312-50 Free Practice Test

- (Topic 9)
Which of these are phases of a reverse social engineering attack? Select the best answers.

1. A. Sabotage
2. B. Assisting
3. C. Deceiving
4. D. Advertising
5. E. Manipulating

Correct Answer: ABD
Explanations:
According to "Methods of Hacking: Social
Engineering", by Rick Nelson, the three phases of reverse social engineering attacks are sabotage, advertising, and assisting.

- (Topic 10)
Which is the right sequence of packets sent during the initial TCP three way handshake?

1. A. FIN, FIN-ACK, ACK
2. B. SYN, URG, ACK
3. C. SYN, ACK, SYN-ACK
4. D. SYN, SYN-ACK, ACK

Correct Answer: D
A TCP connection always starts with a request for synchronization, a SYN, the reply to that would be another SYN together with a ACK to acknowledge that the last package was delivered successfully and the last part of the three way handshake should be only an ACK to acknowledge that the SYN reply was recived.

- (Topic 4)
Let's imagine three companies (A, B and C), all competing in a challenging global environment. Company A and B are working together in developing a product that will generate a major competitive advantage for them. Company A has a secure DNS server while company B has a DNS server vulnerable to spoofing. With a spoofing attack on the DNS server of company B, company C gains access to outgoing e- mails from company B. How do you prevent DNS spoofing? (Select the Best Answer.)

1. A. Install DNS logger and track vulnerable packets
2. B. Disable DNS timeouts
3. C. Install DNS Anti-spoofing
4. D. Disable DNS Zone Transfer

Correct Answer: C
Explantion: Implement DNS Anit-Spoofing measures to prevent DNS Cache Pollution to occur.

- (Topic 11)
Barney is looking for a Windows NT/2000/XP command-line tool that can be used to assign display or modify ACLs (Access Control Lists) to files or folders and that could also be used within batch files. Which of the following tools could be used for this purpose?

1. A. PERM.EXE
2. B. CACLS.EXE
3. C. CLACS.EXE
4. D. NTPERM.EXE

Correct Answer: B
Cacls.exe (Change Access Control Lists) is an executable in Microsoft Windows to change Access Control List (ACL) permissions on a directory, its subcontents, or files. An access control list is a list of permissions for a file or directory that controls who can access it.

- (Topic 23)
NTP allows you to set the clocks on your systems very accurately, to within 100ms and sometimes-even 10ms. Knowing the exact time is extremely important for enterprise security. Various security protocols depend on an accurate source of time information in order to prevent "playback" attacks. These protocols tag their communications with the current time, to prevent attackers from replaying the same communications, e.g., a login/password interaction or even an entire communication, at a later date. One can circumvent this tagging, if the clock can be set back to the time the communication was recorded. An attacker attempts to try corrupting the clocks on devices on your network. You run Wireshark to detect the NTP traffic to see if there are any irregularities on the network. What port number you should enable in Wireshark display filter to view NTP packets?

1. A. TCP Port 124
2. B. UDP Port 125
3. C. UDP Port 123
4. D. TCP Port 126

Correct Answer: C