
Free May-2023 212-82 Certification Sample Questions certification Exam
Certification Topics of 212-82 Exam PDF Recently Updated Questions
ECCouncil 212-82 Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Topic 1 |
|
| Topic 2 |
|
| Topic 3 |
|
| Topic 4 |
|
| Topic 5 |
|
| Topic 6 |
|
| Topic 7 |
|
NEW QUESTION 14
Tenda, a network specialist at an organization, was examining logged data using Windows Event Viewer to identify attempted or successful unauthorized activities. The logs analyzed by Tenda include events related to Windows security; specifically, log-on/log-off activities, resource access, and also information based on Windows system's audit policies.
Identify the type of event logs analyzed by Tenda in the above scenario.
- A. Application event log
- B. Setup event log
- C. System event log
- D. Security event log
Answer: D
NEW QUESTION 15
You are a penetration tester working to test the user awareness of the employees of the client xyz. You harvested two employees' emails from some public sources and are creating a client-side backdoor to send it to the employees via email. Which stage of the cyber kill chain are you at?
- A. Command and control
- B. Reconnaissance
- C. Exploitation
- D. Weaponization
Answer: D
NEW QUESTION 16
Steve, a network engineer, was tasked with troubleshooting a network issue that is causing unexpected packet drops. For this purpose, he employed a network troubleshooting utility to capture the ICMP echo request packets sent to the server. He identified that certain packets are dropped at the gateway due to poor network connection.
Identify the network troubleshooting utility employed by Steve in the above scenario.
- A. ipconfig
- B. dnsenurn
- C. traceroute
- D. arp
Answer: C
NEW QUESTION 17
Initiate an SSH Connection to a machine that has SSH enabled in the network. After connecting to the machine find the file flag.txt and choose the content hidden in the file. Credentials for SSH login are provided below:
Hint:
Username: sam
Password: admin@l23
- A. bob2@sam
- B. sam2@bob
- C. bob@sam
- D. sam@bob
Answer: C
NEW QUESTION 18
A software company is developing a new software product by following the best practices for secure application development. Dawson, a software analyst, is checking the performance of the application on the client's network to determine whether end users are facing any issues in accessing the application.
Which of the following tiers of a secure application development lifecycle involves checking the performance of the application?
- A. Quality assurance (QA)
- B. Testing
- C. Staging
- D. Development
Answer: B
NEW QUESTION 19
A text file containing sensitive information about the organization has been leaked and modified to bring down the reputation of the organization. As a safety measure, the organization did contain the MD5 hash of the original file. The file which has been leaked is retained for examining the integrity. A file named "Sensitiveinfo.txt" along with OriginalFileHash.txt has been stored in a folder named Hash in Documents of Attacker Machine-1. Compare the hash value of the original file with the leaked file and state whether the file has been modified or not by selecting yes or no.
- A. Yes
- B. No
Answer: A
NEW QUESTION 20
Karter, a security professional, deployed a honeypot on the organization's network for luring attackers who attempt to breach the network. For this purpose, he configured a type of honeypot that simulates a real OS as well as applications and services of a target network. Furthermore, the honeypot deployed by Karter only responds to preconfigured commands.
Identify the type of Honeypot deployed by Karter in the above scenario.
- A. Low-interaction honeypot
- B. Medium-interaction honeypot
- C. High-interaction honeypot
- D. Pure honeypot
Answer: A
NEW QUESTION 21
Ruben, a crime investigator, wants to retrieve all the deleted files and folders in the suspected media without affecting the original files. For this purpose, he uses a method that involves the creation of a cloned copy of the entire media and prevents the contamination of the original medi a.
Identify the method utilized by Ruben in the above scenario.
- A. Logical acquisition
- B. Sparse acquisition
- C. Bit-stream imaging
- D. Drive decryption
Answer: C
NEW QUESTION 22
Rickson, a security professional at an organization, was instructed to establish short-range communication between devices within a range of 10 cm. For this purpose, he used a mobile connection method that employs electromagnetic induction to enable communication between devices. The mobile connection method selected by Rickson can also read RFID tags and establish Bluetooth connections with nearby devices to exchange information such as images and contact lists.
Which of the following mobile connection methods has Rickson used in above scenario?
- A. ANT
- B. NFC
- C. Cellular communication
- D. Satcom
Answer: B
NEW QUESTION 23
Johnson, an attacker, performed online research for the contact details of reputed cybersecurity firms. He found the contact number of sibertech.org and dialed the number, claiming himself to represent a technical support team from a vendor. He warned that a specific server is about to be compromised and requested sibertech.org to follow the provided instructions. Consequently, he prompted the victim to execute unusual commands and install malicious files, which were then used to collect and pass critical Information to Johnson's machine. What is the social engineering technique Steve employed in the above scenario?
- A. Phishing
- B. Elicitation
- C. Diversion theft
- D. Quid pro quo
Answer: D
NEW QUESTION 24
Thomas, an employee of an organization, is restricted to access specific websites from his office system. He is trying to obtain admin credentials to remove the restrictions. While waiting for an opportunity, he sniffed communication between the administrator and an application server to retrieve the admin credentials. Identify the type of attack performed by Thomas in the above scenario.
- A. Phishing
- B. Vishing
- C. Dumpster diving
- D. Eavesdropping
Answer: D
NEW QUESTION 25
Tristan, a professional penetration tester, was recruited by an organization to test its network infrastructure. The organization wanted to understand its current security posture and its strength in defending against external threats. For this purpose, the organization did not provide any information about their IT infrastructure to Tristan. Thus, Tristan initiated zero-knowledge attacks, with no information or assistance from the organization.
Which of the following types of penetration testing has Tristan initiated in the above scenario?
- A. Gray-box testing
- B. White-box testing
- C. Black-box testing
- D. Translucent-box testing
Answer: C
NEW QUESTION 26
Nancy, a security specialist, was instructed to identify issues related to unexpected shutdown and restarts on a Linux machine. To identify the incident cause, Nancy navigated to a directory on the Linux system and accessed a log file to troubleshoot problems related to improper shutdowns and unplanned restarts.
Identify the Linux log file accessed by Nancy in the above scenario.
- A. /var/log/kern.log
- B. /var/log/lighttpd/
- C. /var/log/boot.log
- D. /var/log/secure
Answer: C
NEW QUESTION 27
The IH&R team in an organization was handling a recent malware attack on one of the hosts connected to the organization's network. Edwin, a member of the IH&R team, was involved in reinstating lost data from the backup medi a. Before performing this step, Edwin ensured that the backup does not have any traces of malware.
Identify the IH&R step performed by Edwin in the above scenario.
- A. Incident containment
- B. Eradication
- C. Notification
- D. Recovery
Answer: D
NEW QUESTION 28
Sam, a software engineer, visited an organization to give a demonstration on a software tool that helps in business development. The administrator at the organization created a least privileged account on a system and allocated that system to Sam for the demonstration. Using this account, Sam can only access the files that are required for the demonstration and cannot open any other file in the system.
Which of the following type of accounts the organization has given to Sam in the above scenario?
- A. Guest account
- B. Service account
- C. Administrator account
- D. User account
Answer: A
NEW QUESTION 29
Arabella, a forensic officer, documented all the evidence related to the case in a standard forensic investigation report template. She filled different sections of the report covering all the details of the crime along with the daily progress of the investigation process.
In which of the following sections of the forensic investigation report did Arabella record the "nature of the claim and information provided to the officers"?
- A. Investigation process
- B. Investigation objectives
- C. Evaluation and analysis process
- D. Evidence information
Answer: D
NEW QUESTION 30
Jaden, a network administrator at an organization, used the ping command to check the status of a system connected to the organization's network. He received an ICMP error message stating that the IP header field contains invalid information. Jaden examined the ICMP packet and identified that it is an IP parameter problem.
Identify the type of ICMP error message received by Jaden in the above scenario.
- A. Type = 8
- B. Type = 5
- C. Type =12
- D. Type = 3
Answer: B
NEW QUESTION 31
An FTP server has been hosted in one of the machines in the network. Using Cain and Abel the attacker was able to poison the machine and fetch the FTP credentials used by the admin. You're given a task to validate the credentials that were stolen using Cain and Abel and read the file flag.txt
- A. red@hat
- B. hat@red
- C. blue@hat
- D. white@hat
Answer: B
NEW QUESTION 32
Miguel, a professional hacker, targeted an organization to gain illegitimate access to its critical information. He identified a flaw in the end-point communication that can disclose the target application's dat a.
Which of the following secure application design principles was not met by the application in the above scenario?
- A. Exception handling
- B. Secure the weakest link
- C. Fault tolerance
- D. Do not trust user input
Answer: A
NEW QUESTION 33
A software company has implemented a wireless technology to track the employees' attendance by recording their in and out timings. Each employee in the company will have an entry card that is embedded with a tag. Whenever an employee enters the office premises, he/she is required to swipe the card at the entrance. The wireless technology uses radio-frequency electromagnetic waves to transfer data for automatic identification and for tracking tags attached to objects.
Which of the following technologies has the software company implemented in the above scenario?
- A. Wi-Fi
- B. Bluetooth
- C. RFID
- D. WiMAX
Answer: C
NEW QUESTION 34
An MNC hired Brandon, a network defender, to establish secured VPN communication between the company's remote offices. For this purpose, Brandon employed a VPN topology where all the remote offices communicate with the corporate office but communication between the remote offices is denied.
Identify the VPN topology employed by Brandon in the above scenario.
- A. Full-mesh VPN topology
- B. Hub-and-Spoke VPN topology
- C. Point-to-Point VPN topology
- D. Star topology
Answer: B
NEW QUESTION 35
Mark, a security analyst, was tasked with performing threat hunting to detect imminent threats in an organization's network. He generated a hypothesis based on the observations in the initial step and started the threat hunting process using existing data collected from DNS and proxy logs.
Identify the type of threat hunting method employed by Mark in the above scenario.
- A. Hybrid hunting
- B. TTP-driven hunting
- C. Data-driven hunting
- D. Entity-driven hunting
Answer: C
NEW QUESTION 36
......
2023 New Preparation Guide of ECCouncil 212-82 Exam: https://www.testkingpass.com/212-82-testking-dumps.html
212-82 Exam Prep Guide: Prep guide for the 212-82 Exam: https://drive.google.com/open?id=1HgJBQ31gu41jUFaI2JIXqhiknKxrRp6d