312-38 PDF Dumps Nov 03, 2022 Exam Questions – Valid 312-38 Dumps [Q60-Q77]

312-38 PDF Dumps Nov 03, 2022 Exam Questions – Valid 312-38 Dumps

Ultimate 312-38 Guide to Prepare Free Latest EC-COUNCIL Practice Tests Dumps

NEW QUESTION 60
In an Ethernet peer-to-peer network, which of the following cables is used to connect two computers, using RJ-
45 connectors and Category-5 UTP cable?

• A. Loopback
• B. Crossover
• C. Serial
• D. Parallel

Answer: B

Explanation:
In an Ethernet peer-to-peer network, a crossover cable is used to connect two computers, using RJ-45
connectors and Category-5 UTP cable.
Answer options D and A are incorrect. Parallel and serial cables do not use RJ-45 connectors and Category-5
UTP cable. Parallel cables are used to connect printers, scanners etc., to computers, whereas serial cables
are used to connect modems, digital cameras etc., to computers.
Answer option B is incorrect. A loopback cable is used for testing equipments.

 

NEW QUESTION 61
Which of the following applications is used for the statistical analysis and reporting of the log files?

• A. jplag
• B. Sawmill
• C. Sniffer
• D. Snort

Answer: B

Explanation:
Explanation

 

NEW QUESTION 62
Which of the following is a network layer protocol used to obtain an IP address for a given hardware (MAC) address?

• A. ARP
• B. IP
• C. RARP
• D. PIM

Answer: C

Explanation:
Reverse Address Resolution Protocol (RARP) is a Network layer protocol used to obtain an IP address for a given hardware (MAC) address. RARP is sort of the reverse of an ARP. Common protocols that use RARP are BOOTP and DHCP.
Answer option D is incorrect. Address Resolution Protocol (ARP) is a network maintenance protocol of the TCP/IP protocol suite. It is responsible for the resolution of IP addresses to media access control (MAC) addresses of a network interface card (NIC). The ARP cache is used to maintain a correlation between a MAC address and its corresponding IP address. ARP provides the protocol rules for making this correlation and providing address conversion in both directions. ARP is limited to physical network systems that support broadcast packets.
Answer option B is incorrect. Protocol-Independent Multicast (PIM) is a family of multicast routing protocols for Internet Protocol (IP) networks that provide one-to-many and many-to-many distribution of data over a LAN, WAN, or the Internet. It is termed protocol-independent because PIM does not include its own topology discovery mechanism, but instead uses routing information supplied by other traditional routing protocols, such as Border Gateway Protocol (BGP).
Answer option A is incorrect. The Internet Protocol (IP) is a protocol used for communicating data across a packet-switched inter-network using the Internet Protocol Suite, also referred to as TCP/IP.
IP is the primary protocol in the Internet Layer of the Internet Protocol Suite and has the task of delivering distinguished protocol datagrams (packets) from the source host to the destination host solely based on their addresses. For this purpose, the Internet Protocol defines addressing methods and structures for datagram encapsulation. The first major version of addressing structure, now referred to as Internet Protocol Version 4 (IPv4), is still the dominant protocol of the Internet, although the successor, Internet Protocol Version 6 (IPv6), is being deployed actively worldwide.

 

NEW QUESTION 63
CORRECT TEXT
Fill in the blank with the appropriate term. A ______________ is a set of tools that take Administrative control of a computer system without authorization by the computer owners and/or legitimate managers.

Answer:

Explanation:
rootkit
Explanation:
A rootkit is a set of tools that take Administrative control of a computer system without
authorization by the computer owners and/or legitimate managers. A rootkit requires root access
to be installed in the Linux operating system, but once installed, the attacker can get root access
at any time. Rootkits have the following features:
They allow an attacker to run packet sniffers secretly to capture passwords.
They allow an attacker to set a Trojan into the operating system and thus open a backdoor for
anytime access.
They allow an attacker to replace utility programs that can be used to detect the attacker's activity.
They provide utilities for installing Trojans with the same attributes as legitimate programs.

 

NEW QUESTION 64
A company has the right to monitor the activities of their employees on different information systems according to the _______policy.

• A. Confidential data
• B. Information system
• C. User access control
• D. Internet usage

Answer: C

 

NEW QUESTION 65
A VPN Concentrator acts as a bidirectional tunnel endpoint among host machines. What are the other f unction(s) of the device? (Select all that apply)

• A. Manages security keys
• B. Assigns user addresses
• C. Provides access memory, achieving high efficiency
• D. Enables input/output (I/O) operations

Answer: A,B,D

 

NEW QUESTION 66
Which of the following indicators refers to potential risk exposures that attackers can use to breach the security of an organization?

• A. Indicators of compromise
• B. Indicators of attack
• C. Indicators of exposure
• D. Key risk indicators

Answer: C

 

NEW QUESTION 67
Which of the following examines network traffic to identify threats that generate unusual traffic flows, such as distributed denial of service (DDoS) attacks, certain forms of malware, and policy violations?

