312-50v10無料問題集「EC-COUNCIL Certified Ethical Hacker Exam (CEH v10)」

質問 1

When using Wireshark to acquire packet capture on a network, which device would enable the capture of all traffic on the wire?

（A）Network tap

（B）Layer 3 switch

（C）Application firewall

（D）Network bridge

正解：A 解答を投票する

質問 2

You work as a Security Analyst for a retail organization. In securing the company's network, you set up a firewall and an IDS. However, hackers are able to attack the network. After investigating, you discover that your IDS is not configured properly and therefore is unable to trigger alarms when needed. What type of alert is the IDS giving?

（A）False Negative

（B）False Positive

（C）True Negative

（D）True Positive

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

The "gray box testing" methodology enforces what kind of restriction?

（A）Only the internal operation of a system is known to the tester.

（B）The internal operation of a system is only partly accessible to the tester.

（C）Only the external operation of a system is accessible to the tester.

（D）The internal operation of a system is completely known to the tester.

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

Which statement is TRUE regarding network firewalls preventing Web Application attacks?

（A）Network firewalls can prevent attacks because they can detect malicious HTTP traffic.

（B）Network firewalls can prevent attacks if they are properly configured.

（C）Network firewalls cannot prevent attacks because they are too complex to configure.

（D）Network firewalls cannot prevent attacks because ports 80 and 443 must be opened.

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

A penetration tester is hired to do a risk assessment of a company's DMZ. The rules of engagement states that the penetration test be done from an external IP address with no prior knowledge of the internal IT systems.
What kind of test is being performed?

（A）grey box

（B）red box

（C）black box

（D）white box

正解：C 解答を投票する

質問 6

Internet Protocol Security IPSec is actually a suite of protocols. Each protocol within the suite provides different functionality. Collective IPSec does everything except.

（A）Protect the payload and the headers

（B）Work at the Data Link Layer

（C）Encrypt

（D）Authenticate

正解：B 解答を投票する

質問 7

A possibly malicious sequence of packets that were sent to a web server has been captured by an Intrusion Detection System (IDS) and was saved to a PCAP file. As a network administrator, you need to determine whether this packets are indeed malicious. What tool are you going to use?

（A）Protocol analyzer

（B）Vulnerability scanner

（C）Network sniffer

（D）Intrusion Prevention System (IPS)

正解：A 解答を投票する

質問 8

> NMAP -sn 192.168.11.200-215
The NMAP command above performs which of the following?

（A）A trace sweep

（B）A ping scan

（C）An operating system detect

（D）A port scan

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

An LDAP directory can be used to store information similar to a SQL database. LDAP uses a _____ database structure instead of SQL's _____ structure. Because of this, LDAP has difficulty representing many-to-one relationships.

（A）Strict, Abstract

（B）Hierarchical, Relational

（C）Simple, Complex

（D）Relational, Hierarchical

正解：B 解答を投票する

質問 10

Fingerprinting an Operating System helps a cracker because:

（A）It doesn't depend on the patches that have been applied to fix existing security holes

（B）It defines exactly what software you have installed

（C）It informs the cracker of which vulnerabilities he may be able to exploit on your system

（D）It opens a security-delayed window based on the port being scanned

正解：C 解答を投票する

質問 11

What is the role of test automation in security testing?

（A）It is an option but it tends to be very expensive.

（B）Test automation is not usable in security due to the complexity of the tests.

（C）It can accelerate benchmark tests and repeat them with a consistent test setup. But it cannot replace manual testing completely.

（D）It should be used exclusively. Manual testing is outdated because of low speed and possible test setup inconsistencies.

正解：C 解答を投票する

質問 12

Bob is acknowledged as a hacker of repute and is popular among visitors of "underground" sites.
Bob is willing to share his knowledge with those who are willing to learn, and many have expressed their interest in learning from him. However, this knowledge has a risk associated with it, as it can be used for malevolent attacks as well.
In this context, what would be the most effective method to bridge the knowledge gap between the "black" hats or crackers and the "white" hats or computer security professionals? (Choose the test answer.)

（A）Train more National Guard and reservist in the art of computer security to help out in times of emergency or crises.

（B）Make obtaining either a computer security certification or accreditation easier to achieve so more individuals feel that they are a part of something larger than life.

（C）Hire more computer security monitoring personnel to monitor computer systems and networks.

（D）Educate everyone with books, articles and training on risk analysis, vulnerabilities and safeguards.

正解：D 解答を投票する

質問 13

Which tool allows analysts and pen testers to examine links between data using graphs and link analysis?

（A）Wireshark

（B）Metasploit

（C）Cain & Abel

（D）Maltego

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

When you are getting information about a web server, it is very important to know the HTTP Methods (GET, POST, HEAD, PUT, DELETE, TRACE) that are available because there are two critical methods (PUT and DELETE). PUT can upload a file to the server and DELETE can delete a file from the server. You can detect all these methods (GET, POST, HEAD, PUT, DELETE, TRACE) using NMAP script engine.
What nmap script will help you with this task?

（A）http enum

（B）http-methods

（C）http-headers

（D）http-git

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 15

How can you determine if an LM hash you extracted contains a password that is less than 8 characters long?

（A）The left most portion of the hash is always the same

（B）There is no way to tell because a hash cannot be reversed

（C）The hash always starts with AB923D

（D）A portion of the hash will be all 0's

（E）The right most portion of the hash is always the same

正解：E 解答を投票する

質問 16

Which definition among those given below best describes a covert channel?

（A）A server program using a port that is not well known.

（B）Making use of a protocol in a way it is not intended to be used.

（C）It is one of the weak channels used by WEP which makes it insecure

（D）It is the multiplexing taking place on a communication link.

正解：B 解答を投票する

質問 17

Which type of scan measures a person's external features through a digital video camera?

（A）Facial recognition scan

（B）Iris scan

（C）Retinal scan

（D）Signature kinetics scan

正解：A 解答を投票する

質問 18

Which of the following is NOT an ideal choice for biometric controls?

（A）Voice

（B）Iris patterns

（C）Fingerprints

（D）Height and weight

正解：D 解答を投票する

質問 19

This TCP flag instructs the sending system to transmit all buffered data immediately.

（A）FIN

（B）RST

（C）SYN

（D）URG

（E）PSH

正解：E 解答を投票する

312-50v10 無料問題集「EC-COUNCIL Certified Ethical Hacker Exam (CEH v10)」

弊社を連絡する

関連リンク

トップ試験