[Free] 2018(Jan) EnsurePass Dumpsleader ECCouncil EC1-350 Dumps with VCE and PDF 111-120

Ensurepass.com : Ensure you pass the IT Exams
2018 Jan ECCouncil Official New Released EC1-350
100% Free Download! 100% Pass Guaranteed!

Ethical Hacking and Countermeasures V7

Question No: 111 – (Topic 2)

You are gathering competitive intelligence on an organization. You notice that they have jobs listed on a few Internet job-hunting sites. There are two jobs for network and system administrators. How can this help you in foot printing the organization?

  1. To learn about the IP range used by the target network

  2. To identify the number of employees working for the company

  3. To test the limits of the corporate security policy enforced in the company

  4. To learn about the operating systems, services and applications used on the network

Answer: D

Question No: 112 – (Topic 2)

TCP packets transmitted in either direction after the initial three-way handshake will have which of the following bit set?

  1. SYN flag

  2. ACK flag

  3. FIN flag

  4. XMAS flag

Answer: B

Question No: 113 – (Topic 2)

The programmers on your team are analyzing the free, open source software being used to run FTP services on a server in your organization. They notice that there is excessive number of functions in the source code that might lead to buffer overflow. These C functions do not check bounds. Identify the line in the source code that might lead to buffer overflow?

Ensurepass 2018 PDF and VCE

A. 9A.9 B. 17B.17 C. 20C.20 D. 32D.32

E. 35E.35

Answer: B

Question No: 114 – (Topic 2)

What framework architecture is shown in this exhibit?

Ensurepass 2018 PDF and VCE

  1. Core Impact

  2. Metasploit

  3. Immunity Canvas

  4. Nessus

Answer: B

Question No: 115 – (Topic 2)

Which of the following steganography utilities exploits the nature of white space and allows the user to conceal information in these white spaces?

  1. Image Hide

  2. Snow

  3. Gif-It-Up

  4. NiceText

Answer: B

Question No: 116 – (Topic 2)

You have chosen a 22 character word from the dictionary as your password. How long will it take to crack the password by an attacker?

  1. 16 million years

  2. 5 minutes

  3. 23 days

  4. 200 years

Answer: B

Question No: 117 – (Topic 2)

While testing web applications, you attempt to insert the following test script into the search area on the company#39;s web site:

lt;scriptgt;alert(#39;Testing Testing Testing#39;)lt;/scriptgt;

Later, when you press the search button, a pop up box appears on your screen with the text quot;Testing Testing Testingquot;. What vulnerability is detected in the web application here?

  1. Cross Site Scripting

  2. Password attacks

  3. A Buffer Overflow

  4. A hybrid attack

Answer: A

Question No: 118 – (Topic 2)

What techniques would you use to evade IDS during a Port Scan? (Select 4 answers)

  1. Use fragmented IP packets

  2. Spoof your IP address when launching attacks and sniff responses from the server

  3. Overload the IDS with Junk traffic to mask your scan

  4. Use source routing (if possible)

  5. Connect to proxy servers or compromised Trojaned machines to launch attacks

Answer: A,B,D,E

Question No: 119 – (Topic 2)

Bob was frustrated with his competitor, Brownies Inc., and decided to launch an attack that would result in serious financial losses. He planned the attack carefully and carried out the attack at the appropriate moment.

Meanwhile, Trent, an administrator at Brownies Inc., realized that their main financial transaction server had been attacked. As a result of the attack, the server crashed and Trent needed to reboot the system, as no one was able to access the resources of the company. This process involves human interaction to fix it.

What kind of Denial of Service attack was best illustrated in the scenario above?

  1. Simple DDoS attack

  2. DoS attacks which involves flooding a network or system

  3. DoS attacks which involves crashing a network or system

  4. DoS attacks which is done accidentally or deliberately

Answer: C

Question No: 120 – (Topic 2)

Johnny is a member of the hacking group Orpheus1. He is currently working on breaking into the Department of Defense#39;s front end Exchange Server. He was able to get into the server, located in a DMZ, by using an unused service account that had a very weak password that he was able to guess. Johnny wants to crack the administrator password, but does not have a lot of time to crack it. He wants to use a tool that already has the LM hashes computed for all possible permutations of the administrator password.

What tool would be best used to accomplish this?

  1. SMBCrack

  2. SmurfCrack

  3. PSCrack

  4. RainbowTables

Answer: D

100% Ensurepass Free Download!
Download Free Demo:EC1-350 Demo PDF
100% Ensurepass Free Guaranteed!
EC1-350 Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.