312-50 Practice Test

Statistics from cert.org and other leading security organizations has clearly showed
a steady rise in the number of hacking incidents perpetrated against companies.
What do you think is the main reason behind the significant increase in hacking
attempts over the past years?

A.

A. It is getting more challenging and harder to hack for non technical people.

B.

There is a phenomenal increase in processing power.

C.

New TCP/IP stack features are constantly being added.

D.

The ease with which hacker tools are available on the Internet.

Jack is conducting a port scan of a target network. He knows that his target network
has a web server and that a mail server is up and running. Jack has been sweeping
the network but has not been able to get any responses from the remote target.
Check all of the following that could be a likely cause of the lack of response?

A.

The host might be down

B.

 UDP is filtered by a gateway

C.

 ICMP is filtered by a gateway

D.

 The TCP window Size does not match

E.

The destination network might be down

F.

 The packet TTL value is too low and can’t reach the target

To scan a host downstream from a security gateway, Firewalking:

A.

Sends a UDP-based packet that it knows will be blocked by the firewall to determine
how specifically the firewall responds to such packets

B.

 Uses the TTL function to send packets with a TTL value set to expire one hop past the
identified security gateway

C.

Sends an ICMP ''administratively prohibited'' packet to determine if the gateway will drop
the packet without comment.

D.

Assesses the security rules that relate to the target system before it sends packets to
any hops on the route to the gateway

Which of the following would be the best reason for sending a single SMTP message
to an address that does not exist within the target company?

A.

To create a denial of service attack.

B.

To verify information about the mail administrator and his address.

C.

 To gather information about internal hosts used in email treatment.

D.

To gather information about procedures that are in place to deal with such messages.

Paula works as the primary help desk contact for her company. Paula has just
received a call from a user reporting that his computer just displayed a Blue Screen
of Death screen and he ca no longer work. Paula walks over to the user’s computer
and sees the Blue Screen of Death screen. The user’s computer is running Windows
XP, but the Blue screen looks like a familiar one that Paula had seen a Windows 2000
Computers periodically.
The user said he stepped away from his computer for only 15 minutes and when he
got back, the Blue Screen was there. Paula also noticed that the hard drive activity
light was flashing meaning that the computer was processing some thing. Paula
knew this should not be the case since the computer should be completely frozen
during a Blue screen. She checks the network IDS live log entries and notices
numerous nmap scan alerts.
What is Paula seeing happen on this computer?

A.

Paula’s Network was scanned using FloppyScan

B.

 Paula’s Netwrok was scanned using Dumpsec

C.

 There was IRQ conflict in Paula’s PC

D.

Tool like Nessus will cause BSOD