• Home
  • Articles
  • [2022] 312-38.pdf - Questions Answers PDF Sample Questions Reliable [Q75-Q95]

[2022] 312-38.pdf - Questions Answers PDF Sample Questions Reliable [Q75-Q95]

Share

[2022] 312-38.pdf - Questions Answers PDF Sample Questions Reliable

EC-COUNCIL 312-38 Dumps PDF Are going to be The Best Score

NEW QUESTION 75
FILL BLANK
Fill in the blank with the appropriate term. The ______________ layer establishes, manages, and terminates
the connections between the local and remote application.

Answer:

Explanation:
session
Explanation:
The session layer of the OSI/RM controls the dialogues (connections) between computers. It establishes,
manages and terminates the connections between the local and remote application. It provides for full-duplex,
half-duplex, or simplex operation, and establishes checkpointing, adjournment, termination, and restart
procedures. The OSI model made this layer responsible for graceful close of sessions, which is a property of
the Transmission Control Protocol, and also for session check pointing and recovery, which is not usually used
in the Internet Protocol Suite. The Session Layer is commonly implemented explicitly in application
environments that use remote procedure calls.

 

NEW QUESTION 76
Which of the following tools scans the network systems for well-known and often exploited vulnerabilities?

  • A. Nessus
  • B. SATAN
  • C. SAINT
  • D. HPing

Answer: B

 

NEW QUESTION 77
Damian is the chief security officer of Enigma Electronics. To block intruders and prevent any environmental accidents, he needs to set a two-factor authenticated keypad lock at the entrance, rig a fire suppression system, and link any video cameras at various corridors to view the feeds in the surveillance room. What layer of network defense-in-depth strategy is he trying to follow?

  • A. Host
  • B. Physical
  • C. Perimeter
  • D. Policies and procedures

Answer: B

 

NEW QUESTION 78
Which of the following is the type of documented business rule for protecting information and the systems, which store and process the information

  • A. Information protection policy
  • B. Information protection document
  • C. Information storage policy
  • D. Information security policy

Answer: D

 

NEW QUESTION 79
CORRECT TEXT
Fill in the blank with the appropriate term. A______________________ network is a local area network (LAN) in which all computers are connected in a ring or star topology and a bit- or token-passing scheme is used for preventing the collision of data between two computers that want to send messages at the same time.

Answer:

Explanation:
Token Ring
Explanation:
A Token Ring network is a local area network (LAN) in which all computers are connected in a ring or star topology and a bit- or token-passing scheme is used in order to prevent the collision of data between two computers that want to send messages at the same time. The Token Ring protocol is the second most widely-used protocol on local area networks after Ethernet. The IBM Token Ring protocol led to a standard version, specified as IEEE 802.5. Both protocols are used and are very similar. The IEEE 802.5 Token Ring technology provides for data transfer rates of either 4 or 16 megabits per second. Working: Empty information frames are constantly circulated on the ring. When a computer has a message to send, it adds a token to an empty frame and adds a message and a destination identifier to the frame. The frame is then observed by each successive workstation. If the workstation sees that it is the destination for the message, it copies the message from the frame and modifies the token back to 0.When the frame gets back to the originator, it sees that the token has been modified to 0 and that the message has been copied and received. It removes the message from the particular frame.The frame continues to circulate as an empty frame, ready to be taken by a workstation when it has a message to send.

 

NEW QUESTION 80
Which of the following tools is used to ping a given range of IP addresses and resolve the host name of the remote system?

  • A. Nmap
  • B. Netscan
  • C. SuperScan
  • D. Hping

Answer: C

Explanation:
Explanation

 

NEW QUESTION 81
Which of the following techniques uses a modem in order to automatically scan a list of telephone numbers?

