/log/snort directory.

How can telnet be used to fingerprint a web server?

A. telnet webserverAddress 80 HEAD / HTTP/1.0

B. telnet webserverAddress 80 PUT / HTTP/1.0

C. telnet webserverAddress 80 HEAD / HTTP/2.0

D. telnet webserverAddress 80 PUT / HTTP/2.0

Fred is scanning his network to ensure it is as secure as possible. Fred sends a TCP probe packet to a host with a FIN flag and he receives a RST/ACK response.

What does this mean?

A. This response means the port he is scanning is open.

B. The RST/ACK response means the port Fred is scanning is disabled.

C. This means the port he is scanning is half open.

D. This means that the port he is scanning on the host is closed.

How do you defend against DHCP Starvation attack?

A. Enable ARP-Block on the switch

B. Enable DHCP snooping on the switch

C. Configure DHCP-BLOCK to 1 on the switch

D. Install DHCP filters on the switch to block this attack

Which type of hacker represents the highest risk to your network?

A. black hat hackers

B. grey hat hackers

C. disgruntled employees

D. script kiddies