Free 312-50v11 Exam Braindumps (page: 67)

Page 67 of 127

jane, an ethical hacker. Is testing a target organization's web server and website to identity security loopholes. In this process, she copied the entire website and its content on a local drive to view the complete profile of the site's directory structure, file structure, external links, images, web pages, and so on. This information helps jane map the website's directories and gain valuable information. What is the attack technique employed by Jane in the above scenario?

  1. website mirroring
  2. Session hijacking
  3. Web cache poisoning
  4. Website defacement

Answer(s): A

Explanation:

A mirror site may be a website or set of files on a computer server that has been copied to a different computer server in order that the location or files are available from quite one place. A mirror site has its own URL, but is otherwise just like the principal site. Load-balancing devices allow high-volume sites to scale easily, dividing the work between multiple mirror sites. A mirror site is typically updated frequently to make sure it reflects the contents of the first site. In some cases, the first site may arrange for a mirror site at a bigger location with a better speed connection and, perhaps, a better proximity to an outsized audience. If the first site generates an excessive amount of traffic, a mirror site can ensure better availability of the web site or files. For websites that provide copies or updates of widely used software, a mirror site allows the location to handle larger demands and enables the downloaded files to arrive more quickly. Microsoft, Sun Microsystems and other companies have mirror sites from which their browser software are often downloaded. Mirror sites are wont to make site access faster when the first site could also be geographically distant from those accessing it. A mirrored web server is usually located on a special continent from the principal site, allowing users on the brink of the mirror site to urge faster and more reliable access.
Mirroring an internet site also can be done to make sure that information are often made available to places where access could also be unreliable or censored. In 2013, when Chinese authorities blocked access to foreign media outlets just like the Wall Street Journal and Reuters, site mirroring was wont to restore access and circumvent government censorship.



An organization is performing a vulnerability assessment tor mitigating threats. James, a pen tester, scanned the organization by building an inventory of the protocols found on the organization's machines to detect which ports are attached to services such as an email server, a web server or a database server. After identifying the services, he selected the vulnerabilities on each machine and started executing only the relevant tests. What is the type of vulnerability assessment solution that James employed in the above scenario?

  1. Product-based solutions
  2. Tree-based assessment
  3. Service-based solutions
  4. inference-based assessment

Answer(s): C

Explanation:

As systems approaches to the event of biological models become more mature, attention is increasingly that specialize in the matter of inferring parameter values within those models from experimental data. However, particularly for nonlinear models, it’s not obvious, either from inspection of the model or from the experimental data, that the inverse problem of parameter fitting will have a singular solution, or maybe a non-unique solution that constrains the parameters to lie within a plausible physiological range. Where parameters can’t be constrained they’re termed ‘unidentifiable’. We specialise in gaining insight into the causes of unidentifiability using inference- based methods, and compare a recently developed measure-theoretic approach to inverse sensitivity analysis to the favored Markov chain Monte Carlo and approximate Bayesian computation techniques for Bayesian inference. All three approaches map the uncertainty in quantities of interest within the output space to the probability of sets of parameters within the input space. The geometry of those sets demonstrates how unidentifiability are often caused by parameter compensation and provides an intuitive approach to inference-based experimental design.



Scenario: Joe turns on his home computer to access personal online banking. When he enters the URL www.bank.com. the website is displayed, but it prompts him to re-enter his credentials as if he has never visited the site before. When he examines the website URL closer, he finds that the site is not secure and the web address appears different. What type of attack he is experiencing?.

  1. Dos attack
  2. DHCP spoofing
  3. ARP cache poisoning
  4. DNS hijacking

Answer(s): D



Harry. a professional hacker, targets the IT infrastructure of an organization. After preparing for the attack, he attempts to enter the target network using techniques such as sending spear-phishing emails and exploiting vulnerabilities on publicly available servers. Using these techniques, he successfully deployed malware on the target system to establish an outbound connection. What is the APT lifecycle phase that Harry is currently executing?