• A. Host-based Intrusion Prevention
• B. Network-based Intrusion Prevention
• C. Network Behavior Analysis
• D. Wireless Intrusion Prevention System

Answer: C

Explanation:
Network Behavior Analysis examines network traffic to identify threats that generate unusual traffic flows, such as distributed denial of service (DDoS) attacks, certain forms of malware, and policy violations.
Answer option B is incorrect. Network-based Intrusion Prevention (NIPS) monitors the entire network for suspicious traffic by analyzing protocol activity.
Answer option C is incorrect. Wireless Intrusion Prevention System (WIPS) monitors a wireless network for suspicious traffic by analyzing wireless networking protocols.
Answer option D is incorrect. Host-based Intrusion Prevention (HIPS) is an installed software package that monitors a single host for suspicious activity by analyzing events occurring within that host.

 

NEW QUESTION 68
Network security is the specialist area, which consists of the provisions and policies adopted by the Network Administrator to prevent and monitor unauthorized access, misuse, modification, or denial of the computer network and network-accessible resources. For which of the following reasons is network security needed?
Each correct answer represents a complete solution. Choose all that apply.

• A. To prevent a user from sending a message to another user with the name of a third person
• B. To protect information from unwanted editing, accidentally or intentionally by unauthorized users
• C. To protect private information on the Internet
• D. To protect information from loss and deliver it to its destination properly

Answer: A,B,C,D

Explanation:
Explanation
Explanation:
Network security is needed for the following reasons:
To protect private information on the Internet
To protect information from unwanted editing, accidentally or intentionally by unauthorized users To protect information from loss and deliver it to its destination properly To prevent a user from sending a message to another user with the name of a third person

 

NEW QUESTION 69
Token Ring is standardized by which of the following IEEE standards?

• A. 802.3
• B. 802.4
• C. 802.1
• D. 802.2

Answer: B

 

NEW QUESTION 70
Which of the following is a mechanism that helps in ensuring that only the intended and authorized recipients are able to read data?

• A. Data availability
• B. Integrity
• C. Confidentiality
• D. Authentication

Answer: C

Explanation:
Confidentiality is a mechanism that ensures that only the intended and authorized recipients are able to read data. The data is so encrypted that even if an unauthorized user gets access to it, he will not get any meaning out of it. Answer option A is incorrect. In information security, integrity means that data cannot be modified without authorization. This is not the same thing as referential integrity in databases. Integrity is violated when an employee accidentally or with malicious intent deletes important data files, when a computer virus infects a computer, when an employee is able to modify his own salary in a payroll database, when an unauthorized user vandalizes a web site, when someone is able to cast a very large number of votes in an online poll, and so on. There are many ways in which integrity could be violated without malicious intent. In the simplest case, a user on a system could mis-type someone's address. On a larger scale, if an automated process is not written and tested correctly, bulk updates to a database could alter data in an incorrect way, leaving the integrity of the data compromised. Information security professionals are tasked with finding ways to implement controls that prevent errors of integrity. Answer option B is incorrect. Data availability is one of the security principles that ensures that the data and communication services will be available for use when needed (expected). It is a method of describing products and services availability by which it is ensured that data continues to be available at a required level of performance in situations ranging from normal to disastrous. Data availability is achieved through redundancy, which depends upon where the data is stored and how it can be reached. Answer option D is incorrect. Authentication is the act of establishing or confirming something (or someone) as authentic, i.e., the claims made by or about the subject are true ("authentification" is a variant of this word).

 

NEW QUESTION 71
Management asked Adam to implement a system allowing employees to use the same credentials to access multiple applications. Adam should implement the--------------------------authentication technique to satisfy the management request.

• A. Biometric
• B. Single-sign-on
• C. Smart Card Authentication
• D. Two-factor Authentication

Answer: B

 

NEW QUESTION 72
What is the name of the authority that verifies the certificate authority in digital certificates?

• A. Certificate authority
• B. Directory management system
• C. Registration authority
• D. Certificate Management system

Answer: D

 

NEW QUESTION 73
Which of the following organizations is responsible for managing the assignment of domain names and IP addresses?

• A. ISO
• B. W3C
• C. ANSI
• D. ICANN

Answer: D

Explanation:
ICANN stands for Internet Corporation for Assigned Names and Numbers. ICANN is responsible for managing the assignment of domain names and IP addresses. ICANN's tasks include responsibility for IP address space allocation, protocol identifier assignment, top-level domain name system management, and root server system management functions. Answer option A is incorrect. The International Organization for Standardization, widely known as ISO, is an international-standard-setting body composed of representatives from various national standards organizations. Founded on 23 February 1947, the organization promulgates worldwide proprietary industrial and commercial standards. It has its headquarters in Geneva, Switzerland. While ISO defines itself as a non-governmental organization, its ability to set standards that often become law, either through treaties or national standards, makes it more powerful than most nongovernmental organizations. In practice, ISO acts as a consortium with strong links to governments. Answer option C is incorrect. The World Wide Web Consortium (W3C) is an international industry consortium that develops common standards for the World Wide Web to promote its evolution and interoperability. It was founded in October 1994 by Tim Berners-Lee, the inventor of the Web, at the Massachusetts Institute of Technology, Laboratory for Computer Science [MIT/LCS] in collaboration with CERN, where the Web had originated , with support from DARPA and the European Commission. Answer option D is incorrect. ANSI (American National Standards Institute) is the primary organization for fostering the development of technology standards in the United States. ANSI works with industry groups and is the U.S. member of the International Organization for Standardization (ISO) and the International Electro-technical Commission (IEC). Long-established computer standards from ANSI include the American Standard Code for Information Interchange (ASCII) and the Small Computer System Interface (SCSI).

