EC-Council 312-38 시험

Question No : 1

Liza was told by her network administrator that they will be implementing IPsec VPN tunnels to connect the branch locations to the main office.
What layer of the OSI model do IPsec tunnels function on?

• A.The data link layer
• B.The session layer
• C.The network layer
• D.The application and physical layers

답을 확인하기

정답:

Question No : 2

An administrator wants to monitor and inspect large amounts of traffic and detect unauthorized attempts from inside the organization, with the help of an IDS.



They are not able to recognize the exact location to deploy the IDS sensor. Can you help him spot the location where the IDS sensor should be placed?

• A.Location 2
• B.Location 3
• C.Location 4
• D.Location 1

답을 확인하기

정답:

Question No : 3

Management wants to calculate the risk factor for their organization. Kevin, a network administrator in the organization knows how to calculate the risk factor. Certain parameters are required before calculating risk factor.
What are they? (Select all that apply) Risk factor =.............X...............X...........

• A.Vulnerability
• B.Impact
• C.Attack
• D.Threat

답을 확인하기

정답:

Question No : 4

Assume that you are a network administrator and the company has asked you to draft an Acceptable Use Policy (AUP) for employees.
Under which category of an information security policy does AUP fall into?

• A.System Specific Security Policy (SSSP)
• B.Incident Response Policy (IRP)
• C.Enterprise Information Security Policy (EISP)
• D.Issue Specific Security Policy (ISSP)

답을 확인하기

정답:

Question No : 5

Smith is an IT technician that has been appointed to his company's network vulnerability assessment team. He is the only IT employee on the team. The other team members include employees from Accounting, Management, Shipping, and Marketing. Smith and the team members are having their first meeting to discuss how they will proceed.
What is the first step they should do to create the network vulnerability assessment plan?

• A.Their first step is to analyze the data they have currently gathered from the company or interviews.
• B.Their first step is to make a hypothesis of what their final findings will be.
• C.Their first step is to create an initial Executive report to show the management team.
• D.Their first step is the acquisition of required documents, reviewing of security policies and compliance.

답을 확인하기

정답:

Question No : 6

Which IEEE standard does wireless network use?

• A.802.11
• B.802.18
• C.802.9
• D.802.10

답을 확인하기

정답:

Question No : 7

The bank where you work has 600 windows computers and 400 Red Hat computers which primarily serve as bank teller consoles. You have created a plan and deployed all the patches to the Windows computers and you are now working on updating the Red Hat computers.
What command should you run on the network to update the Red Hat computers, download the security package, force the package installation, and update all currently installed packages?

• A.You should run the up2date -d -f -u command
• B.You should run the up2data -u command
• C.You should run the WSUS -d -f -u command.
• D.You should type the sysupdate -d command

답을 확인하기

정답:

Question No : 8

Henry needs to design a backup strategy for the organization with no service level downtime.
Which backup method will he select?

• A.Normal backup
• B.Warm backup
• C.Hot backup
• D.Cold backup

답을 확인하기

정답:

Question No : 9

An attacker uses different types of password cracking techniques to crack the password and gain unauthorized access to a system. An attacker uses a file containing a list of commonly used passwords. They then upload this file into the cracking application that runs against the user accounts.
Which of the following password cracking techniques is the attacker trying?

• A.Bruteforce
• B.Rainbow table
• C.Hybrid
• D.Dictionary

답을 확인하기

정답:

Question No : 10

Identify the network topology where each computer acts as a repeater and the data passes from one computer to the other in a single direction until it reaches the destination.

• A.Ring
• B.Mesh
• C.Bus
• D.Star

답을 확인하기

정답:

Question No : 11

------------is a group of broadband wireless communications standards for Metropolitan Area Networks (MANs)

• A.802.15
• B.802.16
• C.802.15.4
• D.802.12

답을 확인하기

정답:

Question No : 12

Management asked Adam to implement a system allowing employees to use the same credentials to access multiple applications. Adam should implement the-------------------------- authentication technique to satisfy the management request.

• A.Two-factor Authentication
• B.Smart Card Authentication
• C.Single-sign-on
• D.Biometric

답을 확인하기

정답:

Question No : 13

Daniel is giving training on designing and implementing a security policy in the organization. He is explaining the hierarchy of the security policy which demonstrates how policies are drafted, designed and implemented.
What is the correct hierarchy for a security policy implementation?

• A.Laws, Policies, Regulations, Procedures and Standards
• B.Regulations, Policies, Laws, Standards and Procedures
• C.Laws, Regulations, Policies, Standards and Procedures
• D.Procedures, Policies, Laws, Standards and Regulations

답을 확인하기

정답:

Question No : 14

A VPN Concentrator acts as a bidirectional tunnel endpoint among host machines.
What are the other f unction(s) of the device? (Select all that apply)

• A.Provides access memory, achieving high efficiency
• B.Assigns user addresses
• C.Enables input/output (I/O) operations
• D.Manages security keys

답을 확인하기

정답:

Question No : 15

Cindy is the network security administrator for her company. She just got back from a security conference in Las Vegas where they talked about all kinds of old and new security threats; many of which she did not know of. She is worried about the current security state of her company's network so she decides to start scanning the network from an external IP address. To see how some of the hosts on her network react, she sends out SYN packets to an IP range. A number of IPs responds with a SYN/ACK response. Before the connection is established, she sends RST packets to those hosts to stop the session. She has done this to see how her intrusion detection system will log the traffic.
What type of scan is Cindy attempting here?

• A.The type of scan she is usinq is called a NULL scan.
• B.Cindy is using a half-open scan to find live hosts on her network.
• C.Cindy is attempting to find live hosts on her company's network by using a XMAS scan.
• D.She is utilizing a RST scan to find live hosts that are listening on her network.

답을 확인하기

정답: