Question 1

What tool can crack Windows SMB passwords simply by listening to network traffic?

Options :

A : This is not possible

B : Netbus

C : NTFSDOS

D : L0phtcrack

Answer: D

Question 2

Vlady works in a fishing company where the majority of the employees have very little understanding of IT let

alone IT Security. Several information security issues that Vlady often found includes, employees sharing

password, writing his/her password on a post it note and stick it to his/her desk, leaving the computer

unlocked, didn’t log out from emails or other social media accounts, and etc.

After discussing with his boss, Vlady decided to make some changes to improve the security environment in

his company. The first thing that Vlady wanted to do is to make the employees understand the importance of

keeping confidential information, such as password, a secret and they should not share it with other persons.

Which of the following steps should be the first thing that Vlady should do to make the employees in his

company understand to importance of keeping confidential information a secret?

Options :

A : Warning to those who write password on a post it note and put it on his/her desk

B : Developing a strict information security policy

C : Information security awareness training

D : Conducting a one to one discussion with the other employees about the importance of information security

Answer: A

Question 3

Taylor, a security professional, uses a tool to monitor her company's website, analyze the website's traffic, and track the geographical location of the users visiting the company's website. Which of the following tools did Taylor employ in the above scenario?

Options :

A : WebSite Watcher

B : web-Stat

C : Webroot

D : WAFW00F

Answer: B

Question 4

Richard, an attacker, aimed to hack loT devices connected to a target network. In this process. Richard recorded the frequency required to share information between connected devices. After obtaining the frequency, he captured the original data when commands were initiated by the connected devices. Once the original data were collected, he used free tools such as URH to segregate the command sequence. Subsequently, he started injecting the segregated command sequence on the same frequency into the loT network, which repeats the captured signals of the devices. What Is the type of attack performed by Richard In the above scenario?

Options :

A : Side-channel attack

B : Replay attack

C : CrypTanalysis attack

D : Reconnaissance attack

Answer: B

Question 5

You have compromised a server and successfully gained a root access. You want to pivot and pass traffic undetected over the network and evade any possible Intrusion Detection System. What is the best approach?

Options :

A : Use Alternate Data Streams to hide the outgoing packets from this server.

B : Use HTTP so that all traffic can be routed vis a browser, thus evading the internal Intrusion Detection Systems.

C : Install Cryptcat and encrypt outgoing packets from this server.

D : Install and use Telnet to encrypt all outgoing traffic from this server.

Answer: C

Higher Test Marks with Free Online 312-50v13 Exam Practice

Buying Options: