Free Access to EC-COUNCIL.312-38.v2024-08-10.q281 with Valid Practice Test (Page 50)

Question 241

What represents the ability of an organization to respond under emergency in order to minimize the damage to its brand name, business operation, and profit?

A.Crisis management
B.Emergency management
C.Incident management
D.Disaster recovery

Question 242

Which of the following is a software tool used in passive attacks for capturing network traffic?

A.Sniffer
B.Intrusion detection system
C.Intrusion prevention system
D.Warchalking

Correct Answer: A

A sniffer is a software tool that is used to capture any network traffic. Since a sniffer changes the NIC of the LAN card into promiscuous mode, the NIC begins to record incoming and outgoing data traffic across the network. A sniffer attack is a passive attack because the attacker does not directly connect with the target host. This attack is most often used to grab logins and passwords from network traffic. Tools such as Ethereal, Snort, Windump, EtherPeek, Dsniff are some good examples of sniffers. These tools provide many facilities to users such as graphical user interface, traffic statistics graph, multiple sessions tracking, etc. Answer option C is incorrect. An intrusion prevention system (IPS) is a network security device that monitors network and/or system activities for malicious or unwanted behavior and can react, in real-time, to block or prevent those activities. When an attack is detected, it can drop the offending packets while still allowing all other traffic to pass. Answer option B is incorrect. An IDS (Intrusion Detection System) is a device or software application that monitors network and/or system activities for malicious activities or policy violations and produces reports to a Management Station. Intrusion prevention is the process of performing intrusion detection and attempting to stop detected possible incidents. Intrusion detection and prevention systems (IDPS) are primarily focused on identifying possible incidents, logging information about them, attempting to stop them, and reporting them to security administrators. Answer option D is incorrect. Warchalking is the drawing of symbols in public places to advertise an open Wi-Fi wireless network. Having found a Wi-Fi node, the warchalker draws a special symbol on a nearby object, such as a wall, the pavement, or a lamp post. The name warchalking is derived from the cracker terms war dialing and war driving.

Question 243

Which protocol could choose the network administrator for the wireless network design, if he need to satisfied the minimum requirement of 2.4 GHz, 22 MHz of bandwidth, 2 Mbits/s stream for data rate and use DSSS for modulation.

A.802.11g
B.802.11b
C.802.11n
D.802.11a

Question 244

Which of the following is a network layer protocol used to obtain an IP address for a given hardware (MAC) address?

A.ARP
B.PIM
C.IP
D.RARP

Question 245

Arman transferred some money to his friend's account using a net banking service. After a few hours, his friend informed him that he hadn't received the money yet. Arman logged on to the bank's website to investigate and discovered that the amount had been transferred to an unknown account instead. The bank, upon receiving Arman's complaint, discovered that someone had established a station between Arman's and the bank server's communication system. The station intercepted the communication and inserted another account number replacing his friend's account number. What is such an attack called?

A.Privilege Escalation
B.DNS Poisoning
C.Man-in-the-Middle Attack
D.DNS Cache Poisoning

Question 241

Question 242

Question 243

Question 244

Question 245

Download PDF File