  1. Preparation
  2. Cleanup
  3. Persistence
  4. initial intrusion

Answer(s): D

Explanation:

After the attacker completes preparations, subsequent step is an effort to realize an edge within the target’s environment. a particularly common entry tactic is that the use of spearphishing emails containing an internet link or attachment. Email links usually cause sites where the target’s browser and related software are subjected to varied exploit techniques or where the APT actors plan to social engineer information from the victim which will be used later. If a successful exploit takes place, it installs an initial malware payload on the victim’s computer. Figure 2 illustrates an example of a spearphishing email that contains an attachment. Attachments are usually executable malware, a zipper or other archive containing malware, or a malicious Office or Adobe PDF (Portable Document Format) document that exploits vulnerabilities within the victim’s applications to ultimately execute malware on the victim’s computer. Once the user has opened a malicious file using vulnerable software, malware is executing on the target system. These phishing emails are often very convincing and difficult to differentiate from legitimate email messages. Tactics to extend their believability include modifying legitimate documents from or associated with the organization. Documents are sometimes stolen from the organization or their collaborators during previous exploitation operations. Actors modify the documents by adding exploits and malicious code then send them to the victims. Phishing emails are commonly sent through previously compromised email servers, email accounts at organizations associated with the target or public email services. Emails also can be sent through mail relays with modified email headers to form the messages appear to possess originated from legitimate sources. Exploitation of vulnerabilities on public-facing servers is another favorite technique of some APT groups. Though this will be accomplished using exploits for known vulnerabilities, 0-days are often developed or purchased to be used in intrusions as required .

Gaining an edge within the target environment is that the primary goal of the initial intrusion. Once a system is exploited, the attacker usually places malware on the compromised system and uses it as a jump point or proxy for further actions. Malware placed during the initial intrusion phase is usually an easy downloader, basic Remote Access Trojan or an easy shell. Figure 3 illustrates a newly infected system initiating an outbound connection to notify the APT actor that the initial intrusion attempt was successful which it’s able to accept commands.



Page 67 of 127



Post your Comments and Discuss EC-Council 312-50v11 exam with other Community members:

Casandra commented on December 05, 2024
Do not book your exam if you don't know the topics and the questions. The test is super duper hard and almost impossible to pass without knowing the questions.
EUROPEAN UNION
upvote

Joseph commented on December 04, 2024
VERY HELPFUL TO ME
Anonymous
upvote

aam commented on November 20, 2024
great lesson
Anonymous
upvote

Naomie commented on November 12, 2024
Good material very helpful.
Anonymous
upvote

mo commented on October 08, 2024
a good practice thanks
Anonymous
upvote

Last-Minute Miracles commented on September 21, 2024
Thanks to this exam dumps and for posting it free.
Anonymous
upvote

Yorika commented on September 14, 2024
Quite impressive and accurate. The full version is well worth it with the Buy 1 Get one free deal. Basically you get 2 exams with 50% discount.
UNITED STATES
upvote

Sunny commented on September 14, 2024
I am pleased to let you know that I passed this exam last Friday. Here are some feedback to share: 1- The exam is tough so you must read and read and prepare 2- They give you enough time. Skip the questions you don't know and come back to it at the end. 3- Use this exam dumps. I saw most these questions in the exam. Good luck.
UNITED STATES
upvote

Emmanuel Fakayode commented on September 10, 2024
This is a great deal and an eyes opener.
Anonymous
upvote

MYSTERY MASTER commented on August 15, 2024
SEEMS HELPFUL
INDIA
upvote

Mohan commented on August 07, 2024
This is one of the most compete and comprehensive exam questions and answers I have came across.
INDIA
upvote

Raks commented on May 28, 2024
No comments till now
Anonymous
upvote

Pranav commented on July 22, 2022
This site keeps its promise. The 100% pass is real. Thank you team.
UNITED STATES
upvote

Nathan commented on June 18, 2021
I bought 2 exams for the 50% sale. I already passed one of them. I am prepareing for my next exam. These exam dumps questions are very helpful.
POLAND
upvote