  • A. Warkitting
  • B. War dialing
  • C. Warchalking
  • D. War driving

Answer: B

Explanation:
War dialing is a technique of using a modem to automatically scan a list of telephone numbers, usually dialing every number in a local area code to search for computers, BBS systems, and fax machines. Hackers use the resulting lists for various purposes, hobbyists for exploration, and crackers (hackers that specialize in computer security) for password guessing.
Answer option C is incorrect. Warchalking is the drawing of symbols in public places to advertise an open Wi-Fi wireless network. Having found a Wi-Fi node, the warchalker draws a special symbol on a nearby object, such as a wall, the pavement, or a lamp post. The name warchalking is derived from the cracker terms war dialing and war driving.
Answer option A is incorrect. War driving, also called access point mapping, is the act of locating and possibly exploiting connections to wireless local area networks while driving around a city or elsewhere. To do war driving, one needs a vehicle, a computer (which can be a laptop), a wireless Ethernet card set to work in promiscuous mode, and some kind of an antenna which can be mounted on top of or positioned inside the car.
Because a wireless LAN may have a range that extends beyond an office building, an outside user may be able to intrude into the network, obtain a free Internet connection, and possibly gain access to company records and other resources.
Answer option D is incorrect. Warkitting is a combination of wardriving and rootkitting. In a warkitting attack, a hacker replaces the firmware of an attacked router. This allows them to control all traffic for the victim, and could even permit them to disable SSL by replacing HTML content as it is being downloaded. Warkitting was identified by Tsow, Jakobsson, Yang, and Wetzel in 2006. Their discovery indicated that 10% of the wireless routers were susceptible to WAPjacking (malicious configuring of the firmware settings, but making no modification on the firmware itself) and 4.4% of wireless routers were vulnerable to WAPkitting (subverting the router firmware). Their analysis showed that the volume of credential theft possible through Warkitting exceeded the estimates of credential theft due to phishing.

 

NEW QUESTION 82
Which of the following techniques is also called access point mapping?

  • A. War driving
  • B. War flying
  • C. Wire tapping
  • D. War dialing

Answer: A

 

NEW QUESTION 83
Jason has set a firewall policy that allows only a specific list of network services and deny everything else. This strategy is known as a____________.

  • A. Default deny
  • B. Default access
  • C. Default restrict
  • D. Default allow

Answer: A

 

NEW QUESTION 84
Which of the following plans is documented and organized for emergency response, backup operations, and recovery maintained by an activity as part of its security program that will ensure the availability of critical resources and facilitates the continuity of operations in an emergency situation?

  • A. Disaster Recovery Plan
  • B. Business Continuity Plan
  • C. Continuity Of Operations Plan
  • D. Contingency Plan

Answer: D

Explanation:
Contingency plan is prepared and documented for emergency response, backup operations, and recovery maintained by an activity as the element of its security program that will ensure the availability of critical resources and facilitates the continuity of operations in an emergency situation.
A contingency plan is a plan devised for a specific situation when things could go wrong. Contingency plans are often devised by governments or businesses who want to be prepared for anything that could happen.
Contingency plans include specific strategies and actions to deal with
specific variances to assumptions resulting in a particular problem, emergency, or state of affairs. They also include a monitoring process and "triggers" for initiating planned actions. They are required to help governments, businesses, or individuals to recover from serious incidents in the minimum time with minimum cost and disruption.
Answer option B is incorrect. A disaster recovery plan should contain data, hardware, and software that can be critical for a business. It should also include the plan for sudden loss such as hard disc crash. The business should use backup and data recovery utilities to limit the loss of data.
Answer option D is incorrect. The Continuity Of Operation Plan (COOP) refers to the preparations and institutions maintained by the United States government, providing survival of federal government operations in the case of catastrophic events. It provides procedures and capabilities to sustain an organization's essential.
COOP is the procedure documented to ensure persistent critical operations throughout any period where normal operations are unattainable.
Answer option C is incorrect. Business Continuity Planning (BCP) is the creation and validation of a practiced logistical plan for how an organization will recover and restore partially or completely interrupted critical (urgent) functions within a predetermined time after a disaster or extended disruption. The logistical plan is called a business continuity plan.

