[Jan 24, 2023] Latest CEH v11 312-50v11 Actual Free Exam Questions
CEH v11 312-50v11 Dumps Updated Practice Test and 525 unique questions
NEW QUESTION 257
Don, a student, came across a gaming app in a third-party app store and installed it. Subsequently, all the legitimate apps in his smartphone were replaced by deceptive applications that appeared legitimate. He also received many advertisements on his smartphone after installing the app.
What is the attack performed on Don in the above scenario?
- A. Clickjacking
- B. SIM card attack
- C. Agent Smith attack
- D. SMS phishing attack
Answer: C
NEW QUESTION 258
Clark is a professional hacker. He created and configured multiple domains pointing to the same host to switch quickly between the domains and avoid detection.
Identify the behavior of the adversary In the above scenario.
- A. Data staging
- B. Use of DNS tunneling
- C. Unspecified proxy activities
- D. use of command-line interface
Answer: C
Explanation:
A proxy server acts as a gateway between you and therefore the internet. It's an intermediary server separating end users from the websites they browse. Proxy servers provide varying levels of functionality, security, and privacy counting on your use case, needs, or company policy. If you're employing a proxy server, internet traffic flows through the proxy server on its thanks to the address you requested. A proxy server is essentially a computer on the web with its own IP address that your computer knows. once you send an internet request, your request goes to the proxy server first. The proxy server then makes your web request on your behalf, collects the response from the online server, and forwards you the online page data so you'll see the page in your browser.
NEW QUESTION 259
Stella, a professional hacker, performs an attack on web services by exploiting a vulnerability that provides additional routing information in the SOAP header to support asynchronous communication. This further allows the transmission of web-service requests and response messages using different TCP connections.
Which of the following attack techniques is used by Stella to compromise the web services?
- A. XML injection
- B. Web services parsing attacks
- C. WS-Address spoofing
- D. SOAPAction spoofing
Answer: D
NEW QUESTION 260
An attacker, using a rogue wireless AP, performed an MITM attack and injected an HTML code to embed a malicious applet in all HTTP connections.
When users accessed any page, the applet ran and exploited many machines.
Which one of the following tools the hacker probably used to inject HTML code?
- A. Ettercap
- B. Aircrack-ng
- C. Tcpdump
- D. Wireshark
Answer: A
NEW QUESTION 261
After an audit, the auditors Inform you that there is a critical finding that you must tackle Immediately. You read the audit report, and the problem is the service running on port 369. Which service Is this and how can you tackle the problem?
- A. The service is LDAP. and you must change it to 636. which is LDPAPS.
- B. The findings do not require immediate actions and are only suggestions.
- C. The service is SMTP, and you must change it to SMIME. which is an encrypted way to send emails.
- D. The service is NTP. and you have to change It from UDP to TCP in order to encrypt it
Answer: A
NEW QUESTION 262
When discussing passwords, what is considered a brute force attack?
- A. You create hashes of a large number of words and compare it with the encrypted passwords
- B. You wait until the password expires
- C. You threaten to use the rubber hose on someone unless they reveal their password
- D. You load a dictionary of words into your cracking program
- E. You attempt every single possibility until you exhaust all possible combinations or discover the password
Answer: E
NEW QUESTION 263
Alex, a cloud security engineer working in Eyecloud Inc. is tasked with isolating applications from the underlying infrastructure and stimulating communication via well-defined channels. For this purpose, he used an open-source technology that helped him in developing, packaging, and running applications; further, the technology provides PaaS through OS-level visualization, delivers containerized software packages, and promotes fast software delivery. What is the cloud technology employed by Alex in the above scenario?
- A. Docker
- B. Zero trust network
- C. Virtual machine
- D. Serverless computing
Answer: A
NEW QUESTION 264
These hackers have limited or no training and know how to use only basic techniques or tools.
What kind of hackers are we talking about?
- A. Black-Hat Hackers A
- B. White-Hat Hackers
- C. Script Kiddies
- D. Gray-Hat Hacker
Answer: C
Explanation:
Script Kiddies: These hackers have limited or no training and know how to use only basictechniques or tools. Even then they may not understand any or all of what they are doing.
