Eccouncil 312-38 CND Exam Practice Test Instant Access

Question 1

Phishing-like attempts that present users a fake usage bill of the cloud provider is an example of a:

ACloud to service attack surface

BUser to service attack surface

CUser to cloud attack surface

DCloud to user attack surface

Answer : D

Question 2

Disaster Recovery is a _________.

AOperation-centric strategy

BSecurity-centric strategy

CData-centric strategy

DBusiness-centric strategy

Answer : C

Question 3

The CEO of Max Rager wants to send a confidential message regarding the new formula for its coveted soft drink, SuperMax, to its manufacturer in Texas. However, he fears the message could be altered in

transit. How can he prevent this incident from happening and what element of the message ensures the success of this method?

AHashing; hash code

BSymmetric encryption; secret key

CHashing; public key

DAsymmetric encryption; public key

Answer : A

Question 4

Which BC/DR activity includes action taken toward resuming all services that are dependent on business-critical applications?

AResponse

BRecovery

CResumption

DRestoration

Answer : B

Question 5

Which subdirectory in /var/log directory stores information related to Apache web server?

A/var/log/maillog/

B/var/log/httpd/

C/var/log/apachelog/

D/var/log/lighttpd/

Answer : B

Question 6

John is a senior network security administrator working at a multinational company. He wants to block specific syscalls from being used by container binaries. Which Linux kernel feature restricts actions

within the container?

ACgroups

BLSMs

CSeccomp

DUserns

Answer : C

Question 7

Which of the following things need to be identified during attack surface visualization?

AAttacker's tools, techniques, and procedures

BAuthentication, authorization, and auditing in networks

CRegulatory frameworks, standards and, procedures for organizations

DAssets, topologies, and policies of the organization