EC-COUNCIL 412-79 問題集

質問 1：
The Web parameter tampering attack is based on the manipulation of parameters exchanged between client and server in order to modify application data, such as user credentials and permissions, price and quantity of products, etc. Usually, this information is stored in cookies, hidden form fields, or URL Query Strings, and is used to increase application functionality and control.
This attack takes advantage of the fact that many programmers rely on hidden or fixed fields (such as a hidden tag in a form or a parameter in a URL) as the only security measure for certain operations. Attackers can easily modify these parameters to bypass the security mechanisms that rely on them.

What is the best way to protect web applications from parameter tampering attacks?
A. Using an easily guessable hashing algorithm
B. Applying effective input field filtering parameters
C. Validating some parameters of the web application
D. Minimizing the allowable length of parameters
正解：B

質問 2：
Application security assessment is one of the activity that a pen tester performs in the attack phase. It is designed to identify and assess threats to the organization through bespoke, proprietary applications or systems. It checks the application so that a malicious user cannot access, modify, or destroy data or services within the system.

Identify the type of application security assessment which analyzes the application-based code to confirm that it does not contain any sensitive information that an attacker might use to exploit an application.
A. Source Code Review
B. Functionality Testing
C. Authorization Testing
D. Web Penetration Testing
正解：A

質問 3：
Which of the following policy forbids everything with strict restrictions on all usage of the company systems and network?
A. Paranoid Policy
B. Prudent Policy
C. Promiscuous Policy
D. Information-Protection Policy
正解：A

質問 4：
Traceroute is a computer network diagnostic tool for displaying the route (path) and measuring transit delays of packets across an Internet Protocol (IP) network. It sends a sequence of three Internet Control Message Protocol (ICMP) echo request packets addressed to a destination host.
The time-to-live (TTL) value, also known as hop limit, is used in determining the intermediate routers being traversed towards the destination.

During routing, each router reduces packets' TTL value by
A. 2
B. 3
C. 4
D. 1
正解：D

質問 5：
Which of the following attributes has a LM and NTLMv1 value as 64bit + 64bit + 64bit and NTLMv2 value as
128 bits?
A. C/R Key Length
B. C/R Value Length
C. Hash Key Length
D. Hash Value Length
正解：B

質問 6：
A WHERE clause in SQL specifies that a SQL Data Manipulation Language (DML) statement should only affect rows that meet specified criteria. The criteria are expressed in the form of predicates. WHERE clauses are not mandatory clauses of SQL DML statements, but can be used to limit the number of rows affected by a SQL DML statement or returned by a query.

A pen tester is trying to gain access to a database by inserting exploited query statements with a WHERE clause. The pen tester wants to retrieve all the entries from the database using the WHERE clause from a particular table (e.g. StudentTable).
What query does he need to write to retrieve the information?
A. SELECT * FROM StudentTable WHERE roll_number = '' or '1' = '1'
B. EXTRACT* FROM StudentTable WHERE roll_number = 1 order by 1000
C. RETRIVE * FROM StudentTable WHERE roll_number = 1'#
D. DUMP * FROM StudentTable WHERE roll_number = 1 AND 1=1-
正解：A