Eccouncil 312-50 Exam Practice Test Instant Access

Question 1

Which of the following represents the initial two commands that an IRC client sends to join an IRC network?

AUSER, NICK

BLOGIN, NICK

CUSER, PASS

DLOGIN, USER

Answer : A

Question 2

During a recent security assessment, you discover the organization has one Domain Name Server (DNS) in a Demilitarized Zone (DMZ) and a second DNS server on the internal network.

What is this type of DNS configuration commonly called?

ADynDNS

BDNS Scheme

CDNSSEC

DSplit DNS

Answer : D

Question 3

You have been hired as an intern at a start-up company. Your first task is to help set up a basic web server for the company's new website. The team leader has asked you to make sure the server is secure from common - threats. Based on your knowledge from studying for the CEH exam, which of the following actions should be

your priority to secure the web server?

AInstalling a web application firewall

Blimiting the number of concurrent connections to the server

CEncrypting the company's website with SSL/TLS

DRegularly updating and patching the server software
Explanation:
One of the most important actions to secure a web server from common threats is to regularly update and patch the server software. This includes the operating system, the web server software, the database software, and any other applications or frameworks that run on the server. Updating and patching the server software can fix known vulnerabilities, bugs, or errors that could be exploited by attackers to compromise the server or the website. Failing to update and patch the server software can expose the server to common attacks, such as SQL injection, cross-site scripting, remote code execution, denial-of-service, etc.
Installing a web application firewall, limiting the number of concurrent connections to the server, and encrypting the company's website with SSL/TLS are also good practices to secure a web server, but they are not as critical as updating and patching the server software. A web application firewall can filter and block malicious requests, but it cannot prevent attacks that exploit unpatched vulnerabilities in the server software. Limiting the number of concurrent connections to the server can prevent overload and improve performance, but it cannot stop attackers from sending malicious requests or payloads. Encrypting the company's website with SSL/TLS can protect the data in transit between the server and the client, but it cannot protect the data at rest on the server or prevent attacks that target the server itself.
Therefore, the priority action to secure a web server from common threats is to regularly update and patch the server software.

Answer : D

Web Server Security- Beginner's Guide - Astra Security Blog

Top 10 Web Server Security Best Practices | Liquid Web

21 Server Security Tips & Best Practices To Secure Your Server - phoenixNAP

Question 4

An attacker runs netcat tool to transfer a secret file between two hosts.

He is worried about information being sniffed on the network.

How would the attacker use netcat to encrypt the information before transmitting onto the wire?

AMachine A: netcat -l -p -s password 1234 < testfileMachine B: netcat <machine A IP> 1234

BMachine A: netcat -l -e magickey -p 1234 < testfileMachine B: netcat <machine A IP> 1234

CMachine A: netcat -l -p 1234 < testfile -pw passwordMachine B: netcat <machine A IP> 1234 -pw password

DUse cryptcat instead of netcat

Answer : D

Question 5

What is the least important information when you analyze a public IP address in a security alert?

ADNS

BWhois

CGeolocation

DARP

Answer : D

Question 6

BitLocker encryption has been implemented for all the Windows-based computers in an organization. You are concerned that someone might lose their cryptographic key. Therefore, a mechanism was implemented to recover the keys from Active Directory. What is this mechanism called in cryptography?

AKey archival

BKey escrow.

CCertificate rollover

DKey renewal

Answer : B

Question 7

Juliet, a security researcher in an organization, was tasked with checking for the authenticity of images to be used in the organization's magazines. She used these images as a search query and tracked the original source and details of the images, which included photographs, profile pictures, and memes. Which of the following footprinting techniques did Rachel use to finish her task?

AReverse image search

BMeta search engines

CAdvanced image search

DGoogle advanced search

Answer : A

Gathering Information using Reverse Image Search Reverse image search helps an attacker in tracking the original source and details of images, such as photographs, profile pictures, and memes Attackers can use online tools such as Google Image Search, TinEye Reverse Image Search, and Yahoo Image Search to perform reverse

Eccouncil Certified Ethical Hacker v13 312-50 Exam Practice Test