312-50 EC-Council Exam Questions and Free Practice Test

Question 91

- (Topic 6)
Sniffing is considered an active attack.

A. True

B. False

Correct Answer:B
Sniffing is considered a passive attack.

Question 92

- (Topic 4)
Susan has attached to her company’s network. She has managed to synchronize her boss’s sessions with that of the file server. She then intercepted his traffic destined for the server, changed it the way she wanted to and then placed it on the server in his home directory. What kind of attack is Susan carrying on?

A. A sniffing attack

B. A spoofing attack

C. A man in the middle attack

D. A denial of service attack

Correct Answer:C
A man-in-the-middle attack (MITM) is an attack in which an attacker is able to read, insert and modify at will, messages between two parties without either party knowing that the link between them has been compromised.

Question 93

- (Topic 19)
Statistics from cert.org and other leading security organizations has clearly showed a steady rise in the number of hacking incidents perpetrated against companies.
What do you think is the main reason behind the significant increase in hacking attempts over the past years?

A. It is getting more challenging and harder to hack for non technical people.

B. There is a phenomenal increase in processing power.

C. New TCP/IP stack features are constantly being added.

D. The ease with which hacker tools are available on the Internet.

Correct Answer:D
Today you don’t need to be a good hacker in order to break in to various systems, all you need is the knowledge to use search engines on the internet.

Question 94

- (Topic 6)
Exhibit: * Missing*
Jason's Web server was attacked by a trojan virus. He runs protocol analyzer and notices that the trojan communicates to a remote server on the Internet. Shown below is the standard "hexdump" representation of the network packet, before being decoded. Jason wants to identify the trojan by looking at the destination port number and mapping to a trojan-port number database on the Internet. Identify the remote server's port number by decoding the packet?

A. Port 1890 (Net-Devil Trojan)

B. Port 1786 (Net-Devil Trojan)

C. Port 1909 (Net-Devil Trojan)

D. Port 6667 (Net-Devil Trojan)

Correct Answer:D
From trace, 0x1A0B is 6667, IRC Relay Chat, which is one port used. Other ports are in the 900's.

Question 96

- (Topic 23)
What type of Trojan is this?
312-50 dumps exhibit

A. RAT Trojan

B. E-Mail Trojan

C. Defacement Trojan

D. Destructing Trojan

E. Denial of Service Trojan

Correct Answer:C

START 312-50 EXAM

Question 91

Question 92

Question 93

Question 94

Question 95

Question 96