312-50v13 Free Practice Test

- (Topic 3)
Leverox Solutions hired Arnold, a security professional, for the threat intelligence process. Arnold collected information about specific threats against the organization. From this information, he retrieved contextual information about security events and incidents that helped him disclose potential risks and gain insight into attacker methodologies. He collected the information from sources such as humans, social media, and chat rooms as well as from events that resulted in cyberattacks. In this process, he also prepared a report that includes identified malicious activities, recommended courses of action, and warnings for emerging attacks. What is the type of threat intelligence collected by Arnold in the above scenario?

1. A. Strategic threat intelligence
2. B. Tactical threat intelligence
3. C. Operational threat intelligence
4. D. Technical threat intelligence

Correct Answer: C

- (Topic 3)
You start performing a penetration test against a specific website and have decided to start from grabbing all the links from the main page.
What Is the best Linux pipe to achieve your milestone?

1. A. dirb https://site.com | grep "site"
2. B. curl -s https://sile.com | grep ????< a>wget https://stte.com | grep "< a href=\*http>wgethttps://site.com | cut-d"http-

Correct Answer: C

- (Topic 2)
This is an attack that takes advantage of a web site vulnerability in which the site displays content that includes un-sanitized user-provided data.

What is this attack?

1. A. Cross-site-scripting attack
2. B. SQL Injection
3. C. URL Traversal attack
4. D. Buffer Overflow attack

Correct Answer: A

- (Topic 3)
______ is a type of phishing that targets high-profile executives such as CEOs, CFOs, politicians, and celebrities who have access to confidential and highly valuable information.

1. A. Spear phishing
2. B. Whaling
3. C. Vishing
4. D. Phishing

Correct Answer: B

- (Topic 3)
A Certified Ethical Hacker (CEH) is given the task to perform an LDAP enumeration on a target system. The system is secured and accepts connections only on secure LDAP. The CEH uses Python for the enumeration process. After successfully installing LDAP and establishing a connection with the target, he attempts to fetch details like the domain name and naming context but is unable to receive the expected response. Considering the circumstances, which of the following is the most plausible reason for this situation?

1. A. The Python version installed on the CEH's machine is incompatible with the Idap3 library
2. B. The secure LDAP connection was not properly initialized due to a lack of 'use_ssl = True' in the server object creation
3. C. The enumeration process was blocked by the target system's intrusion detection system
4. D. The system failed to establish a connection due to an incorrect port number

Correct Answer: B
The most plausible reason for the situation is that the secure LDAP connection was not properly initialized due to a lack of ??use_ssl = True?? in the server object creation. To use secure LDAP (LDAPS), the CEH needs to specify the use_ssl parameter as True when creating the server object with the ldap3 library in Python. This parameter
tells the library to use SSL/TLS encryption for the LDAP communication. If the parameter is omitted or set to False, the library will use plain LDAP, which may not be accepted by the target system that only allows secure LDAP connections12. For example, the CEH can use the following code to create a secure LDAP server object:
from ldap3 import Server, Connection, ALL
server = Server('ldaps://', use_ssl=True, get_info=ALL)
connection = Connection(server, user='', password='') connection.bind()
The other options are not as plausible as option B for the following reasons:
✑ A. The Python version installed on the CEH??s machine is incompatible with the ldap3 library: This option is unlikely because the ldap3 library supports Python versions from 2.6 to 3.9, which covers most of the commonly used Python versions3. Moreover, if the Python version was incompatible, the CEH would not be able to install the library or import it in the code, and would encounter errors before establishing the connection.
✑ C. The enumeration process was blocked by the target system??s intrusion detection system: This option is possible but not very plausible because the CEH
was able to establish a connection with the target, which means the intrusion detection system did not block the initial handshake. Moreover, the enumeration process would not affect the response of the target system, but rather the visibility of the results. If the intrusion detection system detected and blocked the enumeration, the CEH would receive an error message or a blank response, not an unexpected response.
✑ D. The system failed to establish a connection due to an incorrect port number:
This option is incorrect because the CEH was able to establish a connection with the target, which means the port number was correct. If the port number was incorrect, the CEH would not be able to connect to the target system at all, and would receive a connection refused error.
References:
✑ 1: ldap3 - LDAP library for Python
✑ 2: How to use LDAPS with Python - Stack Overflow
✑ 3: ldap3 2.9 documentation