Certified Ethical Hacker EC0-350 Book

Ethical Hacking and Countermeasures V8 Questions and Answers

Question 65

Which of the following processes evaluates the adherence of an organization to its stated security policy?

Options:

Vulnerability assessment

Penetration testing

Risk assessment

Security auditing

Question 66

Neil is an IT security consultant working on contract for Davidson Avionics. Neil has been hired to audit the network of Davidson Avionics. He has been given permission to perform any tests necessary. Neil has created a fake company ID badge and uniform. Neil waits by one of the company's entrance doors and follows an employee into the office after they use their valid access card to gain entrance. What type of social engineering attack has Neil employed here?

Options:

Neil has used a tailgating social engineering attack to gain access to the offices

He has used a piggybacking technique to gain unauthorized access

This type of social engineering attack is called man trapping

Neil is using the technique of reverse social engineering to gain access to the offices of Davidson Avionics

Question 67

The SNMP Read-Only Community String is like a password. The string is sent along with each SNMP Get-Request and allows (or denies) access to a device. Most network vendors ship their equipment with a default password of "public". This is the so-called "default public community string". How would you keep intruders from getting sensitive information regarding the network devices using SNMP? (Select 2 answers)

Options:

Enable SNMPv3 which encrypts username/password authentication

Use your company name as the public community string replacing the default 'public'

Enable IP filtering to limit access to SNMP device

The default configuration provided by device vendors is highly secure and you don't need to change anything

Question 68

The traditional traceroute sends out ICMP ECHO packets with a TTL of one, and increments the TTL until the destination has been reached. By printing the gateways that generate ICMP time exceeded messages along the way, it is able to determine the path packets take to reach the destination.

The problem is that with the widespread use of firewalls on the Internet today, many of the packets that traceroute sends out end up being filtered, making it impossible to completely trace the path to the destination.

How would you overcome the Firewall restriction on ICMP ECHO packets?

Options:

Firewalls will permit inbound TCP packets to specific ports that hosts sitting behind the firewall are listening for connections. By sending out TCP SYN packets instead of ICMP ECHO packets, traceroute can bypass the most common firewall filters.

Firewalls will permit inbound UDP packets to specific ports that hosts sitting behind the firewall are listening for connections. By sending out TCP SYN packets instead of ICMP ECHO packets, traceroute can bypass the most common firewall filters.

Do not use traceroute command to determine the path packets take to reach the destination instead use the custom hacking tool JOHNTHETRACER and run with the command

\> JOHNTHETRACER www.eccouncil.org -F -evade

Black Friday Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

Ethical Hacking and Countermeasures V8 Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

CompTIA

Fortinet

Microsoft

Salesforce