NEW QUESTION 265
Stephen, an attacker, targeted the industrial control systems of an organization. He generated a fraudulent email with a malicious attachment and sent it to employees of the target organization. An employee who manages the sales software of the operational plant opened the fraudulent email and clicked on the malicious attachment. This resulted in the malicious attachment being downloaded and malware being injected into the sales software maintained in the victim's system. Further, the malware propagated itself to other networked systems, finally damaging the industrial automation components. What is the attack technique used by Stephen to damage the industrial systems?
- A. SMishing attack
- B. HMI-based attack
- C. Spear-phishing attack
- D. Reconnaissance attack
Answer: C
NEW QUESTION 266
John, a professional hacker, performs a network attack on a renowned organization and gains unauthorized access to the target network. He remains in the network without being detected for a long time and obtains sensitive information without sabotaging the organization. Which of the following attack techniques is used by John?
- A. Advanced persistent
- B. insider threat
- C. threat Diversion theft
- D. Spear-phishing sites
Answer: A
Explanation:
Explanation
An advanced persistent threat (APT) may be a broad term wont to describe AN attack campaign within which an intruder, or team of intruders, establishes a bootleg, long presence on a network so as to mine sensitive knowledge.
The targets of those assaults, that square measure terribly fastidiously chosen and researched, usually embrace massive enterprises or governmental networks. the implications of such intrusions square measure huge, and include:
* Intellectual property thieving (e.g., trade secrets or patents)
* Compromised sensitive info (e.g., worker and user personal data)
* The sabotaging of essential structure infrastructures (e.g., information deletion)
* Total website takeovers
Executing an APT assault needs additional resources than a regular internet application attack. The perpetrators square measure typically groups of intimate cybercriminals having substantial resource. Some APT attacks square measure government-funded and used as cyber warfare weapons.
APT attacks dissent from ancient internet application threats, in that:
* They're considerably additional advanced.
* They're not hit and run attacks-once a network is infiltrated, the culprit remains so as to realize the maximum amount info as potential.
* They're manually dead (not automated) against a selected mark and indiscriminately launched against an outsized pool of targets.
* They typically aim to infiltrate a complete network, as opposition one specific half.
More common attacks, like remote file inclusion (RFI), SQL injection and cross-site scripting (XSS), square measure oftentimes employed by perpetrators to ascertain a footing in a very targeted network. Next, Trojans and backdoor shells square measure typically wont to expand that foothold and make a persistent presence inside the targeted perimeter.
NEW QUESTION 267
John is investigating web-application firewall logs and observers that someone is attempting to inject the following:
char buff[10];
buff[>o] - 'a':
What type of attack is this?
- A. Buffer overflow
- B. CSRF
- C. SQL injection
- D. XSS
Answer: A
Explanation:
Buffer overflow this attack is an anomaly that happens when software writing data to a buffer overflows the buffer's capacity, leading to adjacent memory locations being overwritten. In other words, an excessive amount of information is being passed into a container that doesn't have enough space, which information finishes up replacing data in adjacent containers. Buffer overflows are often exploited by attackers with a goal of modifying a computer's memory so as to undermine or take hold of program execution.
What's a buffer?
A buffer, or data buffer, is a neighborhood of physical memory storage wont to temporarily store data while it's being moved from one place to a different . These buffers typically sleep in RAM memory. Computers frequently use buffers to assist improve performance; latest hard drives cash in of buffering to efficiently access data, and lots of online services also use buffers. for instance , buffers are frequently utilized in online video streaming to stop interruption. When a video is streamed, the video player downloads and stores perhaps 20% of the video at a time during a buffer then streams from that buffer. This way, minor drops in connection speed or quick service disruptions won't affect the video stream performance. Buffers are designed to contain specific amounts of knowledge . Unless the program utilizing the buffer has built-in instructions to discard data when an excessive amount of is shipped to the buffer, the program will overwrite data in memory adjacent to the buffer. Buffer overflows are often exploited by attackers to corrupt software. Despite being well-understood, buffer overflow attacks are still a serious security problem that torment cyber-security teams. In 2014 a threat referred to as 'heartbleed' exposed many many users to attack due to a buffer overflow vulnerability in SSL software.
How do attackers exploit buffer overflows?
