CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. EC-Council
  5. 312-50

Free 312-50 Exam Braindumps (page: 61)

Page 60 of 191
PDF with 765 Questions

Which of the following Netcat commands would be used to perform a UDP scan of the lower 1024 ports?

  1. Netcat -h -U
  2. Netcat -hU <host(s.>
  3. Netcat -sU -p 1-1024 <host(s.>
  4. Netcat -u -v -w2 <host> 1-1024
  5. Netcat -sS -O target/1024

Answer(s): D

Explanation:

The proper syntax for a UDP scan using Netcat is "Netcat -u -v -w2 <host> 1-1024". Netcat is considered the Swiss-army knife of hacking tools because it is so versatile.



Sniffing is considered an active attack.

  1. True
  2. False

Answer(s): B

Explanation:

Sniffing is considered a passive attack.



A file integrity program such as Tripwire protects against Trojan horse attacks by:

  1. Automatically deleting Trojan horse programs
  2. Rejecting packets generated by Trojan horse programs
  3. Using programming hooks to inform the kernel of Trojan horse behavior
  4. Helping you catch unexpected changes to a system utility file that might indicate it had been replaced by a Trojan horse

Answer(s): D

Explanation:

Tripwire generates a database of the most common files and directories on your system. Once it is generated, you can then check the current state of your system against the original database and get a report of all the files that have been modified, deleted or added. This comes in handy if you allow other people access to your machine and even if you don't, if someone else does get access, you'll know if they tried to modify files such as /bin/login etc.



Erik notices a big increase in UDP packets sent to port 1026 and 1027 occasionally. He enters the following at the command prompt.

$ nc -l -p 1026 -u -v
In response, he sees the following message.
cell(?(c)????STOPALERT77STOP! WINDOWS REQUIRES IMMEDIATE ATTENTION.

Windows has found 47 Critical Errors. To fix the errors please do the following:
1. Download Registry Repair from: www.reg-patch.com
2. Install Registry Repair
3. Run Registry Repair
4. Reboot your computer
FAILURE TO ACT NOW MAY LEAD TO DATA LOSS AND CORRUPTION!

What would you infer from this alert?

  1. The machine is redirecting traffic to www.reg-patch.com using adware
  2. It is a genuine fault of windows registry and the registry needs to be backed up
  3. An attacker has compromised the machine and backdoored ports 1026 and 1027
  4. It is a messenger spam. Windows creates a listener on one of the low dynamic ports from 1026 to 1029 and the message usually promotes malware disguised as legitimate utilities

Answer(s): D

Explanation:

The "net send" Messenger service can be used by unauthorized users of your computer, without gaining any kind of privileged access, to cause a pop-up window to appear on your computer. Lately, this feature has been used by unsolicited commercial advertisers to inform many campus users about a "university diploma service"...






Post your Comments and Discuss EC-Council 312-50 exam with other Community members:

312-50 Exam Discussions & Posts