 

NEW QUESTION 85
Which of the following layers of the TCP/IP model maintains data integrity by ensuring that messages are delivered in the order in which they are sent and that there is no loss or duplication?

  • A. Application layer
  • B. Transport layer
  • C. Internet layer
  • D. Link layer

Answer: B

Explanation:
The transport layer ensures that messages are delivered in the order in which they are sent and that there is no loss or duplication. Transport layer maintains data integrity.
Answer option C is incorrect. The Internet Layer of the TCP/IP model solves the problem of sending packets across one or more networks. Internetworking requires sending data from the source network to the destination network. This process is called routing. IP can carry data for a number of different upper layer protocols.
Answer option B is incorrect. The Link Layer of TCP/IP model is the networking scope of the local network connection to which a host is attached. This is the lowest component layer of the Internet protocols, as TCP/IP is designed to be hardware independent. As a result, TCP/IP has been implemented on top of virtually any hardware networking technology in existence. The Link Layer is used to move packets between the Internet Layer interfaces of two different hosts on the same link. The processes of transmitting and receiving packets on a given link can be controlled both in the software device driver for the network card, as well as on firmware or specialized chipsets.
Answer option D is incorrect. The Application Layer of TCP/IP model refers to the higher-level protocols used by most applications for network communication. Examples of application layer protocols include the File Transfer Protocol (FTP) and the Simple Mail Transfer Protocol (SMTP). Data coded according to application layer protocols are then encapsulated into one or more transport layer protocols, which in turn use lower layer protocols to affect actual data transfer.

 

NEW QUESTION 86
What are the responsibilities of the following disaster recovery team? Each correct answer represents a complete solution. Choose all that apply.

  • A. Amend and update the disaster recovery plan according to lessons learned from previous disaster recovery efforts.
  • B. Monitor the implementation of a disaster recovery plan and evaluate the results.
  • C. Starts execution disaster recovery procedures.
  • D. To inform the management, the injured and the third parties about the disaster.

Answer: A,B,C,D

 

NEW QUESTION 87
Which of the following representatives of the incident response team takes the forensic backups of systems that are essential event?

  • A. Information Security representative
  • B. the legal representative
  • C. lead investigator
  • D. None
  • E. technical representative

Answer: E

 

NEW QUESTION 88
CORRECT TEXT
Fill in the blank with the appropriate term. ______________is a free open-source utility for network exploration and security auditing that is used to discover computers and services on a computer network, thus creating a "map" of the network.

Answer:

Explanation:
Nmap
Explanation:
Nmap is a free open-source utility for network exploration and security auditing. It is used to discover computers and services on a computer network, thus creating a "map" of the network. Just like many simple port scanners, Nmap is capable of discovering passive services. In addition, Nmap may be able to determine various details about the remote computers. These include operating system, device type, uptime, software product used to run a service, exact version number of that product, presence of some firewall techniques and, on a local area network, even vendor of the remote network card. Nmap runs on Linux, Microsoft Windows, etc.

 

NEW QUESTION 89
Which of the following standards is an amendment to the original IEEE 802.11 and specifies security mechanisms for wireless networks?

