[Free] 2018(Jan) EnsurePass Testking ECCouncil EC0-350 Dumps with VCE and PDF 121-130

Ensurepass.com : Ensure you pass the IT Exams
2018 Jan ECCouncil Official New Released EC0-350
100% Free Download! 100% Pass Guaranteed!

Ethical Hacking and Countermeasures V8

Question No: 121 – (Topic 2)

Bob has a good understanding of cryptography, having worked with it for many years. Cryptography is used to secure data from specific threats, but it does not secure the application from coding errors. It can provide data privacy; integrity and enable strong authentication but it cannot mitigate programming errors. What is a good example of a programming error that Bob can use to explain to the management how encryption will not address all their security concerns?

  1. Bob can explain that using a weak key management technique is a form of programming error

  2. Bob can explain that using passwords to derive cryptographic keys is a form of a programming error

  3. Bob can explain that a buffer overflow is an example of programming error and it is a common mistake associated with poor programming technique

  4. Bob can explain that a random number generator can be used to derive cryptographic

keys but it uses a weak seed value and this is a form of a programming error

Answer: A

Question No: 122 – (Topic 2)

Take a look at the following attack on a Web Server using obstructed URL:

Ensurepass 2018 PDF and VCE

How would you protect from these attacks?

  1. Configure the Web Server to deny requests involving quot;hex encodedquot; characters

  2. Create rules in IDS to alert on strange Unicode requests

  3. Use SSL authentication on Web Servers

  4. Enable Active Scripts Detection at the firewall and routers

Answer: B

Question No: 123 – (Topic 2)

What is the correct order of steps in CEH System Hacking Cycle?

Ensurepass 2018 PDF and VCE

  1. Option A

  2. Option B

  3. Option C

  4. Option D

Answer: A

Question No: 124 – (Topic 2)

What is the default Password Hash Algorithm used by NTLMv2?

  1. MD4

  2. DES

  3. SHA-1

  4. MD5

Answer: D

Question No: 125 – (Topic 2)

The FIN flag is set and sent from host A to host B when host A has no more data to transmit (Closing a TCP connection). This flag releases the connection resources. However, host A can continue to receive data as long as the SYN sequence numbers of transmitted packets from host B are lower than the packet segment containing the set FIN flag.

  1. false

  2. true

Answer: B

Question No: 126 – (Topic 2)

You are the CIO for Avantes Finance International, a global finance company based in Geneva. You are responsible for network functions and logical security throughout the entire corporation. Your company has over 250 servers running Windows Server, 5000 workstations running Windows Vista, and 200 mobile users working from laptops on Windows 7.

Last week, 10 of your company#39;s laptops were stolen from salesmen while at a conference in Amsterdam. These laptops contained proprietary company information. While doing damage assessment on the possible public relations nightmare this may become, a news story leaks about the stolen laptops and also that sensitive information from those computers was posted to a blog online.

What built-in Windows feature could you have implemented to protect the sensitive information on these laptops?

  1. You should have used 3DES which is built into Windows

  2. If you would have implemented Pretty Good Privacy (PGP) which is built into Windows, the sensitive information on the laptops would not have leaked out

  3. You should have utilized the built-in feature of Distributed File System (DFS) to protect the sensitive information on the laptops

  4. You could have implemented Encrypted File System (EFS) to encrypt the sensitive files on the laptops

Answer: D

Question No: 127 – (Topic 2)

Harold works for Jacobson Unlimited in the IT department as the security manager. Harold has created a security policy requiring all employees to use complex 14 character passwords. Unfortunately, the members of management do not want to have to use such long complicated passwords so they tell Harold#39;s boss this new password policy should not apply to them. To comply with the management#39;s wishes, the IT department creates another Windows domain and moves all the management users to that domain. This new domain has a password policy only requiring 8 characters.

Harold is concerned about having to accommodate the managers, but cannot do anything about it. Harold is also concerned about using LanManager security on his network instead of NTLM or NTLMv2, but the many legacy applications on the network prevent using the more secure NTLM and NTLMv2. Harold pulls the SAM files from the DC#39;s on the original domain and the new domain using Pwdump6.

Harold uses the password cracking software John the Ripper to crack users#39; passwords to make sure they are strong enough. Harold expects that the users#39; passwords in the original domain will take much longer to crack than the management#39;s passwords in the new domain. After running the software, Harold discovers that the 14 character passwords only took a short time longer to crack than the 8 character passwords.

Why did the 14 character passwords not take much longer to crack than the 8 character passwords?

  1. Harold should have used Dumpsec instead of Pwdump6

  2. Harold#39;s dictionary file was not large enough

  3. Harold should use LC4 instead of John the Ripper

  4. LanManger hashes are broken up into two 7 character fields

Answer: D

Question No: 128 – (Topic 2)

Lee is using Wireshark to log traffic on his network. He notices a number of packets being directed to an internal IP from an outside IP where the packets are ICMP and their size is around 65, 536 bytes. What is Lee seeing here?

  1. Lee is seeing activity indicative of a Smurf attack.

  2. Most likely, the ICMP packets are being sent in this manner to attempt IP spoofing.

  3. Lee is seeing a Ping of death attack.

  4. This is not unusual traffic, ICMP packets can be of any size.

Answer: C

Question No: 129 – (Topic 2)

The programmers on your team are analyzing the free, open source software being used to run FTP services on a server in your organization. They notice that there is excessive number of functions in the source code that might lead to buffer overflow. These C functions do not check bounds. Identify the line in the source code that might lead to buffer overflow?

Ensurepass 2018 PDF and VCE

A. 9A.9 B. 17B.17 C. 20C.20 D. 32D.32 E. 35E.35

Answer: B

Question No: 130 – (Topic 2)

Johnny is a member of the hacking group Orpheus1. He is currently working on breaking

into the Department of Defense#39;s front end Exchange Server. He was able to get into the server, located in a DMZ, by using an unused service account that had a very weak password that he was able to guess. Johnny wants to crack the administrator password, but does not have a lot of time to crack it. He wants to use a tool that already has the LM hashes computed for all possible permutations of the administrator password.

What tool would be best used to accomplish this?

  1. SMBCrack

  2. SmurfCrack

  3. PSCrack

  4. RainbowTables

Answer: D

100% Ensurepass Free Download!
Download Free Demo:EC0-350 Demo PDF
100% Ensurepass Free Guaranteed!
EC0-350 Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No