Pass 312-49v10 Exam in First Attempt Guaranteed 100% Cover Real Exam Questions [Oct-2021]
Valid 312-49v10 test answers & EC-COUNCIL 312-49v10 exam pdf
EC-COUNCIL 312-49v10 Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Topic 1 |
|
| Topic 2 |
|
| Topic 3 |
|
| Topic 4 |
|
| Topic 5 |
|
| Topic 6 |
|
NEW QUESTION 178
If an attacker's computer sends an IPID of 31400 to a zombie computer on an open port in IDLE scanning, what will be the response?
- A. 0
- B. 1
- C. 2
- D. The zombie will not send a response
Answer: C
NEW QUESTION 179
What is the target host IP in the following command?
- A. 172.16.28.95
- B. Firewalk does not scan target hosts
- C. This command is using FIN packets, which cannot scan target hosts
- D. 10.10.150.1
Answer: A
NEW QUESTION 180
What type of equipment would a forensics investigator store in a StrongHold bag?
- A. Backup tapes
- B. PDAPDA?
- C. Wireless cards
- D. Hard drives
Answer: C
NEW QUESTION 181
Why would a company issue a dongle with the software they sell?
- A. To provide wireless functionality with the software
- B. To ensure that keyloggers cannot be used
- C. To provide source code protection
- D. To provide copyright protection
Answer: D
NEW QUESTION 182
When reviewing web logs, you see an entry for resource not found in the HTTP status code filed.
What is the actual error code that you would see in the log for resource not found?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: B
NEW QUESTION 183
George is performing security analysis for Hammond and Sons LLC. He is testing security vulnerabilities of their wireless network. He plans on remaining as "stealthy" as possible during the scan. Why would a scanner like Nessus is not recommended in this situation?
- A. There are no ways of performing a "stealthy" wireless scan
- B. Nessus is not a network scanner
- C. Nessus is too loud
- D. Nessus cannot perform wireless testing
Answer: C
NEW QUESTION 184
Email archiving is a systematic approach to save and protect the data contained in emails so that it can be accessed fast at a later date. There are two main archive types, namely Local Archive and Server Storage Archive. Which of the following statements is correct while dealing with local archives?
- A. Local archives should be stored together with the server storage archives in order to be admissible in a court of law
- B. Local archives do not have evidentiary value as the email client may alter the message data
- C. Server storage archives are the server information and settings stored on a local system, whereas the local archives are the local email client information stored on the mail server
- D. It is difficult to deal with the webmail as there is no offline archive in most cases. So consult your counsel on the case as to the best way to approach and gain access to the required data on servers
Answer: D
NEW QUESTION 185
Report writing is a crucial stage in the outcome of an investigation. Which information should not be included in the report section?
- A. Purpose of the report
- B. Incident summary
- C. Speculation or opinion as to the cause of the incident
- D. Author of the report
Answer: C
NEW QUESTION 186
Joshua is analyzing an MSSQL database for finding the attack evidence and other details, where should he look for the database logs?
- A. Model.lgf
- B. Model.log
- C. Model.ldf
- D. Model.txt
Answer: C
NEW QUESTION 187
Jason has set up a honeypot environment by creating a DMZ that has no physical or logical access to his production network. In this honeypot, he has placed a server running Windows Active Directory. He has also placed a Web server in the DMZ that services a number of web pages that offer visitors a chance to download sensitive information by clicking on a button. A week later, Jason finds in his network logs how an intruder accessed the honeypot and downloaded sensitive information. Jason uses the logs to try and prosecute the intruder for stealing sensitive corporate information. Why will this not be viable?
- A. Intruding into a DMZ is not illegal
- B. Enticement
- C. Entrapment
- D. Intruding into a honeypot is not illegal
Answer: C
NEW QUESTION 188
Select the tool appropriate for finding the dynamically linked lists of an application or malware.
- A. ResourcesExtract
- B. SysAnalyzer
- C. Dependency Walker
- D. PEiD
Answer: C
NEW QUESTION 189
Terri works for a security consulting firm that is currently performing a penetration test on First National Bank in Tokyo. Terri's duties include bypassing firewalls and switches to gain access to the network. Terri sends an IP packet to one of the company's switches with ACK bit and the source address of her machine set. What is Terri trying to accomplish by sending this IP packet?
- A. Crash the switch with a DoS attack since switches cannot send ACK bits
- B. Trick the switch into thinking it already has a session with Terri's computer
- C. Poison the switch's MAC address table by flooding it with ACK bits
- D. Enable tunneling feature on the switch
Answer: B
NEW QUESTION 190
Which program is the bootloader when Windows XP starts up?
- A. KERNEL.EXE
- B. NTLDR
- C. LILO
- D. LOADER
Answer: B
NEW QUESTION 191
Gary, a computer technician, is facing allegations of abusing children online by befriending them and sending them illicit adult images from his office computer. What type of investigation does this case require?
- A. Both Criminal and Administrative Investigation
- B. Civil Investigation
- C. Criminal Investigation
- D. Administrative Investigation
Answer: C
NEW QUESTION 192
You are a security analyst performing reconnaissance on a company you will be carrying out a penetration test for. You conduct a search for IT jobs on Dice.com and find the following information for an open position: 7+ years experience in Windows Server environment 5+ years experience in Exchange 2000/2003 environment Experience with Cisco Pix Firewall, Linksys 1376 router, Oracle 11i and MYOB v3.4 Accounting software are required MCSA desired, MCSE, CEH preferred No Unix/Linux Experience needed What is this information posted on the job website considered?
- A. Competitive exploit
- B. Trade secret
- C. Information vulnerability
- D. Social engineering exploit
Answer: C
NEW QUESTION 193
Which of the following file system is used by Mac OS X?
- A. EFS
- B. NFS
- C. HFS+
- D. EXT2
Answer: C
NEW QUESTION 194
Which of the following Registry components include offsets to other cells as well as the LastWrite time for the key?
- A. Key cell
- B. Value list cell
- C. Value cell
- D. Security descriptor cell
Answer: A
NEW QUESTION 195
What term is used to describe a cryptographic technique for embedding information into something else for the sole purpose of hiding that information from the casual observer?
- A. Offset
- B. key escrow
- C. steganography
- D. rootkit
Answer: C
NEW QUESTION 196
Under which Federal Statutes does FBI investigate for computer crimes involving e-mail scams and mail fraud?
- A. 18 U.S.C. 1361 Injury to Government Property
- B. 18 U.S.C. 1362 Government communication systems
- C. 18 U.S.C. 1832 Trade Secrets Act
- D. 18 U.S.C. 1030 Fraud and related activity in connection with computers
- E. 18 U.S.C. 1343 Fraud by wire, radio or television
- F. 18 U.S.C. 1029 Possession of Access Devices
- G. 18 U.S.C. 1831 Economic Espionage Act
Answer: D
NEW QUESTION 197
Who is responsible for the following tasks?
- A. System administrators
- B. Local managers or other non-forensic staff
- C. Lawyers
- D. Non-forensics staff
Answer: D
NEW QUESTION 198
......
312-49v10 Exam Questions – Valid 312-49v10 Dumps Pdf: https://www.actual4test.com/312-49v10_examcollection.html
Verified 312-49v10 dumps Q&As - Pass Guarantee: https://drive.google.com/open?id=1UBVD7Of51aA_uNGAVfBySAqj5L6XSTgQ