Q241 - Which of the following is a passive wireless packet analyzer that works on Linux-based systems?

1. Burp Suite
2. OpenVAS
3. tshark
4. Kismet

Q242 - Which of the following is the greatest threat posed by backups?

1. A backup is the source of Malware or illicit information.
2. A backup is unavailable during disaster recovery.
3. A backup is incomplete because no verification was performed.
4. An un-encrypted backup can be misplaced or stolen.

Q243 - Which Type of scan sends a packets with no flags set?

1. Open Scan
2. Null Scan
3. Xmas Scan
4. Half-Open Scan

Q244 - Ricardo wants to send secret messages to a competitor company. To secure these messages, he uses a technique of hiding a secret message within an ordinary message. The technique provides 'security through obscurity'. What technique is Ricardo using?

1. Steganography
2. Public-key cryptography
3. RSA algorithm
4. Encryption

Q245 - Employees in a company are no longer able to access Internet web sites on their computers. The network administrator is able to successfully ping IP address of web servers on the Internet and is able to open web sites by using an IP address in place of the URL. The administrator runs the nslookup command for www.eccouncil.org and receives an error message stating there is no response from the server. What should the administrator do next?

1. Configure the firewall to allow traffic on TCP ports 53 and UDP port 53.
2. Configure the firewall to allow traffic on TCP ports 80 and UDP port 443.
3. Configure the firewall to allow traffic on TCP port 53.
4. Configure the firewall to allow traffic on TCP port 8080.

Q246 - Which of the following BEST describes the mechanism of a Boot Sector Virus?

1. Moves the MBR to another location on the hard disk and copies itself to the original location of the MBR
2. Moves the MBR to another location on the RAM and copies itself to the original location of the MBR
3. Overwrites the original MBR and only executes the new virus code
4. Modifies directory table entries so that directory entries point to the virus code instead of the actual program

Q247 - You are looking for SQL injection vulnerability by sending a special character to web applications. Which of the following is the most useful for quick validation?

1. Double quotation
2. Backslash
3. Semicolon
4. Single quotation

Q248 - Why should the security analyst disable/remove unnecessary ISAPI filters?

1. To defend against social engineering attacks
2. To defend against webserver attacks
3. To defend against jailbreaking
4. To defend against wireless attacks

Q249 - When a security analyst prepares for the formal security assessment - what of the following should be done in order to determine inconsistencies in the secure assets database and verify that system is compliant to the minimum security baseline?

1. Data items and vulnerability scanning
2. Interviewing employees and network engineers
3. Reviewing the firewalls configuration
4. Source code review

Q250 - It is a regulation that has a set of guidelines, which should be adhered to by anyone who handles any electronic medical data. These guidelines stipulate that all medical practices must ensure that all necessary measures are in place while saving, accessing, and sharing any electronic medical data to keep patient data secure. Which of the following regulations best matches the description?

1. HIPAA
2. ISO/IEC 27002
3. COBIT
4. FISMA

Q251 - Cross-site request forgery involves:

1. A request sent by a malicious user from a browser to a server
2. Modification of a request by a proxy between client and server
3. A browser making a request to a server without the user's knowledge
4. A server making a request to another server without the user's knowledge

Q252 - Which regulation defines security and privacy controls for Federal information systems and organizations?

1. NIST-800-53
2. PCI-DSS
3. EU Safe Harbor
4. HIPAA

Q253 - An ethical hacker for a large security research firm performs penetration tests, vulnerability tests, and risk assessments. A friend recently started a company and asks the hacker to perform a penetration test and vulnerability assessment of the new company as a favor. What should the hacker's next step be before starting work on this job?

1. Start by foot printing the network and mapping out a plan of attack.
2. Ask the employer for authorization to perform the work outside the company.
3. Begin the reconnaissance phase with passive information gathering and then move into active information gathering.
4. Use social engineering techniques on the friend's employees to help identify areas that may be susceptible to attack.

Q254 - Chandler works as a pen-tester in an IT-firm in New York. As a part of detecting viruses in the systems, he uses a detection method where the anti-virus executes the malicious codes on a virtual machine to simulate CPU and memory activities. Which type of virus detection method did Chandler use in this context?

1. Heuristic Analysis
2. Code Emulation
3. Integrity checking
4. Scanning

Q255 - Bob, your senior colleague, has sent you a mail regarding a deal with one of the clients. You are requested to accept the offer and you oblige. After 2 days. Bob denies that he had ever sent a mail. What do you want to ""know"" to prove yourself that it was Bob who had send a mail?

