Online Access Free EC-COUNCIL.312-38.v2024-12-06.q243 Practice Test (Page 40)

312-38 Exam Question 191

A newly joined network administrator wants to assess the organization against possible risk. He notices the organization doesn't have a________identified which helps measure how risky an activity is.

A.Risk Matrix

B.Risk levels

C.Risk Severity

D.Key Risk Indicator

312-38 Exam Question 192

A company wants to implement a data backup method which allows them to encrypt the data ensuring its security as well as access at any time and from any location. What is the appropriate backup method that should be implemented?

A.Offsite backup

B.Cloud backup

C.Hot site backup

D.Onsite backup

312-38 Exam Question 193

You are an IT security consultant working on a contract for a large manufacturing company to audit their entire network. After performing all the tests and building your report, you present a number of recommendations to the company and what they should implement to become more secure. One recommendation is to install a network-based device that notifies IT employees whenever malicious or questionable traffic is found. From your talks with the company, you know that they do not want a device that actually drops traffic completely, they only want notification.
What type of device are you suggesting?

A.You are suggesting a NIPS device

B.A NIDS device would work best for the company

C.The best solution to cover the needs of this company would be a HIDS device.

D.A HIPS device would best suite this company

312-38 Exam Question 194

Which of the following refers to the exploitation of a valid computer session to gain unauthorized access to information or services in a computer system?

A.Spoofing

B.Smurf

C.Session hijacking

D.Phishing

Correct Answer: C

Session hijacking refers to the exploitation of a valid computer session to gain unauthorized access to information or services in a computer system. In particular, it is used to refer to the theft of a magic cookie used to authenticate a user to a remote server. It has particular relevance to Web developers, as the HTTP cookies used to maintain a session on many Web sites can be easily stolen by an attacker using an intermediary computer or with access to the saved cookies on the victim's computer (see HTTP cookie theft).
TCP session hijacking is when a hacker takes over a TCP session between two machines. Since most authentication only occurs at the start of a TCP session, this allows the hacker to gain access to a machine.
Answer option A is incorrect. Spoofing is a technique that makes a transmission appear to have come from an authentic source by forging the IP address, email address, caller ID, etc. In IP spoofing, a hacker modifies packet headers by using someone else's IP address to hide his identity. However, spoofing cannot be used while surfing the Internet, chatting on-line, etc. because forging the source IP address causes the responses to be misdirected.
Answer option B is incorrect. Smurf is an attack that generates significant computer network traffic on a victim network. This is a type of denial-of-service attack that floods a target system via spoofed broadcast ping messages. In such attacks, a perpetrator sends a large amount of ICMP echo request (ping) traffic to IP broadcast addresses, all of which have a spoofed source IP address of the intended victim. If the routing device delivering traffic to those broadcast addresses delivers the IP broadcast to all hosts, most hosts on that IP network will take the ICMP echo request and reply to it with an echo reply, which multiplies the traffic by the number of hosts responding.
Answer option D is incorrect. Phishing is a type of scam that entices a user to disclose personal information such as social security number, bank account details, or credit card number. An example of phishing attack is a fraudulent e-mail that appears to come from a user's bank asking to change his online banking password.
When the user clicks the link available on the e-mail, it directs him to a phishing site which replicates the original bank site. The phishing site lures the user to provide his personal information.

312-38 Exam Question 195

Fill in the blank with the appropriate term. The _____________is an application layer protocol that is used between workstations and routers for transporting SNA/NetBIOS traffic over TCP sessions.

Other Version: 789EC-COUNCIL.312-38.v2026-02-04.q327; 1914EC-COUNCIL.312-38.v2024-07-02.q356; 1194EC-COUNCIL.312-38.v2023-11-22.q97; 2098EC-COUNCIL.312-38.v2023-03-20.q208; 69EC-COUNCIL.Preppdf.312-38.v2022-03-31.by.jennifer.110q.pdf; 2838EC-COUNCIL.312-38.v2022-03-11.q110; 2836EC-COUNCIL.312-38.v2022-02-11.q117; 91EC-COUNCIL.Exam4docs.312-38.v2021-09-01.by.patricia.114q.pdf

Latest Upload: 195IIA.IIA-CIA-Part3.v2026-06-17.q220; 146WGU.Introduction-to-IT.v2026-06-17.q67; 190CompTIA.220-1202.v2026-06-16.q110; 128TheInstitutes.CPCU-500.v2026-06-16.q25; 200ACAMS.CAMS7-CN.v2026-06-16.q170; 207CBIC.CIC.v2026-06-15.q123; 138Peoplecert.ITIL-4-Specialist-High-velocity-IT.v2026-06-15.q16; 240HashiCorp.Terraform-Associate-004.v2026-06-15.q126; 142Peoplecert.ITILFNDv5.v2026-06-15.q26; 141Workday.Workday-Pro-HCM-Reporting.v2026-06-15.q28

312-38 Exam Question 191

312-38 Exam Question 192

312-38 Exam Question 193

312-38 Exam Question 194

312-38 Exam Question 195

Download PDF File