Free 312-50v11 Exam Braindumps (page: 60)

Page 60 of 127

Abel, a security professional, conducts penetration testing in his client organization to check for any security loopholes. He launched an attack on the DHCP servers by broadcasting forged DHCP requests and leased all the DHCP addresses available in the DHCP scope until the server could not issue any more IP addresses. This led to a Dos attack, and as a result, legitimate employees were unable to access the clients network. Which of the following attacks did Abel perform in the above scenario?

  1. VLAN hopping
  2. DHCP starvation
  3. Rogue DHCP server attack
  4. STP attack

Answer(s): B

Explanation:

A DHCP starvation assault is a pernicious computerized assault that objectives DHCP workers. During a DHCP assault, an unfriendly entertainer floods a DHCP worker with false DISCOVER bundles until the DHCP worker debilitates its stock of IP addresses. When that occurs, the aggressor can deny genuine organization clients administration, or even stock an other DHCP association that prompts a Man-in-the-Middle (MITM) assault.
In a DHCP Starvation assault, a threatening entertainer sends a huge load of false DISCOVER parcels until the DHCP worker thinks they’ve used their accessible pool. Customers searching for IP tends to find that there are no IP addresses for them, and they’re refused assistance. Furthermore, they may search for an alternate DHCP worker, one which the unfriendly entertainer may give. What’s more, utilizing a threatening or sham IP address, that unfriendly entertainer would now be able to peruse all the traffic that customer sends and gets.
In an unfriendly climate, where we have a malevolent machine running some sort of an instrument like Yersinia, there could be a machine that sends DHCP DISCOVER bundles. This malevolent customer doesn’t send a modest bunch – it sends a great many vindictive DISCOVER bundles utilizing sham, made-up MAC addresses as the source MAC address for each solicitation.
In the event that the DHCP worker reacts to every one of these false DHCP DISCOVER parcels, the whole IP address pool could be exhausted, and that DHCP worker could trust it has no more IP delivers to bring to the table to legitimate DHCP demands.
When a DHCP worker has no more IP delivers to bring to the table, ordinarily the following thing to happen would be for the aggressor to get their own DHCP worker. This maverick DHCP worker at that point starts giving out IP addresses.
The advantage of that to the assailant is that if a false DHCP worker is distributing IP addresses, including default DNS and door data, customers who utilize those IP delivers and begin to utilize that default passage would now be able to be directed through the aggressor’s machine. That is all that an unfriendly entertainer requires to play out a man-in-the-center (MITM) assault.



At what stage of the cyber kill chain theory model does data exfiltration occur?

  1. Actions on objectives
  2. Weaponization
  3. installation
  4. Command and control

Answer(s): A

Explanation:

The longer an adversary has this level of access, the greater the impact. Defenders must detect this stage as quickly as possible and deploy tools which can enable them to gather forensic evidence. One example would come with network packet captures, for damage assessment. Only now, after progressing through the primary six phases, can intruders take actions to realize their original objectives. Typically, the target of knowledge exfiltration involves collecting, encrypting and extracting information from the victim(s) environment; violations of knowledge integrity or availability are potential objectives also . Alternatively, and most ordinarily, the intruder may only desire access to the initial victim box to be used as a hop point to compromise additional systems and move laterally inside the network. Once this stage is identified within an environment, the implementation of prepared reaction plans must be initiated. At a minimum, the plan should include a comprehensive communication plan, detailed evidence must be elevated to the very best ranking official or board, the deployment of end-point security tools to dam data loss and preparation for briefing a CIRT Team. Having these resources well established beforehand may be a “MUST” in today’s quickly evolving landscape of cybersecurity threats



Techno Security Inc. recently hired John as a penetration tester. He was tasked with identifying open ports in the target network and determining whether the ports are online and any firewall rule sets are encountered. John decided to perform a TCP SYN ping scan on the target network. Which of the following Nmap commands must John use to perform the TCP SVN ping scan?

  1. nmap -sn -pp < target ip address >
  2. nmap -sn -PO < target IP address >
  3. Anmap -sn -PS < target IP address >
  4. nmap -sn -PA < target IP address >

Answer(s): C



Ricardo has discovered the username for an application in his targets environment. As he has a limited amount of time, he decides to attempt to use a list of common passwords he found on the Internet. He compiles them into a list and then feeds that list as an argument into his password- cracking application, what type of attack is Ricardo performing?

  1. Known plaintext
  2. Password spraying
  3. Brute force
  4. Dictionary

Answer(s): D

Explanation:

A dictionary Attack as an attack vector utilized by the attacker to break in a very system, that is password protected, by golf shot technically each word in a very dictionary as a variety of password for that system. This attack vector could be a variety of Brute Force Attack.
The lexicon will contain words from an English dictionary and conjointly some leaked list of commonly used passwords and once combined with common character substitution with numbers, will generally be terribly effective and quick.

How is it done?

Basically, it’s attempting each single word that’s already ready. it’s done victimization machine- controlled tools that strive all the possible words within the dictionary.
Some password Cracking Software:
• John the ripper
• L0phtCrack
• Aircrack-ng



Page 60 of 127



Post your Comments and Discuss EC-Council 312-50v11 exam with other Community members:

Casandra commented on December 05, 2024
Do not book your exam if you don't know the topics and the questions. The test is super duper hard and almost impossible to pass without knowing the questions.
EUROPEAN UNION
upvote

Joseph commented on December 04, 2024
VERY HELPFUL TO ME
Anonymous
upvote

aam commented on November 20, 2024
great lesson
Anonymous
upvote

Naomie commented on November 12, 2024
Good material very helpful.
Anonymous
upvote

mo commented on October 08, 2024
a good practice thanks
Anonymous
upvote

Last-Minute Miracles commented on September 21, 2024
Thanks to this exam dumps and for posting it free.
Anonymous
upvote

Yorika commented on September 14, 2024
Quite impressive and accurate. The full version is well worth it with the Buy 1 Get one free deal. Basically you get 2 exams with 50% discount.
UNITED STATES
upvote

Sunny commented on September 14, 2024
I am pleased to let you know that I passed this exam last Friday. Here are some feedback to share: 1- The exam is tough so you must read and read and prepare 2- They give you enough time. Skip the questions you don't know and come back to it at the end. 3- Use this exam dumps. I saw most these questions in the exam. Good luck.
UNITED STATES
upvote

Emmanuel Fakayode commented on September 10, 2024
This is a great deal and an eyes opener.
Anonymous
upvote

MYSTERY MASTER commented on August 15, 2024
SEEMS HELPFUL
INDIA
upvote

Mohan commented on August 07, 2024
This is one of the most compete and comprehensive exam questions and answers I have came across.
INDIA
upvote

Raks commented on May 28, 2024
No comments till now
Anonymous
upvote

Pranav commented on July 22, 2022
This site keeps its promise. The 100% pass is real. Thank you team.
UNITED STATES
upvote

Nathan commented on June 18, 2021
I bought 2 exams for the 50% sale. I already passed one of them. I am prepareing for my next exam. These exam dumps questions are very helpful.
POLAND
upvote