312-50v12 Free Practice Test

- (Exam Topic 3)
John, a security analyst working for an organization, found a critical vulnerability on the organization's LAN that allows him to view financial and personal information about the rest of the employees. Before reporting the vulnerability, he examines the information shown by the vulnerability for two days without disclosing any information to third parties or other internal employees. He does so out of curiosity about the other employees and may take advantage of this information later. What would John be considered as?

1. A. Cybercriminal
2. B. Black hat
3. C. White hat
4. D. Gray hat

Correct Answer: D

- (Exam Topic 1)
Which system consists of a publicly available set of databases that contain domain name registration contact information?

1. A. WHOIS
2. B. CAPTCHA
3. C. IANA
4. D. IETF

Correct Answer: A

- (Exam Topic 2)
Windows LAN Manager (LM) hashes are known to be weak.
Which of the following are known weaknesses of LM? (Choose three.)

1. A. Converts passwords to uppercase.
2. B. Hashes are sent in clear text over the network.
3. C. Makes use of only 32-bit encryption.
4. D. Effective length is 7 characters.

Correct Answer: ABD

- (Exam Topic 2)
Ricardo has discovered the username for an application in his targets environment. As he has a limited amount of time, he decides to attempt to use a list of common passwords he found on the Internet. He compiles them into a list and then feeds that list as an argument into his password-cracking application, what type of attack is Ricardo performing?

1. A. Known plaintext
2. B. Password spraying
3. C. Brute force
4. D. Dictionary

Correct Answer: D
A dictionary Attack as an attack vector utilized by the attacker to break in a very system, that is password
protected, by golf shot technically each word in a very dictionary as a variety of password for that system. This attack vector could be a variety of Brute Force Attack.
The lexicon will contain words from an English dictionary and conjointly some leaked list of commonly used passwords and once combined with common character substitution with numbers, will generally be terribly effective and quick.
How is it done?
Basically, it’s attempting each single word that’s already ready. it’s done victimization machine-controlled tools that strive all the possible words within the dictionary.
Some password Cracking Software:
• John the ripper
• L0phtCrack
• Aircrack-ng

- (Exam Topic 1)
Why would you consider sending an email to an address that you know does not exist within the company you are performing a Penetration Test for?

1. A. To determine who is the holder of the root account
2. B. To perform a DoS
3. C. To create needless SPAM
4. D. To illicit a response back that will reveal information about email servers and how they treat undeliverable mail
5. E. To test for virus protection

Correct Answer: D