An attacker can deliberately feed a carefully crafted input into a program which will cause the program to undertake and store that input during a buffer that isn't large enough, overwriting portions of memory connected to the buffer space. If the memory layout of the program is well-defined, the attacker can deliberately overwrite areas known to contain executable code. The attacker can then replace this code together with his own executable code, which may drastically change how the program is meant to figure . For example if the overwritten part in memory contains a pointer (an object that points to a different place in memory) the attacker's code could replace that code with another pointer that points to an exploit payload. this will transfer control of the entire program over to the attacker's code.
NEW QUESTION 268
You went to great lengths to install all the necessary technologies to prevent hacking attacks, such as expensive firewalls, antivirus software, anti-spam systems and intrusion detection/prevention tools in your company's network. You have configured the most secure policies and tightened every device on your network. You are confident that hackers will never be able to gain access to your network with complex security system in place.
Your peer, Peter Smith who works at the same department disagrees with you.
He says even the best network security technologies cannot prevent hackers gaining access to the network because of presence of "weakest link" in the security chain.
What is Peter Smith talking about?
- A. "Polymorphic viruses" are the weakest link in the security chain since the Anti-Virus scanners will not be able to detect these attacks
- B. Untrained staff or ignorant computer users who inadvertently become the weakest link in your security chain
- C. "zero-day" exploits are the weakest link in the security chain since the IDS will not be able to detect these attacks
- D. Continuous Spam e-mails cannot be blocked by your security system since spammers use different techniques to bypass the filters in your gateway
Answer: B
NEW QUESTION 269
What is the proper response for a NULL scan if the port is open?
- A. No response
- B. ACK
- C. FIN
- D. RST
- E. PSH
- F. SYN
Answer: A
NEW QUESTION 270
Elante company has recently hired James as a penetration tester. He was tasked with performing enumeration on an organization's network. In the process of enumeration, James discovered a service that is accessible to external sources. This service runs directly on port 21. What is the service enumerated byjames in the above scenario?
- A. Remote procedure call (RPC)
- B. Border Gateway Protocol (BGP)
- C. File Transfer Protocol (FTP)
- D. Network File System (NFS)
Answer: C
NEW QUESTION 271
A penetration tester is conducting a port scan on a specific host. The tester found several ports opened that were confusing in concluding the Operating System (OS) version installed. Considering that NMAP result below, which of the following is likely to be installed on the target machine by the OS? Starting NMAP 5.21 at
2011-03-15 11:06 NMAP scan report for 172.16.40.65 Host is up (1.00s latency). Not shown: 993 closed ports PORT STATE SERVICE 21/tcp open ftp 23/tcp open telnet 80/tcp open http 139/tcp open netbios-ssn 515/tcp open 631/tcp open ipp 9100/tcp open MAC Address: 00:00:48:0D:EE:8
- A. The host is likely a Windows machine.
- B. The host is likely a router.
- C. The host is likely a Linux machine.
- D. The host is likely a printer.
Answer: D
NEW QUESTION 272
......
Books for Better 312-50v11 Understanding
Who can imagine exam success without reliable books? As a rule, they are the best self-study materials. Thus, here’s a look at the most top-notch options available on Amazon:
- Ethical Hacking Bible - Hugo Hoffman deserves a pat on his back for providing such an extensive source of information on ethical hacking. Try it and you’ll be able to master every exam domain. In all, it is a bundle featuring seven different books. With them, test-takers can hone the subject matter easily as manuals use detailed and elaborate scenarios. Notably, its current edition was published in 2020. Hence, you will acquire only an updated understanding and skills.
- Learn Ethical Hacking from Scratch - The basics of ethical hacking are covered completely in this manual. Thus, learners will be able to set up a penetration test lab, wherein they can practice the affiliated concepts as well as legal hacking methods. Zaid Sabih is the author of this wonderful guide, which is available on Amazon at a mere cost of slightly more than $22 for the Kindle version. The paper book option is also available and costs $44.99.
- CEH Certified Ethical Hacker All-in-One Exam Guide - This material has been penned down by Matt Walker and is famed for featuring up-to-date information about the EC-Council 312-50v11 exam. The learning objectives at the beginning of each chapter give a detailed insight into what one might acquire at the end. Plus, the book includes two practice tests for you to experience the real setting of the official evaluation.
Verified 312-50v11 dumps Q&As - 100% Pass from DumpsFree: https://dumpstorrent.dumpsfree.com/312-50v11-valid-exam.html