312-50v12 Free Practice Test

- (Exam Topic 1)
The company ABC recently contracts a new accountant. The accountant will be working with the financial statements. Those financial statements need to be approved by the CFO and then they will be sent to the accountant but the CFO is worried because he wants to be sure that the information sent to the accountant was not modified once he approved it. Which of the following options can be useful to ensure the integrity of the data?

1. A. The CFO can use a hash algorithm in the document once he approved the financial statements
2. B. The CFO can use an excel file with a password
3. C. The financial statements can be sent twice, one by email and the other delivered in USB and the accountant can compare both to be sure is the same document
4. D. The document can be sent to the accountant using an exclusive USB for that document

Correct Answer: A

- (Exam Topic 2)
This kind of password cracking method uses word lists in combination with numbers and special characters:

1. A. Hybrid
2. B. Linear
3. C. Symmetric
4. D. Brute Force

Correct Answer: A

- (Exam Topic 2)
This wireless security protocol allows 192-bit minimum-strength security protocols and cryptographic tools to protect sensitive data, such as GCMP-2S6. MMAC-SHA384, and ECDSA using a 384-bit elliptic curve. Which is this wireless security protocol?

1. A. WPA2 Personal
2. B. WPA3-Personal
3. C. WPA2-Enterprise
4. D. WPA3-Enterprise

Correct Answer: D
Enterprise, governments, and financial institutions have greater security with WPA3-Enterprise.
WPA3-Enterprise builds upon WPA2 and ensures the consistent application of security protocol across the network.WPA3-Enterprise also offers an optional mode using 192-bit minimum-strength security protocols and cryptographic tools to raised protect sensitive data:• Authenticated encryption: 256-bit Galois/Counter Mode Protocol (GCMP-256)• Key derivation and confirmation: 384-bit Hashed Message Authentication Mode (HMAC) with Secure Hash Algorithm (HMAC-SHA384)• Key establishment and authentication: Elliptic Curve Diffie-Hellman (ECDH) exchange and Elliptic Curve Digital Signature Algorithm (ECDSA) employing a 384-bit elliptic curve• Robust management frame protection: 256-bit Broadcast/Multicast Integrity Protocol
Galois Message Authentication Code (BIP-GMAC-256)The 192-bit security mode offered by
WPA3-Enterprise ensures the proper combination of cryptographic tools are used and sets a uniform baseline of security within a WPA3 network.
It protects sensitive data using many cryptographic algorithms It provides authenticated encryption using GCMP-256 It uses HMAC-SHA-384 to generate cryptographic keys It uses ECDSA-384 for exchanging keys

- (Exam Topic 3)
Calvin, a software developer, uses a feature that helps him auto-generate the content of a web page without manual involvement and is integrated with SSI directives. This leads to a vulnerability in the developed web application as this feature accepts remote user inputs and uses them on the page. Hackers can exploit this feature and pass malicious SSI directives as input values to perform malicious activities such as modifying and erasing server files. What is the type of injection attack Calvin's web application is susceptible to?

1. A. Server-side template injection
2. B. Server-side JS injection
3. C. CRLF injection
4. D. Server-side includes injection

Correct Answer: D

- (Exam Topic 2)
Which utility will tell you in real time which ports are listening or in another state?

1. A. Netstat
2. B. TCPView
3. C. Nmap
4. D. Loki

Correct Answer: B