 

NEW QUESTION 74
Which of the following techniques is used for drawing symbols in public places for advertising an open Wi-Fi
wireless network?

• A. War driving
• B. Spamming
• C. War dialing
• D. Warchalking

Answer: D

Explanation:
Warchalking is the drawing of symbols in public places to advertise an open Wi-Fi wireless network. Having
found a Wi-Fi node, the warchalker draws a special symbol on a nearby object, such as a wall, the pavement,
or a lamp post. The name warchalking is derived from the cracker terms war dialing and war driving.
Answer option B is incorrect. War driving, also called access point mapping, is the act of locating and possibly
exploiting connections to wireless local area networks while driving around a city or elsewhere. To do war
driving, one needs a vehicle, a computer (which can be a laptop), a wireless Ethernet card set to work in
promiscuous mode, and some kind of an antenna which can be mounted on top of or positioned inside the car.
Because a wireless LAN may have a range that extends beyond an office building, an outside user may be
able to intrude into the network, obtain a free Internet connection, and possibly gain access to company
records and other resources.
Answer option C is incorrect. War dialing is a technique of using a modem to automatically scan a list of
telephone numbers, usually dialing every number in a local area code to search for computers, BBS systems,
and fax machines. Hackers use the resulting lists for various purposes, hobbyists for exploration, and crackers
(hackers that specialize in computer security) for password guessing.
Answer option A is incorrect. Spamming is the technique of flooding the Internet with a number of copies of the
same message. The most widely recognized form of spams are e-mail spam, instant messaging spam, Usenet
newsgroup spam, Web search engine spam, spam in blogs, online classified ads spam, mobile phone
messaging spam, Internet forum spam, junk fax transmissions, social networking spam, television advertising
and file sharing network spam.

 

NEW QUESTION 75
John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He is using a tool to crack the wireless encryption keys. The description of the tool is as follows:
„It is a Linux-based WLAN WEP cracking tool that recovers encryption keys. It operates by passively monitoring transmissions. It uses Ciphertext Only Attack and captures approximately 5 to 10 million packets to decrypt the WEP keys." Which of the following tools is John using to crack the wireless encryption keys?

• A. AirSnort
• B. Kismet
• C. Cain
• D. PsPasswd

Answer: A

Explanation:
AirSnort is a Linux-based WLAN WEP cracking tool that recovers encryption keys. AirSnort operates by passively monitoring transmissions. It uses Ciphertext Only Attack and captures approximately 5 to 10 million packets to decrypt the WEP keys.
Answer option C is incorrect. Kismet is a Linux-based 802.11 wireless network sniffer and intrusion detection system. It can work with any wireless card that supports raw monitoring (rfmon) mode. Kismet can sniff
802.11b, 802.11a, 802.11g, and 802.11n traffic. Kismet can be used for the following tasks:
To identify networks by passively collecting packets
To detect standard named networks
To detect masked networks
To collect the presence of non-beaconing networks via data traffic Answer option A is incorrect. Cain is a multipurpose tool that can be used to perform many tasks such as Windows password cracking, Windows enumeration, and VoIP session sniffing. This password cracking program can perform the following types of password cracking attacks:
Dictionary attack
Brute force attack
Rainbow attack
Hybrid attack
Answer option B is incorrect. PsPasswd is a tool that helps Network Administrators change an account password on the local or remote system. The command syntax of PsPasswd is as follows:
pspasswd [\\computer[,computer[,..] | @file [-u user [-p psswd]] Username [NewPassword]

 

NEW QUESTION 76
CORRECT TEXT
Fill in the blank with the appropriate term. ______________is the use of sensitive words in e-mails to jam the authorities that listen in on them by providing a form of a red herring and an intentional annoyance.

Answer:

Explanation:
Email jamming
Explanation:
Email jamming is the use of sensitive words in e-mails to jam the authorities that listen in on them by providing a form of a red herring and an intentional annoyance. In this attack, an attacker deliberately includes "sensitive" words and phrases in otherwise innocuous emails to ensure that these are picked up by the monitoring systems. As a result the senders of these emails will eventually be added to a "harmless" list and their emails will be no longer intercepted, hence it will allow them to regain some privacy.

 

NEW QUESTION 77
......

Passing Key To Getting 312-38 Certified Exam Engine PDF: https://actualtests.crampdf.com/312-38-exam-prep-dumps.html