312-50v13 試験問題を無料オンラインアクセス

Which of the following is the primary goal of ethical hacking?

• A.To spread malware to compromise multiple systems
• B.To identify and fix security vulnerabilities in a system
• C.To steal sensitive information from a company's network
• D.To disrupt services by launching denial-of-service attacks

Study the Snort rule given below:
[Image shows two Snort rules with alert messages for NETBIOS DCERPC ISystemActivator bind attempt, targeting TCP ports 135 and 445. References include CVE: CAN-2003-0352.]

• A.SQL Slammer
• B.WebDav
• C.MyDoom
• D.MS Blaster

env x='(){ :;};echo exploit' bash -c 'cat /etc/passwd'
What is the Shellshock bash vulnerability attempting to do on a vulnerable Linux host?

• A.Removes the passwd file
• B.Changes all passwords in passwd
• C.Display passwd content to prompt
• D.Add new user to the passwd file

As a cybersecurity consultant for SafePath Corp, you have been tasked with implementing a system for secure email communication. The key requirement is to ensure both confidentiality and non-repudiation. While considering various encryption methods, you are inclined towards using a combination of symmetric and asymmetric cryptography. However, you are unsure which cryptographic technique would best serve the purpose. Which of the following options would you choose to meet these requirements?

• A.Use symmetric encryption with the AES algorithm.
• B.Apply asymmetric encryption with RSA and use the public key for encryption.
• C.Apply asymmetric encryption with RSA and use the private key for signing.
• D.Use the Diffie-Hellman protocol for key exchange and encryption.

You have been authorized to perform a penetration test against a website. You want to use Google dorks to footprint the site but only want results that show file extensions. What Google dork operator would you use?

• A.inurl
• B.site
• C.filetype
• D.ext