This page was exported from Braindump2go Free Exam Dumps with PDF and VCE Collection [ https://www.mcitpdump.com ] Export date:Thu Nov 21 19:35:51 2024 / +0000 GMT ___________________________________________________ Title: [2017-New-Version]312-50v9 Questions and Answers Free Download in Braindump2go(31-40) --------------------------------------------------- 2017 March New Updated EC-Council 312-50v9 Exam Dumps and 312-50v9 Exam Questions Updated Today!Free Instant Download 312-50v9 Exam Dumps (PDF & VCE) 589Q&As from www.Braindump2go.com  Today! 100% Real Exam Questions! 100% Exam Pass Guaranteed! 1.|NEW 312-50v9 Exam Dumps (PDF & VCE) 589Q&As Download:http://www.braindump2go.com/312-50v9.html 2.|NEW 312-50v9 Exam Questions & Answers Download:https://1drv.ms/f/s!AvI7wzKf6QBjgyJbM5f2lpRuMdO8 QUESTION 31A security consultant decides to use multiple layers of anti-virus defense, such as end user desktop anti- virus and E-mail gateway. This approach can be used to mitigate which kind of attack? A.    Forensic attackB.    ARP spoofing attackC.    Social engineering attackD.    Scanning attack Answer: C QUESTION 32Which of the following resources does NMAP need to be used as a basic vulnerability scanner covering several vectors like SMB, HTTP and FTP? A.    Metasploit scripting engineB.    Nessus scripting engineC.    NMAP scripting engineD.    SAINT scripting engine Answer: C QUESTION 33Which of the following scanning tools is specifically designed to find potential exploits in Microsoft Windows products? A.    Microsoft Security Baseline AnalyzerB.    RetinaC.    Core ImpactD.    Microsoft Baseline Security Analyzer Answer: D QUESTION 34A security analyst is performing an audit on the network to determine if there are any deviations from the security policies in place. The analyst discovers that a user from the IT department had a dial-out modem installed. Which security policy must the security analyst check to see if dial-out modems are allowed? A.    Firewall-management policyB.    Acceptable-use policyC.    Remote-access policyD.    Permissive policy Answer: C QUESTION 35When creating a security program, which approach would be used if senior management is supporting and enforcing the security policy? A.    A bottom-up approachB.    A top-down approachC.    A senior creation approachD.    An IT assurance approach Answer: B QUESTION 36Which of the following processes evaluates the adherence of an organization to its stated security policy? A.    Vulnerability assessmentB.    Penetration testingC.    Risk assessmentD.    Security auditing Answer: D QUESTION 37A security consultant is trying to bid on a large contract that involves penetration testing and reporting. The company accepting bids wants proof of work so the consultant prints out several audits that have been performed. Which of the following is likely to occur as a result? A.    The consultant will ask for money on the bid because of great work.B.    The consultant may expose vulnerabilities of other companies.C.    The company accepting bids will want the same type of format of testing.D.    The company accepting bids will hire the consultant because of the great work performed. Answer: B QUESTION 38Which type of scan is used on the eye to measure the layer of blood vessels? A.    Facial recognition scanB.    Retinal scanC.    Iris scanD.    Signature kinetics scan Answer: B QUESTION 39What is the main reason the use of a stored biometric is vulnerable to an attack? A.    The digital representation of the biometric might not be unique, even if the physical characteristic is unique.B.    Authentication using a stored biometric compares a copy to a copy instead of the original to a copy.C.    A stored biometric is no longer "something you are" and instead becomes "something you have".D.    A stored biometric can be stolen and used by an attacker to impersonate the individual identified by the biometric. Answer: D QUESTION 40During a wireless penetration test, a tester detects an access point using WPA2 encryption. Which of the following attacks should be used to obtain the key? A.    The tester must capture the WPA2 authentication handshake and then crack it.B.    The tester must use the tool inSSIDer to crack it using the ESSID of the network.C.    The tester cannot crack WPA2 because it is in full compliance with the IEEE 802.11i standard.D.    The tester must change the MAC address of the wireless network card and then use the AirTraf tool to obtain the key. Answer: A !!!RECOMMEND!!! 1.|NEW 312-50v9 Exam Dumps (PDF & VCE) 589Q&As Download:http://www.braindump2go.com/312-50v9.html 2.|NEW 312-50v9 Study Guide Video: YouTube Video: YouTube.com/watch?v=YSA9ckpy_7k --------------------------------------------------- Images: --------------------------------------------------- --------------------------------------------------- Post date: 2017-03-14 07:31:29 Post date GMT: 2017-03-14 07:31:29 Post modified date: 2017-03-14 07:31:29 Post modified date GMT: 2017-03-14 07:31:29 ____________________________________________________________________________________________ Export of Post and Page as text file has been powered by [ Universal Post Manager ] plugin from www.gconverters.com