312-50v10試験無料問題集（745題）「EC-COUNCIL Certified Ethical Hacker Exam (CEH v10) 認定」

出題：1

The precaution of prohibiting employees from bringing personal computing devices into a facility is what type of security control?

A. Physical

B. Technical

C. Compliance

D. Procedural

正解：D 解答を投票する

出題：2

Which of the following tools can be used for passive OS fingerprinting?

A. tracert

B. ping

C. tcpdump

D. nmap

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

What is the correct process for the TCP three-way handshake connection establishment and connection termination?

A. Connection Establishment: SYN, SYN-ACK, ACKConnection Termination: FIN, ACK-FIN, ACK

B. Connection Establishment: ACK, ACK-SYN, SYNConnection Termination: FIN, ACK-FIN, ACK

C. Connection Establishment: FIN, ACK-FIN, ACKConnection Termination: SYN, SYN-ACK, ACK

D. Connection Establishment: SYN, SYN-ACK, ACKConnection Termination: ACK, ACK-SYN, SYN

正解：A 解答を投票する

出題：4

A computer science student needs to fill some information into a secured Adobe PDF job application that was received from a prospective employer. Instead of requesting a new document that allowed the forms to be completed, the student decides to write a script that pulls passwords from a list of commonly used passwords to try against the secured PDF until the correct password is found or the list is exhausted.
Which cryptography attack is the student attempting?

A. Session hijacking

B. Man-in-the-middle attack

C. Dictionary attack

D. Brute-force attack

正解：C 解答を投票する

出題：5

What attack is used to crack passwords by using a precomputed table of hashed passwords?

A. Rainbow Table Attack

B. Brute Force Attack

C. Hybrid Attack

D. Dictionary Attack

正解：A 解答を投票する

出題：6

In an internal security audit, the white hat hacker gains control over a user account and attempts to acquire access to another account's confidential files and information. How can he achieve this?

A. Privilege Escalation

B. Shoulder-Surfing

C. Hacking Active Directory

D. Port Scanning

正解：A 解答を投票する

出題：7

Switches maintain a CAM Table that maps individual MAC addresses on the network to physical ports on the switch.

In MAC flooding attack, a switch is fed with many Ethernet frames, each containing different source MAC addresses, by the attacker. Switches have a limited memory for mapping various MAC addresses to physical ports. What happens when the CAM table becomes full?

A. The switch replaces outgoing frame switch factory default MAC address of FF:FF:FF:FF:FF:FF

B. Every packet is dropped and the switch sends out SNMP alerts to the IDS port

C. Switch then acts as hub by broadcasting packets to all machines on the network

D. The CAM overflow table will cause the switch to crash causing Denial of Service

正解：C 解答を投票する

出題：8

Which NMAP feature can a tester implement or adjust while scanning for open ports to avoid detection by the network's IDS?

A. ICMP ping sweep to determine which hosts on the network are not available

B. Traceroute to control the path of the packets sent during the scan

C. Fingerprinting to identify which operating systems are running on the network

D. Timing options to slow the speed that the port scan is conducted

正解：D 解答を投票する

出題：9

In the OSI model, where does PPTP encryption take place?

A. Application layer

B. Transport layer

C. Network layer

D. Data link layer

正解：D 解答を投票する

出題：10

You are programming a buffer overflow exploit and you want to create a NOP sled of 200 bytes in the program exploit.c

What is the hexadecimal value of NOP instruction?

A. 0x90

B. 0x80

C. 0x60

D. 0x70

正解：A 解答を投票する

出題：11

How can you determine if an LM hash you extracted contains a password that is less than 8 characters long?

A. The right most portion of the hash is always the same

B. The hash always starts with AB923D

C. There is no way to tell because a hash cannot be reversed

D. The left most portion of the hash is always the same

E. A portion of the hash will be all 0's

正解：A 解答を投票する

出題：12

What is the approximate cost of replacement and recovery operation per year of a hard drive that has a value of $300 given that the technician who charges $10/hr would need 10 hours to restore OS and Software and needs further 4 hours to restore the database from the last backup to the new hard disk? Calculate the SLE, ARO, and ALE. Assume the EF = 1 (100%).

A. $100

B. $146

C. $1320

D. $440

正解：B 解答を投票する

出題：13

Why is a penetration test considered to be more thorough than vulnerability scan?

A. Vulnerability scans only do host discovery and port scanning by default.

B. It is not - a penetration test is often performed by an automated tool, while a vulnerability scan requires active engagement.

C. A penetration test actively exploits vulnerabilities in the targeted infrastructure, while a vulnerability scan does not typically involve active exploitation.

D. The tools used by penetration testers tend to have much more comprehensive vulnerability databases.

正解：C 解答を投票する

出題：14

In IPv6 what is the major difference concerning application layer vulnerabilities compared to IPv4?

A. Due to the extensive security measures built in IPv6, application layer vulnerabilities need not be addresses.

B. Implementing IPv4 security in a dual-stack network offers protection from IPv6 attacks too.

C. Vulnerabilities in the application layer are independent of the network layer. Attacks and mitigation techniques are almost identical.

D. Vulnerabilities in the application layer are greatly different from IPv4.

正解：C 解答を投票する

出題：15

The network in ABC company is using the network address 192.168.1.64 with mask 255.255.255.192. In the network the servers are in the addresses 192.168.1.122, 192.168.1.123 and 192.168.1.124.
An attacker is trying to find those servers but he cannot see them in his scanning. The command he is using is:
nmap 192.168.1.64/28.
Why he cannot see the servers?

A. The network must be down and the nmap command and IP address are ok.

B. He is scanning from 192.168.1.64 to 192.168.1.78 because of the mask /28 and the servers are not in that range.

C. He needs to add the command ''''ip address'''' just before the IP address.

D. He needs to change the address to 192.168.1.0 with the same mask.

正解：B 解答を投票する

出題：16

The practical realities facing organizations today make risk response strategies essential. Which of the following is NOT one of the five basic responses to risk?

A. Mitigate

B. Delegate

C. Avoid

D. Accept

正解：B 解答を投票する

出題：17

On performing a risk assessment, you need to determine the potential impacts when some of the critical business process of the company interrupt its service. What is the name of the process by which you can determine those critical business?

A. Disaster Recovery Planning (DRP)

B. Risk Mitigation

C. Business Impact Analysis (BIA)

D. Emergency Plan Response (EPR)

正解：C 解答を投票する

312-50v10試験無料問題集「EC-COUNCIL Certified Ethical Hacker Exam (CEH v10) 認定」