  • A. 802.11e
  • B. 802.11i
  • C. 802.11b
  • D. 802.11a

Answer: B

Explanation:
802.11i is an amendment to the original IEEE 802.11. This standard specifies security mechanisms for wireless networks. It replaced the short Authentication and privacy clause of the original standard with a detailed Security clause. In the process, it deprecated the broken WEP. 802.11i supersedes the previous security specification, Wired Equivalent Privacy (WEP), which was shown to have severe security weaknesses. Wi-Fi Protected Access (WPA) had previously been introduced by the Wi-Fi Alliance as an intermediate solution to WEP insecurities. The Wi-Fi Alliance refers to their approved, interoperable implementation of the full 802.11i as WPA2, also called RSN (Robust Security Network). 802.11i makes use of the Advanced Encryption Standard (AES) block cipher, whereas WEP and WPA use the RC4 stream cipher. Answer option D is incorrect. 802.11a is an amendment to the IEEE 802.11 specification that added a higher data rate of up to 54 Mbit/s using the 5 GHz band. It has seen widespread worldwide implementation, particularly within the corporate workspace. Using the 5 GHz band gives 802.11a a significant advantage, since the 2.4 GHz band is heavily used to the point of being crowded. Degradation caused by such conflicts can cause frequent dropped connections and degradation of service. Answer option A is incorrect. 802.11b is an amendment to the IEEE 802.11 specification that extended throughput up to 11 Mbit/s using the same 2.4 GHz band. This specification under the marketing name of Wi-Fi has been implemented all over the world. 802.11b is used in a point-tomultipoint configuration, wherein an access point communicates via an omni-directional antenna with one or more nomadic or mobile clients that are located in a coverage area around the access point. Answer option B is incorrect. The 802.11e standard is a proposed enhancement to the 802.11a and 802.11b wireless LAN (WLAN) specifications. It offers quality of service (QoS) features, including the prioritization of data, voice, and video transmissions. 802.11e enhances the 802.11 Media Access Control layer (MAC layer) with a coordinated time division multiple access (TDMA) construct, and adds error-correcting mechanisms for delay-sensitive applications such as voice and video.

 

NEW QUESTION 90
Which of the following protocols supports source-specific multicast (SSM)?

  • A. DHCP
  • B. ARP
  • C. DNS
  • D. BGMP

Answer: D

 

NEW QUESTION 91
Consider a scenario consisting of a tree network. The root Node N is connected to two man nodes N1 and N2. N1 is connected to N11 and N12. N2 is connected to N21 and N22. What will happen if any one of the main nodes fail?

  • A. Failure of the main node affects all other child nodes at the same level irrespective of the main node.
  • B. Does not cause any disturbance to the child nodes or its tranmission
  • C. Affects the root node only
  • D. Failure of the main node will affect all related child nodes connected to the main node

Answer: D

 

NEW QUESTION 92
Which of the following steps OPSEC process examines every aspect of the proposed operation to identify the OPSEC indicators that can reveal important information and then compare them with indicators of the opponent's intelligence collection capabilities identified in the previous activity?

  • A. analysis of threats
  • B. Identification of Critical Information
  • C. Appropriate OPSEC measures
  • D. analysis weakness
  • E. risk assessment

Answer: D

Explanation:
Explanation/Reference:

 

NEW QUESTION 93
Which of the following ranges of addresses can be used in the first octet of a Class A network address?

  • A. 224-255
  • B. 128-191
  • C. 0-127
  • D. 192-223

Answer: C

 

NEW QUESTION 94
Will is working as a Network Administrator. Management wants to maintain a backup of all the company data as soon as it starts operations. They decided to use a RAID backup storage technology for their data backup plan. To implement the RAID data backup storage, Will sets up a pair of RAID disks so that all the data written to one disk is copied automatically to the other disk as well. This maintains an additional copy of the data.
Which RAID level is used here?

  • A. RAID 5
  • B. RAID 0
  • C. RAID 1
  • D. RAID 3

Answer: C

 

NEW QUESTION 95
......

Use 312-38 Exam Dumps (2022 PDF Dumps) To Have Reliable 312-38 Test Engine: https://www.examboosts.com/EC-COUNCIL/312-38-practice-exam-dumps.html

Certified Ethical Hacker 312-38 Exam and Certification Test Engine: https://drive.google.com/open?id=1qbGl_TDxJEOpJ_LgAHRG9qTrLSs4BEK4 

Related Articles

more
EC-COUNCIL 312-38 Certification Practice Exam