[Free] 2018(Jan) EnsurePass Dumpsleader ECCouncil EC0-350 Dumps with VCE and PDF 161-170

Ensurepass.com : Ensure you pass the IT Exams
2018 Jan ECCouncil Official New Released EC0-350
100% Free Download! 100% Pass Guaranteed!

Ethical Hacking and Countermeasures V8

Question No: 161 – (Topic 2)

Every company needs a formal written document which spells out to employees precisely

what they are allowed to use the company#39;s systems for, what is prohibited, and what will happen to them if they break the rules. Two printed copies of the policy should be given to every employee as soon as possible after they join the organization. The employee should be asked to sign one copy, which should be safely filed by the company. No one should be allowed to use the company#39;s computer systems until they have signed the policy in acceptance of its terms. What is this document called?

  1. Information Audit Policy (IAP)

  2. Information Security Policy (ISP)

  3. Penetration Testing Policy (PTP)

  4. Company Compliance Policy (CCP)

Answer: B

Question No: 162 – (Topic 2)

While testing web applications, you attempt to insert the following test script into the search area on the company#39;s web site:

lt;scriptgt;alert(#39;Testing Testing Testing#39;)lt;/scriptgt;

Later, when you press the search button, a pop up box appears on your screen with the text quot;Testing Testing Testingquot;. What vulnerability is detected in the web application here?

  1. Cross Site Scripting

  2. Password attacks

  3. A Buffer Overflow

  4. A hybrid attack

Answer: A

Question No: 163 – (Topic 2)

Which definition below best describes a covert channel?

  1. A server program using a port that is not well known

  2. Making use of a protocol in a way it was not intended to be used

  3. It is the multiplexing taking place on a communication link

  4. It is one of the weak channels used by WEP that makes it insecure

Answer: B

Question No: 164 – (Topic 2)

Attackers send an ACK probe packet with random sequence number, no response means port is filtered (Stateful firewall is present) and RST response means the port is not filtered. What type of Port Scanning is this?

  1. RST flag scanning

  2. FIN flag scanning

  3. SYN flag scanning

  4. ACK flag scanning

Answer: D

Question No: 165 – (Topic 2)

What type of Virus is shown here?

Ensurepass 2018 PDF and VCE

  1. Macro Virus

  2. Cavity Virus

  3. Boot Sector Virus

  4. Metamorphic Virus

  5. Sparse Infector Virus

Answer: B

Question No: 166 – (Topic 2)

is a type of symmetric-key encryption algorithm that transforms a fixed- length block of plaintext (unencrypted text) data into a block of ciphertext (encrypted text) data of the same length.

  1. Stream Cipher

  2. Block Cipher

  3. Bit Cipher

  4. Hash Cipher

Answer: B

Question No: 167 – (Topic 2)

You receive an e-mail like the one shown below. When you click on the link contained in the mail, you are redirected to a website seeking you to download free Anti-Virus software.

Dear valued customers,

We are pleased to announce the newest version of Antivirus 2010 for Windows which will probe you with total security against the latest spyware, malware, viruses, Trojans and other online threats. Simply visit the link below and enter your antivirus code:

Antivirus code: 5014 http://www.juggyboy/virus/virus.html

Thank you for choosing us, the worldwide leader Antivirus solutions. Mike Robertson

PDF Reader Support

Copyright Antivirus 2010 ?All rights reserved

If you want to stop receiving mail, please go to: http://www.juggyboy.com

or you may contact us at the following address: Media Internet Consultants, Edif. Neptuno, Planta Baja, Ave. Ricardo J. Alfaro, Tumba Muerto, n/a Panama

How will you determine if this is Real Anti-Virus or Fake Anti-Virus website?

Ensurepass 2018 PDF and VCE

  1. Look at the website design, if it looks professional then it is a Real Anti-Virus website

  2. Connect to the site using SSL, if you are successful then the website is genuine

  3. Search using the URL and Anti-Virus product name into Google and lookout for

    suspicious warnings against this site

  4. Download and install Anti-Virus software from this suspicious looking site, your Windows 7 will prompt you and stop the installation if the downloaded file is a malware

  5. Download and install Anti-Virus software from this suspicious looking site, your Windows 7 will prompt you and stop the installation if the downloaded file is a malware

Answer: C

Question No: 168 – (Topic 2)

Neil is closely monitoring his firewall rules and logs on a regular basis. Some of the users have complained to Neil that there are a few employees who are visiting offensive web site during work hours, without any consideration for others. Neil knows that he has an up-to- date content filtering system and such access should not be authorized. What type of technique might be used by these offenders to access the Internet without restriction?

  1. They are using UDP that is always authorized at the firewall

  2. They are using HTTP tunneling software that allows them to communicate with protocols in a way it was not intended

  3. They have been able to compromise the firewall, modify the rules, and give themselves proper access

  4. They are using an older version of Internet Explorer that allow them to bypass the proxy server

Answer: B

Question No: 169 – (Topic 2)

This is an attack that takes advantage of a web site vulnerability in which the site displays content that includes un-sanitized user-provided data.

lt;ahref=quot;http://foobar.com/index.html?id=quot;gt;See foobarlt;/agt;

What is this attack?

  1. Cross-site-scripting attack

  2. SQL Injection

  3. URL Traversal attack

  4. Buffer Overflow attack

Answer: A

Question No: 170 – (Topic 2)

Bob is going to perform an active session hijack against Brownies Inc. He has found a target that allows session oriented connections (Telnet) and performs the sequence prediction on the target operating system. He manages to find an active session due to the high level of traffic on the network. What is Bob supposed to do next?

  1. Take over the session

  2. Reverse sequence prediction

  3. Guess the sequence numbers

  4. Take one of the parties offline

Answer: C

100% Ensurepass Free Download!
Download Free Demo:EC0-350 Demo PDF
100% Ensurepass Free Guaranteed!
EC0-350 Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.