1. Authentication
2. Confidentiality
3. Integrity
4. Non-Repudiation

Q256 - Which type of scan is used on the eye to measure the layer of blood vessels?

1. Facial recognition scan
2. Retinal scan
3. Iris scan
4. Signature kinetics scan

Q257 - A new wireless client that is 802.11 compliant cannot connect to a wireless network given that the client can see the network and it has compatible hardware and software installed. Upon further tests and investigation, it was found out that the Wireless Access Point (WAP) was not responding to the association requests being sent by the wireless client. What MOST likely is the issue on this scenario?

1. The client cannot see the SSID of the wireless network
2. The WAP does not recognize the client's MAC address.
3. The wireless client is not configured to use DHCP.
4. Client is configured for the wrong channel

Q258 - Windows LAN Manager (LM) hashes are known to be weak. Which of the following are known weaknesses of LM? (Choose three.)

1. Converts passwords to uppercase.
2. Hashes are sent in clear text over the network.
3. Makes use of only 32-bit encryption.
4. Effective length is 7 characters.

Q259 - Which element of Public Key Infrastructure (PKI) verifies the applicant?

1. Certificate authority
2. Validation authority
3. Registration authority
4. Verification authority

Q260 - Which of the following algorithms can be used to guarantee the integrity of messages being sent, in transit, or stored?

1. symmetric algorithms
2. asymmetric algorithms
3. hashing algorithms
4. integrity algorithms

Q261 - It is a widely used standard for message logging. It permits separation of the software that generates messages, the system that stores them, and the software that reports and analyzes them. This protocol is specifically designed for transporting event messages. Which of the following is being described?

1. SNMP
2. ICMP
3. SYSLOG
4. SMS

Q262 - When tuning security alerts, what is the best approach?

1. Tune to avoid False positives and False Negatives
2. Rise False positives Rise False Negatives
3. Decrease the false positives
4. Decrease False negatives

Q263 - What is one of the advantages of using both symmetric and asymmetric cryptography in SSL/TLS?

1. Symmetric algorithms such as AES provide a failsafe when asymmetric methods fail.
2. Asymmetric cryptography is computationally expensive in comparison. However, it is well-suited to securely negotiate keys for use with symmetric cryptography.
3. Symmetric encryption allows the server to securely transmit the session keys out-of-band.
4. Supporting both types of algorithms allows less-powerful devices such as mobile phones to use symmetric encryption instead.

Q264 - A newly discovered flaw in a software application would be considered which kind of security vulnerability?

1. Input validation flaw
2. HTTP header injection vulnerability
3. 0-day vulnerability
4. Time-to-check to time-to-use flaw

Q265 - When you are getting information about a web server, it is very important to know the HTTP Methods (GET, POST, HEAD, PUT, DELETE, TRACE) that are available because there are two critical methods (PUT and DELETE). PUT can upload a file to the server and DELETE can delete a file from the server. You can detect all these methods (GET, POST, HEAD, PUT, DELETE, TRACE) using NMAP script engine. What nmap script will help you with this task?

1. http-methods
2. http enum
3. http-headers
4. http-git

Q266 - Which of the following options represents a conceptual characteristic of an anomaly-based IDS over a signature-based IDS?

1. Produces less false positives
2. Can identify unknown attacks
3. Requires vendor updates for a new threat
4. Cannot deal with encrypted network traffic

Q267 - TCP/IP stack fingerprinting is the passive collection of configuration attributes from a remote device during standard layer 4 network communications. Which of the following tools can be used for passive OS fingerprinting?

1. nmap
2. ping
3. tracert
4. tcpdump

Q268 - Which of the following is considered the best way to protect Personally Identifiable Information (PII) from Web application vulnerabilities?

1. Use cryptographic storage to store all PII
2. Use encrypted communications protocols to transmit PII
3. Use full disk encryption on all hard drives to protect PII
4. Use a security token to log into all Web applications that use PII

Q269 - What network security concept requires multiple layers of security controls to be placed throughout an IT infrastructure, which improves the security posture of an organization to defend against malicious attacks or potential vulnerabilities? What kind of Web application vulnerability likely exists in their software?

1. Host-Based Intrusion Detection System
2. Security through obscurity
3. Defense in depth
4. Network-Based Intrusion Detection System

Q270 - Which of the following levels of algorithms does Public Key Infrastructure (PKI) use?

1. RSA 1024 bit strength
2. AES 1024 bit strength
3. RSA 512 bit strength
4. AES 512 bit strength