• ホーム
  • ブログ
  • [2024年10月14日]EC0-349試験問題集で100%合格率EC0-349試験! [Q225-Q248]

[2024年10月14日]EC0-349試験問題集で100%合格率EC0-349試験! [Q225-Q248]

Share

[2024年10月14日]EC0-349試験問題集で100%合格率EC0-349試験!

試験問題集リアルCertified Ethical Hacker問題集490解答を試そう!

質問 # 225
Data compression involves encoding the data to take up less storage space and less bandwidth for transmission.
It helps in saving cost and high data manipulation in many business applications.
Which data compression technique maintains data integrity?

  • A. Speech encoding compression
  • B. Lossy video compression
  • C. Lossless compression
  • D. Lossy compression

正解:C


質問 # 226
The police believe that Mevin Matthew has been obtaining unauthorized access to computers belonging to numerous computer software and computer operating systems manufacturers, cellular telephone manufacturers, Internet Service Providers, and educational institutions. They also suspect that he has been stealing, copying, and misappropriating proprietary computer software belonging to the several victim companies. What is preventing the police from breaking down the suspect door and searching his home and seizing all of his computer equipment if they haveis preventing the police from breaking down the suspect? door and searching his home and seizing all of his computer equipment if they have not yet obtained a warrant?

  • A. The Federal Rules of Evidence
  • B. The Good Samaritan Laws
  • C. The USA Patriot Act
  • D. The Fourth Amendment

正解:D


質問 # 227
Terri works for a security consulting firm that is currently performing a penetration test on First National Bank in Tokyo. Terri's duties include bypassing firewalls and switches to gain access to the network. Terri sends an IP packet to one of the company's switches with ACK bit and the source address of her machine set. What is Terri trying to accomplish by sending this IP packet?

  • A. Poison the switch's MAC address table by flooding it with ACK bits
  • B. Enable tunneling feature on the switch
  • C. Trick the switch into thinking it already has a session with Terri's computer
  • D. Crash the switch with a DoS attack since switches cannot send ACK bits

正解:C

解説:
Explanation/Reference:


質問 # 228
Why would a company issue a dongle with the software they sell?

  • A. To provide copyright protection
  • B. To provide wireless functionality with the software
  • C. To ensure that keyloggers cannot be used
  • D. To provide source code protection

正解:A


質問 # 229
E-mail logs contain which of the following information to help you in your investigation? (Choose four.)

  • A. unique message identifier
  • B. attachments sent with the e-mail message
  • C. date and time the message was sent
  • D. contents of the e-mail message
  • E. user account that was used to send the account

正解:A、C、D、E


質問 # 230
The use of warning banners helps a company avoid litigation by overcoming an employee assumed __________________________. When connecting to the company's intranet, network or Virtual Private Network(VPN) and will allow the company's investigators to monitor, search and retrieve information stored within the network.

  • A. Right to Internet Access
  • B. Right of free speech
  • C. Right to work
  • D. Right of Privacy

正解:D


質問 # 231
During the course of a corporate investigation, you find that an Employee is committing a crime.
Can the Employer file a criminal complaint with Police?

  • A. No, because the investigation was conducted without following standard police procedures
  • B. Yes, but only if you turn the evidence over to a federal law enforcement agency
  • C. No, because the investigation was conducted without warrant
  • D. Yes, and all evidence can be turned over to the police

正解:D


質問 # 232
You are running known exploits against your network to test for possible vulnerabilities. To test the strength of your virus software, you load a test network to mimic your production network. Your software successfully blocks some simple macro and encrypted viruses. You decide to really test the software by using virus code where the code rewrites itself entirely and the signatures change from child to child, but the functionality stays the same. What type of virus is this that you are testing?

  • A. Oligomorhic
  • B. Metamorphic
  • C. Polymorphic
  • D. Transmorphic

正解:B


質問 # 233
You work as a penetration tester for Hammond Security Consultants. You are currently working on a contract for the state government of California. Your next step is to initiate a DoS attack on their network. Why would you want to initiate a DoS attack on a system you are testing?

  • A. Show outdated equipment so it can be replaced
  • B. List weak points on their network
  • C. Use attack as a launching point to penetrate deeper into the network
  • D. Demonstrate that no system can be protected against DoS attacks

正解:B


質問 # 234
Why is it Important to consider health and safety factors in the work carried out at all stages of the forensic process conducted by the forensic analysts?

  • A. It is a part of ANSI 346 forensics standard
  • B. Local law enforcement agencies compel them to wear latest gloves
  • C. All forensic teams should wear protective latex gloves which makes them look professional and cool
  • D. This is to protect the staff and preserve any fingerprints that may need to be recovered at a later date

正解:D


質問 # 235
When you are running a vulnerability scan on a network and the IDS cuts off your connection, what type of IDS is being used?

  • A. Progressive IDS
  • B. NIPS
  • C. Passive IDS
  • D. Active IDS

正解:D


質問 # 236
What method of computer forensics will allow you to trace all ever-established user accounts on a Windows 2000 server the course of its lifetime?

