312-50v12 Free Practice Test

- (Exam Topic 3)
Roma is a member of a security team. She was tasked with protecting the internal network of an organization from imminent threats. To accomplish this task, Roma fed threat intelligence into the security devices in a digital format to block and identify inbound and outbound malicious traffic entering the organization's network.
Which type of threat intelligence is used by Roma to secure the internal network?

1. A. Technical threat intelligence
2. B. Operational threat intelligence
3. C. Tactical threat intelligence
4. D. Strategic threat intelligence

Correct Answer: A

- (Exam Topic 3)
What useful information is gathered during a successful Simple Mail Transfer Protocol (SMTP) enumeration?

1. A. The two internal commands VRFY and EXPN provide a confirmation of valid users, email addresses, aliases, and mailing lists.
2. B. Reveals the daily outgoing message limits before mailboxes are locked
3. C. The internal command RCPT provides a list of ports open to message traffic.
4. D. A list of all mail proxy server addresses used by the targeted host

Correct Answer: A

- (Exam Topic 3)
Tony is a penetration tester tasked with performing a penetration test. After gaining initial access to a target system, he finds a list of hashed passwords.
Which of the following tools would not be useful for cracking the hashed passwords?

1. A. John the Ripper
2. B. Hashcat
3. C. netcat
4. D. THC-Hydra

Correct Answer: A

- (Exam Topic 1)
A network admin contacts you. He is concerned that ARP spoofing or poisoning might occur on his network. What are some things he can do to prevent it? Select the best answers.

1. A. Use port security on his switches.
2. B. Use a tool like ARPwatch to monitor for strange ARP activity.
3. C. Use a firewall between all LAN segments.
4. D. If you have a small network, use static ARP entries.
5. E. Use only static IP addresses on all PC's.

Correct Answer: ABD

- (Exam Topic 2)
In this attack, a victim receives an e-mail claiming from PayPal stating that their account has been disabled and confirmation is required before activation. The attackers then scam to collect not one but two credit card numbers, ATM PIN number and other personal details. Ignorant users usually fall prey to this scam.
Which of the following statement is incorrect related to this attack?

1. A. Do not reply to email messages or popup ads asking for personal or financial information
2. B. Do not trust telephone numbers in e-mails or popup ads
3. C. Review credit card and bank account statements regularly
4. D. Antivirus, anti-spyware, and firewall software can very easily detect these type of attacks
5. E. Do not send credit card numbers, and personal or financial information via e-mail

Correct Answer: D