Pass4Test 는 여러분의 IT전문가의 꿈을 이루어 드리는 사이트 입다. Pass4Test는 여러분이 우리 자료로 관심 가는 인중시험에 응시하여 안전하게 자격증을 취득할 수 있도록 도와드립니다. 아직도EC-COUNCIL 인증312-50v8자격증시험 인증시험으로 고민하시고 계십니까? EC-COUNCIL 인증312-50v8자격증시험 가이드를 사용하실 생각은 없나요? Pass4Test는 여러분께 시험패스의 편리를 드릴 수 있습니다.
IT자격증을 많이 취득하여 IT업계에서 자신만의 단단한 자리를 보장하는것이 여러분들의 로망이 아닐가 싶습니다. Pass4Test의 완벽한 EC-COUNCIL인증 312-50v8자격증시험는 IT전문가들이 자신만의 노하우와 경험으로 실제EC-COUNCIL인증 312-50v8자격증시험에 대비하여 연구제작한 완벽한 작품으로서 100%시험통과율을 보장합니다.
시험 번호/코드: 312-50v8시험 이름: Certified Ethical Hacker v8
당신이 구입하기 전에 시도, 100% 합격율 보장
100% 환불보장약속 312-50v8시험문제
PDF 및 소프트웨어, 연구와 실천
NO.1 You are the CIO for Avantes Finance International, a global finance company based in Geneva.
You are responsible for network functions and logical security throughout the entire corporation.
Your company has over 250 servers running Windows Server, 5000 workstations running
Windows Vista, and 200 mobile users working from laptops on Windows 7.
Last week, 10 of your company's laptops were stolen from salesmen while at a conference in
Amsterdam. These laptops contained proprietary company information. While doing damage
assessment on the possible public relations nightmare this may become, a news story leaks about
the stolen laptops and also that sensitive information from those computers was posted to a blog
online.
What built-in Windows feature could you have implemented to protect the sensitive information on
these laptops?
A. If you would have implemented Pretty Good Privacy (PGP) which is built into Windows,the
sensitive information on the laptops would not have leaked out
B. You should have used 3DES which is built into Windows
C. You could have implemented Encrypted File System (EFS) to encrypt the sensitive files on the
laptops
D. You should have utilized the built-in feature of Distributed File System (DFS) to protect the
sensitive information on the laptops
Answer: C
312-50v8최신버전덤프
NO.2 Which of the following is an automated vulnerability assessment tool?
A. Jill32
B. Kismet
C. Nessus
D. Nmap
E. Whack a Mole
Answer: C
312-50v8응시료
NO.3 A security analyst in an insurance company is assigned to test a new web application that will
be
used by clients to help them choose and apply for an insurance plan. The analyst discovers that
the application is developed in ASP scripting language and it uses MSSQL as a database
backend. The analyst locates the application's search form and introduces the following code in
the search input fielD.
IMG SRC=vbscript:msgbox("Vulnerable");> originalAttribute="SRC"
originalPath="vbscript:msgbox("Vulnerable");>"
When the analyst submits the form, the browser returns a pop-up window that says "Vulnerable".
Which web applications vulnerability did the analyst discover?
A. Cross-site scripting
B. Cross-site request forgery
C. SQL injection
D. Command injection
Answer: A
312-50v8국제공인자격증
NO.4 You just purchased the latest DELL computer, which comes pre-installed with Windows 7,
McAfee antivirus software and a host of other applications. You want to connect Ethernet wire to
your cable modem and start using the computer immediately. Windows is dangerously insecure
when unpacked from the box, and there are a few things that you must do before you use it.
A. Create a non-admin user with a complex password and logon to this account
B. You can start using your computer as vendors such as DELL,HP and IBM would have already
installed the latest service packs.
C. New installation of Windows should be patched by installing the latest service packs and
hotfixes
D. Key applications such as Adobe Acrobat,Macromedia Flash,Java,Winzip etc.,must have the
latest security patches installed
E. Install a personal firewall and lock down unused ports from connecting to your computer
F. Configure "Windows Update" to automatic
G. Install the latest signatures for Antivirus software
Answer: A,C,E,F,G
312-50v8자격시험 312-50v8 pdf
NO.5 Bart is looking for a Windows NT/ 2000/XP command-line tool that can be used to assign,
display,
or modify ACL’s (access control lists) to files or folders and also one that can be used within batch
files.
Which of the following tools can be used for that purpose? (Choose the best answer)
A. CLACS.exe
B. PERM.exe
C. NTPERM.exe
D. CACLS.exe
Answer: D
312-50v8시험일정
NO.6 Harold is the senior security analyst for a small state agency in New York. He has no other
security professionals that work under him, so he has to do all the security-related tasks for the
agency. Coming from a computer hardware background, Harold does not have a lot of experience
with security methodologies and technologies, but he was the only one who applied for the
position. Harold is currently trying to run a Sniffer on the agency's network to get an idea of what
kind of traffic is being passed around, but the program he is using does not seem to be capturing
anything. He pours through the Sniffer's manual, but cannot find anything that directly relates to
his problem. Harold decides to ask the network administrator if he has any thoughts on the
problem. Harold is told that the Sniffer was not working because the agency's network is a
switched network, which cannot be sniffed by some programs without some tweaking. What
technique could Harold use to sniff his agency's switched network?
A. Launch smurf attack against the switch
B. Conduct MiTM against the switch
C. ARP spoof the default gateway
D. Flood the switch with ICMP packets
Answer: C
312-50v8시험문제
NO.7 WEP is used on 802.11 networks, what was it designed for?
A. WEOP is designed to provide a wireless local area network (WLAN) with a level of privacy
comparable to what it usually expected of a wired LAN.
B. WEP is designed to provide a wireless local area network (WLAN) with a level of security and
privacy comparable to what it usually expected of a wired LAN.
C. WEP is designed to provide a wireless local area network (WLAN) with a level of availability
and privacy comparable to what is usually expected of a wired LAN.
D. WEP is designed to provide strong encryption to a wireless local area network (WLAN) with a
lever of integrity and privacy adequate for sensible but unclassified information.
Answer: B
312-50v8 dump
Pass4Test 에서는 최신버전의 C8010-471시험에 대비한 고품질 덤프와 M5050-716시험 최신버전덤프를 제공해드립니다. Pass4Test의 M2090-626덤프의 VCE테스트프로그램과 C5050-280덤프는 한방에 시험을 패스하도록 도와드립니다. 최고품질 640-875시험자료는 100% 간단하게 시험패스하도록 최선을 다하고 있습니다. IT인증시험패스는 이토록 간단합니다.