  • A. analysis of volatile data
  • B. review of SIDs in the Registry
  • C. comparison of MD5 checksums
  • D. forensic duplication of hard drive

正解:B

解説:
Not MD5: MD5 checksums are used as integrity checks User accounts are assigned a unique SID, and the SID are not reused.


質問 # 237
You are working for a large clothing manufacturer as a computer forensics investigator and are called in to investigate an unusual case of an employee possibly stealing clothing designs from the company and selling them under a different brand name for a different company. What you discover during the course of the investigation is that the clothing designs are actually original products of the employee and the company has no policy against an employee selling his own designs on his own time. The only thing that you can find that the employee is doing wrong is that his clothing design incorporates the same graphic symbol as that of the company with only the wording in the graphic being different.
What area of the law is the employee violating?

  • A. Printright law
  • B. Trademark law
  • C. Brandmark law
  • D. Copyright law

正解:B


質問 # 238
What is static executable file analysis?

  • A. It is a process that consists of collecting information about and from an executable file without actually launching an executable file in a controlled and monitored environment
  • B. It is a process that consists of collecting information about and from an executable file by launching an executable file in a controlled and monitored environment
  • C. It is a process that consists of collecting information about and from an executable file without actually launching the file under any circumstances
  • D. It is a process that consists of collecting information about and from an executable file by launching the file under any circumstances

正解:C


質問 # 239
A small law firm located in the Midwest has possibly been breached by a computer hacker looking to obtain information on their clientele. The law firm does not have any on-site IT employees, but wants to search for evidence of the breach themselves to prevent any possible media attention. Why would this not be recommended?

  • A. Searching could possibly crash the machine or device
  • B. Searching creates cache files, which would hinder the investigation
  • C. Searching can change date/time stamps
  • D. Searching for evidence themselves would not have any ill effects

正解:C


質問 # 240
What information do you need to recover when searching a victim's computer for a crime committed with specific e-mail message?

  • A. Username and password
  • B. E-mail header
  • C. Firewall log
  • D. Internet service provider information

正解:B


質問 # 241
Paul's company is in the process of undergoing a complete security audit including logical and physical security testing. After all logical tests were performed; it is now time for the physical round to begin. None of the employees are made aware of this round of testing. The security-auditing firm sends in a technician dressed as an electrician. He waits outside in the lobby for some employees to get to work and follows behind them when they access the restricted areas. After entering the main office, he is able to get into the server room telling the IT manager that there is a problem with the outlets in that room. What type of attack has the technician performed?

  • A. Man trap attack
  • B. Fuzzing
  • C. Backtrapping
  • D. Tailgating

正解:D


質問 # 242
Michael works for Kimball Construction Company as senior security analyst. As part of yearly security audit, Michael scans his network for vulnerabilities. Using Nmap, Michael conducts XMAS scan and most of the ports scanned do not give a response. In what state are these ports?

  • A. Stealth
  • B. Closed
  • C. Open
  • D. Filtered

正解:C


質問 # 243
After undergoing an external IT audit, George realizes his network is vulnerable to DDoS attacks.
What countermeasures could he take to prevent DDoS attacks?

  • A. Enable direct broadcasts
  • B. Enable BGP
  • C. Disable BGP
  • D. Disable direct broadcasts

正解:D


質問 # 244
A computer forensics investigator is inspecting the firewall logs for a large financial institution that has employees working 24 hours a day, 7 days a week.

What can the investigator infer from the screenshot seen below?

  • A. Buffer overflow attempt on the firewall.
  • B. A denial of service has been attempted
  • C. Network intrusion has occurred
  • D. A smurf attack has been attempted

正解:C


質問 # 245
Hackers can gain access to Windows Registry and manipulate user passwords, DNS settings, access rights or others features that they may need in order to accomplish their objectives. One simple method for loading an application at startup is to add an entry (Key) to the following Registry Hive:

  • A. HKEY_CURRENT_USER\Microsoft\Default
  • B. HKEY_LOCAL_MACHINE\hardware\windows\start
  • C. HKEY_LOCAL_MACHINE\Software\Microsoft\CurrentVersion\Run
  • D. HKEY_LOCAL_USERS\Software\Microsoft\old\Version\Load

正解:C

解説:
Explanation


質問 # 246
What feature of Windows is the following command trying to utilize?

  • A. White space
  • B. AFS
  • C. Slack file
  • D. ADS

正解:D


質問 # 247
You work as an IT security auditor hired by a law firm in Boston to test whether you can gain access to sensitive information about the company clients. You have rummaged through their trash and found very little information. You do not want to set off any alarms on their network, so you plan on performing passive footprinting against their Web servers.
What tool should you use?

  • A. Nmap
  • B. Dig
  • C. Ping sweep
  • D. Netcraft

正解:D


質問 # 248
......

あなたを余裕でEC0-349試験合格させます!100%高合格率保証:https://www.passtest.jp/EC-COUNCIL/EC0-349-shiken.html

EC0-349問題集本日限定!無料アクセス可能に!:https://drive.google.com/open?id=1Ch4tJqC_Y_N854Gf3z0D2BgvOeyGAxuG

関するブログ

もっと
EC0-349 無料問題集