[Free] 2018(Jan) EnsurePass Dumpsleader ECCouncil EC0-350 Dumps with VCE and PDF 301-310

Ensurepass.com : Ensure you pass the IT Exams
2018 Jan ECCouncil Official New Released EC0-350
100% Free Download! 100% Pass Guaranteed!

Ethical Hacking and Countermeasures V8

Question No: 301 – (Topic 4)

How is sniffing broadly categorized?

  1. Active and passive

  2. Broadcast and unicast

  3. Unmanaged and managed

  4. Filtered and unfiltered

Answer: A

Question No: 302 – (Topic 4)

Which NMAP feature can a tester implement or adjust while scanning for open ports to avoid detection by the network’s IDS?

  1. Timing options to slow the speed that the port scan is conducted

  2. Fingerprinting to identify which operating systems are running on the network

  3. ICMP ping sweep to determine which hosts on the network are not available

  4. Traceroute to control the path of the packets sent during the scan

Answer: A

Question No: 303 – (Topic 4)

When creating a security program, which approach would be used if senior management is supporting and enforcing the security policy?

  1. A bottom-up approach

  2. A top-down approach

  3. A senior creation approach

  4. An IT assurance approach

Answer: B

Question No: 304 – (Topic 4)

Which of the following programs is usually targeted at Microsoft Office products?

  1. Polymorphic virus

  2. Multipart virus

  3. Macro virus

  4. Stealth virus

Answer: C

Question No: 305 – (Topic 4)

Which of the following items is unique to the N-tier architecture method of designing software applications?

  1. Application layers can be separated, allowing each layer to be upgraded independently from other layers.

  2. It is compatible with various databases including Access, Oracle, and SQL.

  3. Data security is tied into each layer and must be updated for all layers when any upgrade is performed.

  4. Application layers can be written in C, ASP.NET, or Delphi without any performance loss.

Answer: A

Question No: 306 – (Topic 4)

Which of the following guidelines or standards is associated with the credit card industry?

  1. Control Objectives for Information and Related Technology (COBIT)

  2. Sarbanes-Oxley Act (SOX)

  3. Health Insurance Portability and Accountability Act (HIPAA)

  4. Payment Card Industry Data Security Standards (PCI DSS)

Answer: D

Question No: 307 – (Topic 4)

A security administrator notices that the log file of the company`s webserver contains suspicious entries:

Ensurepass 2018 PDF and VCE

Based on source code analysis, the analyst concludes that the login.php script is vulnerable to

  1. command injection.

  2. SQL injection.

  3. directory traversal.

  4. LDAP injection.

Answer: B

Question No: 308 – (Topic 4)

Which of the following is a detective control?

  1. Smart card authentication

  2. Security policy

  3. Audit trail

  4. Continuity of operations plan

Answer: C

Question No: 309 – (Topic 4)

What is the most secure way to mitigate the theft of corporate information from a laptop that was left in a hotel room?

  1. Set a BIOS password.

  2. Encrypt the data on the hard drive.

  3. Use a strong logon password to the operating system.

  4. Back up everything on the laptop and store the backup in a safe place.

Answer: B

Question No: 310 – (Topic 4)

A network security administrator is worried about potential man-in-the-middle

attacks when users access a corporate web site from their workstations. Which of the following is the best remediation against this type of attack?

  1. Implementing server-side PKI certificates for all connections

  2. Mandating only client-side PKI certificates for all connections

  3. Requiring client and server PKI certificates for all connections

  4. Requiring strong authentication for all DNS queries

Answer: C

100% Ensurepass Free Download!
Download Free Demo:EC0-350 Demo PDF
100% Ensurepass Free Guaranteed!
EC0-350 Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.