[Free] 2017(Sep) EnsurePass Pass4sure ECCouncil EC1-350 Dumps with VCE and PDF 51-60

Ensurepass.com : Ensure you pass the IT Exams
2017 Sep ECCouncil Official New Released EC1-350
100% Free Download! 100% Pass Guaranteed!
http://www.EnsurePass.com/EC1-350.html

Ethical Hacking and Countermeasures V7

Question No: 51 – (Topic 1)

In the context of Trojans, what is the definition of a Wrapper?

  1. An encryption tool to protect the Trojan

  2. A tool used to bind the Trojan with a legitimate file

  3. A tool used to calculate bandwidth and CPU cycles wasted by the Trojan

  4. A tool used to encapsulate packets within a new header and footer

Answer: B Explanation:

Wrapper does not change header or footer of any packets but it mix between legitimate file and Trojan file.

Question No: 52 – (Topic 1)

Your computer is infected by E-mail tracking and spying Trojan. This Trojan infects the computer with a single file – emos.sys

Which step would you perform to detect this type of Trojan?

Ensurepass 2017 PDF and VCE

  1. Scan for suspicious startup programs using msconfig

  2. Scan for suspicious network activities using Wireshark

  3. Scan for suspicious device drivers in c:\windows\system32\drivers

  4. Scan for suspicious open ports using netstat

Answer: C

Question No: 53 – (Topic 1)

Which type of hacker represents the highest risk to your network?

  1. black hat hackers

  2. grey hat hackers

  3. disgruntled employees

  4. script kiddies

Answer: C

Question No: 54 – (Topic 1)

Shayla is an IT security consultant, specializing in social engineering and external penetration tests. Shayla has been hired on by Treks Avionics, a subcontractor for the Department of Defense. Shayla has been given authority to perform any and all tests necessary to audit the company#39;s network security.

No employees for the company, other than the IT director, know about Shayla#39;s work she will be doing. Shayla#39;s first step is to obtain a list of employees through company website contact pages. Then she befriends a female employee of the company through an online chat website. After meeting with the female employee numerous times, Shayla is able to gain her trust and they become friends. One day, Shayla steals the employee#39;s access badge and uses it to gain unauthorized access to the Treks Avionics offices.

What type of insider threat would Shayla be considered?

  1. She would be considered an Insider Affiliate

  2. Because she does not have any legal access herself, Shayla would be considered an Outside Affiliate

  3. Shayla is an Insider Associate since she has befriended an actual employee

  4. Since Shayla obtained access with a legitimate company badge; she would be considered a Pure Insider

Answer: A

Question No: 55 – (Topic 1)

What port number is used by Kerberos protocol?

  1. 88

  2. 44 C. 487 D. 419

Answer: A

Question No: 56 – (Topic 1)

What does FIN in TCP flag define?

  1. Used to abort a TCP connection abruptly

  2. Used to close a TCP connection

  3. Used to acknowledge receipt of a previous packet or transmission

  4. Used to indicate the beginning of a TCP connection

Answer: B

Question No: 57 – (Topic 1)

Annie has just succeeded in stealing a secure cookie via a XSS attack. She is able to replay the cookie even while the session is invalid on the server. Why do you think this is possible?

  1. It works because encryption is performed at the application layer (single encryption key)

  2. The scenario is invalid as a secure cookie cannot be replayed

  3. It works because encryption is performed at the network layer (layer 1 encryption)

  4. Any cookie can be replayed irrespective of the session status

Answer: A

Question No: 58 – (Topic 1)

This attack technique is used when a Web application is vulnerable to an SQL Injection but the results of the Injection are not visible to the attacker.

  1. Unique SQL Injection

  2. Blind SQL Injection

  3. Generic SQL Injection

  4. Double SQL Injection

Answer: B

Question No: 59 – (Topic 1)

A common technique for luring e-mail users into opening virus-launching attachments is to send messages that would appear to be relevant or important to many of their potential recipients. One way of accomplishing this feat is to make the virus-carrying messages appear to come from some type of business entity retailing sites, UPS, FEDEX, CITIBANK or a major provider of a common service.

Here is a fraudulent e-mail claiming to be from FedEx regarding a package that could not be delivered. This mail asks the receiver to open an attachment in order to obtain the FEDEX tracking number for picking up the package. The attachment contained in this type of e-mail activates a virus.

Ensurepass 2017 PDF and VCE

Vendors send e-mails like this to their customers advising them not to open any files attached with the mail, as they do not include attachments.

Fraudulent e-mail and legit e-mail that arrives in your inbox contain the fedex.com as the sender of the mail.

How do you ensure if the e-mail is authentic and sent from fedex.com?

  1. Verify the digital signature attached with the mail, the fake mail will not have Digital ID at all

  2. Check the Sender ID against the National Spam Database (NSD)

  3. Fake mail will have spelling/grammatical errors

  4. Fake mail uses extensive images, animation and flash content

Answer: A

Question No: 60 – (Topic 1)

What file system vulnerability does the following command take advantage of? type c:\anyfile.exe gt; c:\winnt\system32\calc.exe:anyfile.exe

  1. HFS

  2. Backdoor access

  3. XFS

  4. ADS

Answer: D

100% Ensurepass Free Download!
Download Free Demo:EC1-350 Demo PDF
100% Ensurepass Free Guaranteed!
Download 2017 EnsurePass EC1-350 Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 EnsurePass IT Certification PDF and VCE

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.