14 April, 2021

Leading Certified Ethical Hacker Exam (CEH V11) 312-50v11 Testing Material

Our pass rate is high to 98.9% and the similarity percentage between our 312-50v11 study guide and real exam is 90% based on our seven-year educating experience. Do you want achievements in the EC-Council 312-50v11 exam in just one try? I am currently studying for the EC-Council 312-50v11 exam. Latest EC-Council 312-50v11 Test exam practice questions and answers, Try EC-Council 312-50v11 Brain Dumps First.

Free demo questions for EC-Council 312-50v11 Exam Dumps Below:

Page: 1 / 21

Total 254 questions Full Exam Access

Question 1

is a set of extensions to DNS that provide the origin authentication of DNS data to DNS clients (resolvers) so as to reduce the threat of DNS poisoning, spoofing, and similar types of attacks.

DNSSEC

Resource records

Resource transfer

Zone transfer

Question 2

Bob received this text message on his mobile phone: “Hello, this is Scott Smelby from the Yahoo Bank. Kindly contact me for a vital transaction on: scottsmelby@yahoo.com”. Which statement below is true?

This is a scam as everybody can get a @yahoo address, not the Yahoo customer service employees.

This is a scam because Bob does not know Scott.

Bob should write to scottmelby@yahoo.com to verify the identity of Scott.

This is probably a legitimate message as it comes from a respectable organization.

Question 3

Peter, a Network Administrator, has come to you looking for advice on a tool that would help him perform SNMP enquires over the network.
Which of these tools would do the SNMP enumeration he is looking for? Select the best answers.

SNMPUtil

SNScan

SNMPScan

Solarwinds IP Network Browser

NMap

Question 4

env x=’(){ :;};echo exploit’ bash –c ‘cat/etc/passwd’
What is the Shellshock bash vulnerability attempting to do on a vulnerable Linux host?

Removes the passwd file

Changes all passwords in passwd

Add new user to the passwd file

Display passwd content to prompt

Question 5

How does a denial-of-service attack work?

A hacker prevents a legitimate user (or group of users) from accessing a service

A hacker uses every character, word, or letter he or she can think of to defeat authentication

A hacker tries to decipher a password by using a system, which subsequently crashes the network

A hacker attempts to imitate a legitimate user by confusing a computer or even another person

Question 6

What port number is used by LDAP protocol?

110

389

464

445

Question 7

What is the proper response for a NULL scan if the port is closed?

SYN

ACK

FIN

PSH

RST

No response

Question 8

Which of the following is assured by the use of a hash?

Authentication

Confidentiality

Availability

Integrity

Question 9

Bob, a network administrator at BigUniversity, realized that some students are connecting their notebooks in the wired network to have Internet access. In the university campus, there are many Ethernet ports available for professors and authorized visitors but not for students.
He identified this when the IDS alerted for malware activities in the network. What should Bob do to avoid this problem?

Disable unused ports in the switches

Separate students in a different VLAN

Use the 802.1x protocol

Ask students to use the wireless network

Question 10

What is the purpose of DNS AAAA record?

Authorization, Authentication and Auditing record

Address prefix record

Address database record

IPv6 address resolution record

Question 11

Fred is the network administrator for his company. Fred is testing an internal switch.
From an external IP address, Fred wants to try and trick this switch into thinking it already has established a session with his computer. How can Fred accomplish this?

Fred can accomplish this by sending an IP packet with the RST/SIN bit and the source address of his computer.

He can send an IP packet with the SYN bit and the source address of his computer.

Fred can send an IP packet with the ACK bit set to zero and the source address of the switch.

Fred can send an IP packet to the switch with the ACK bit and the source address of his machine.

Question 12

What does the following command in netcat do? nc -l -u -p55555 < /etc/passwd

logs the incoming connections to /etc/passwd file

loads the /etc/passwd file to the UDP port 55555

grabs the /etc/passwd file when connected to UDP port 55555

deletes the /etc/passwd file when connected to the UDP port 55555

Question 13

You need to deploy a new web-based software package for your organization. The package requires three separate servers and needs to be available on the Internet. What is the recommended architecture in terms of server placement?

All three servers need to be placed internally

A web server facing the Internet, an application server on the internal network, a database server on the internal network

A web server and the database server facing the Internet, an application server on the internal network

All three servers need to face the Internet so that they can communicate between themselves

Question 14

Windows LAN Manager (LM) hashes are known to be weak.
Which of the following are known weaknesses of LM? (Choose three.)

Converts passwords to uppercase.

Hashes are sent in clear text over the network.

Makes use of only 32-bit encryption.

Effective length is 7 characters.

Question 15

An attacker, using a rogue wireless AP, performed an MITM attack and injected an HTML code to embed a malicious applet in all HTTP connections.
When users accessed any page, the applet ran and exploited many machines. Which one of the following tools the hacker probably used to inject HTML code?

Wireshark

Ettercap

Aircrack-ng

Tcpdump

Question 16

If a token and 4-digit personal identification number (PIN) are used to access a computer system and the token performs off-line checking for the correct PIN, what type of attack is possible?

Birthday

Brute force

Man-in-the-middle

Smurf

Question 17

What is the main security service a cryptographic hash provides?

Integrity and ease of computation

Message authentication and collision resistance

Integrity and collision resistance

Integrity and computational in-feasibility

Question 18

You are tasked to configure the DHCP server to lease the last 100 usable IP addresses in subnet to. 1.4.0/23. Which of the following IP addresses could be teased as a result of the new configuration?

210.1.55.200

10.1.4.254

10..1.5.200

10.1.4.156

Question 19

Which of the following LM hashes represent a password of less than 8 characters? (Choose two.)

BA810DBA98995F1817306D272A9441BB

44EFCE164AB921CQAAD3B435B51404EE

0182BD0BD4444BF836077A718CCDF409

CEC52EB9C8E3455DC2265B23734E0DAC

B757BF5C0D87772FAAD3B435B51404EE

E52CAC67419A9A224A3B108F3FA6CB6D

Question 20

Which of the following tools is used to detect wireless LANs using the 802.11a/b/g/n WLAN standards on a linux platform?

Kismet

Abel

Netstumbler

Nessus

Question 21

What is GINA?

Gateway Interface Network Application

GUI Installed Network Application CLASS

Global Internet National Authority (G-USA)

Graphical Identification and Authentication DLL

Question 22

One of your team members has asked you to analyze the following SOA record. What is the version? Rutgers.edu.SOA NS1.Rutgers.edu ipad.college.edu (200302028 3600 3600 604800 2400.) (Choose four.)

200303028

3600

604800

2400

4800

Question 23

The “Gray-box testing” methodology enforces what kind of restriction?

Only the external operation of a system is accessible to the tester.

The internal operation of a system in only partly accessible to the tester.

Only the internal operation of a system is known to the tester.

The internal operation of a system is completely known to the tester.

Question 24

Which of the following Linux commands will resolve a domain name into IP address?

>host-t a hackeddomain.com

>host-t ns hackeddomain.com

>host -t soa hackeddomain.com

>host -t AXFR hackeddomain.com

Page: 1 / 21

Total 254 questions Full Exam Access