Question 1

You have compromised a server and successfully gained a root access. You want to pivot and pass traffic undetected over the network and evade any possible Intrusion Detection System. What is the best approach?

Options :

A : Use Alternate Data Streams to hide the outgoing packets from this server.

B : Use HTTP so that all traffic can be routed vis a browser, thus evading the internal Intrusion Detection Systems.

C : Install Cryptcat and encrypt outgoing packets from this server.

D : Install and use Telnet to encrypt all outgoing traffic from this server.

Answer: C

Question 2

Harry. a professional hacker, targets the IT infrastructure of an organization. After preparing for the attack, he attempts to enter the target network using techniques such as sending spear-phishing emails and exploiting vulnerabilities on publicly available servers. Using these techniques, he successfully deployed malware on the target system to establish an outbound connection. What is the APT lifecycle phase that Harry is currently executing?

Options :

A : Preparation

B : Cleanup

C : Persistence

D : initial intrusion

Answer: D

Question 3

Which results will be returned with the following Google search query? site:target.com – site:Marketing.target.com accounting

Options :

A : Results from matches on the site marketing.target.com that are in the domain target.com but do not include the word accounting.

B : Results matching all words in the query.

C : Results for matches on target.com and Marketing.target.com that include the word “accounting”

D : Results matching “accounting” in domain target.com but not on the site Marketing.target.com

Answer: D

Question 4

A pen tester is configuring a Windows laptop for a test. In setting up Wireshark, what river and library are required to allow the NIC to work in promiscuous mode?

Options :

A : Libpcap

B : Awinpcap

C : Winprom

D : Winpcap

Answer: D

Question 5

Vlady works in a fishing company where the majority of the employees have very little understanding of IT let

alone IT Security. Several information security issues that Vlady often found includes, employees sharing

password, writing his/her password on a post it note and stick it to his/her desk, leaving the computer

unlocked, didn’t log out from emails or other social media accounts, and etc.

After discussing with his boss, Vlady decided to make some changes to improve the security environment in

his company. The first thing that Vlady wanted to do is to make the employees understand the importance of

keeping confidential information, such as password, a secret and they should not share it with other persons.

Which of the following steps should be the first thing that Vlady should do to make the employees in his

company understand to importance of keeping confidential information a secret?

Options :

A : Warning to those who write password on a post it note and put it on his/her desk

B : Developing a strict information security policy

C : Information security awareness training

D : Conducting a one to one discussion with the other employees about the importance of information security

Answer: A

Smartly Prepare Exam with Free Online 312-50v13 Practice Test

Buying Options: