312-50 Free Practice Test

- (Topic 23)
Lauren is performing a network audit for her entire company. The entire network is comprised of around 500 computers. Lauren starts an ICMP ping sweep by sending one IP packet to the broadcast address of the network, but only receives responses from around five hosts. Why did this ping sweep only produce a few responses?

1. A. Only Windows systems will reply to this scan.
2. B. A switched network will not respond to packets sent to the broadcast address.
3. C. Only Linux and Unix-like (Non-Windows) systems will reply to this scan.
4. D. Only servers will reply to this scan.

Correct Answer: C

- (Topic 21)
Bob is a Junior Administrator at ABC Company. He is installing the RedHat Enterprise Linux on his machine. At installation time, he removed the “Use MD5”
options. What will be the hashing standard?

1. A. MD2
2. B. DES
3. C. 3DES
4. D. RSA

Correct Answer: B
crypt() will return an encrypted string using the standard Unix DES-based encryption algorithm or alternative algorithms that may be available on the system. By removing the “Use MD5” option Bob forces crypt() to revert to DES encryption.

- (Topic 23)

An attacker finds a web page for a target organization that supplies contact information for the company. Using available details to make the message seem authentic, the attacker drafts e-mail to an employee on the contact page that appears to come from an individual who might reasonably request confidential information, such as a network administrator.
The email asks the employee to log into a bogus page that requests the employee's user name and password or click on a link that will download spyware or other malicious programming.
Google's Gmail was hacked using this technique and attackers stole source code and sensitive data from Google servers. This is highly sophisticated attack using zero-day exploit vectors, social engineering and malware websites that focused on targeted individuals working for the company.
What is this deadly attack called?

1. A. Spear phishing attack
2. B. Trojan server attack
3. C. Javelin attack
4. D. Social networking attack

Correct Answer: A

- (Topic 23)
You are trying to package a RAT Trojan so that Anti-Virus software will not detect it. Which of the listed technique will NOT be effective in evading Anti-Virus scanner?

1. A. Convert the Trojan.exe file extension to Trojan.txt disguising as text file
2. B. Break the Trojan into multiple smaller files and zip the individual pieces
3. C. Change the content of the Trojan using hex editor and modify the checksum
4. D. Encrypt the Trojan using multiple hashing algorithms like MD5 and SHA-1

Correct Answer: A

- (Topic 12)
Jane has just accessed her preferred e-commerce web site and she has seen an item she would like to buy. Jane considers the price a bit too steep; she looks at the page source code and decides to save the page locally to modify some of the page variables. In the context of web application security, what do you think Jane has changed?

1. A. An integer variable
2. B. A 'hidden' price value
3. C. A 'hidden' form field value
4. D. A page cannot be changed locally; it can only be served by a web server

Correct Answer: C
Changing hidden form values is possible when a web site is poorly built and is trusting the visitors computer to submit vital data, like the price of a product, to the database.