• Home
  • Articles
  • [Oct-2021] Pass EC-COUNCIL 312-39 Exam in First Attempt Guaranteed! [Q42-Q64]

[Oct-2021] Pass EC-COUNCIL 312-39 Exam in First Attempt Guaranteed! [Q42-Q64]

Share

[Oct-2021] Pass EC-COUNCIL 312-39 Exam in First Attempt Guaranteed!

Full 312-39 Practice Test and 102 unique questions with explanations waiting just for you, get it now!

NEW QUESTION 42
Which of the following tool can be used to filter web requests associated with the SQL Injection attack?

  • A. UrlScan
  • B. Nmap
  • C. ZAP proxy
  • D. Hydra

Answer: A

 

NEW QUESTION 43
Identify the HTTP status codes that represents the server error.

  • A. 2XX
  • B. 5XX
  • C. 4XX
  • D. 1XX

Answer: B

 

NEW QUESTION 44
Which of the following contains the performance measures, and proper project and time management details?

  • A. Incident Response Process
  • B. Incident Response Policy
  • C. Incident Response Tactics
  • D. Incident Response Procedures

Answer: D

 

NEW QUESTION 45
Identify the event severity level in Windows logs for the events that are not necessarily significant, but may indicate a possible future problem.

  • A. Warning
  • B. Failure Audit
  • C. Information
  • D. Error

Answer: A

 

NEW QUESTION 46
Identify the attack in which the attacker exploits a target system through publicly known but still unpatched vulnerabilities.

  • A. Zero-Day Attack
  • B. DHCP Starvation
  • C. DNS Poisoning Attack
  • D. Slow DoS Attack

Answer: A

 

NEW QUESTION 47
Jony, a security analyst, while monitoring IIS logs, identified events shown in the figure below.

What does this event log indicate?

  • A. XSS Attack
  • B. SQL Injection Attack
  • C. Parameter Tampering Attack
  • D. Directory Traversal Attack

Answer: C

 

NEW QUESTION 48
Which of the following fields in Windows logs defines the type of event occurred, such as Correlation Hint, Response Time, SQM, WDI Context, and so on?

  • A. Keywords
  • B. Level
  • C. Task Category
  • D. Source

Answer: A

 

NEW QUESTION 49
An attacker, in an attempt to exploit the vulnerability in the dynamically generated welcome page, inserted code at the end of the company's URL as follows:
http://technosoft.com.com/<script>alert("WARNING: The application has encountered an error");</script>.
Identify the attack demonstrated in the above scenario.

  • A. SQL Injection Attack
  • B. Denial-of-Service Attack
  • C. Cross-site Scripting Attack
  • D. Session Attack

Answer: D

 

NEW QUESTION 50
Peter, a SOC analyst with Spade Systems, is monitoring and analyzing the router logs of the company and wanted to check the logs that are generated by access control list numbered 210.
What filter should Peter add to the 'show logging' command to get the required output?

  • A. show logging | access 210
  • B. show logging | include 210
  • C. show logging | forward 210
  • D. show logging | route 210

Answer: B

 

NEW QUESTION 51
Which of the following command is used to view iptables logs on Ubuntu and Debian distributions?

  • A. $ tailf /var/log/kern.log
  • B. # tailf /var/log/sys/messages
  • C. $ tailf /var/log/sys/kern.log
  • D. # tailf /var/log/messages

Answer: A

 

NEW QUESTION 52
Which of the following event detection techniques uses User and Entity Behavior Analytics (UEBA)?

  • A. Signature-based detection
  • B. Anomaly-based detection
  • C. Rule-based detection
  • D. Heuristic-based detection

Answer: B

 

NEW QUESTION 53
Jane, a security analyst, while analyzing IDS logs, detected an event matching Regex
/((\%3C)|<)((\%69)|i|(\% 49))((\%6D)|m|(\%4D))((\%67)|g|(\%47))[^\n]+((\%3E)|>)/|.
What does this event log indicate?

  • A. SQL Injection Attack
  • B. XSS Attack
  • C. Parameter Tampering Attack
  • D. Directory Traversal Attack

Answer: B

 

NEW QUESTION 54
Ray is a SOC analyst in a company named Queens Tech. One Day, Queens Tech is affected by a DoS/DDoS attack. For the containment of this incident, Ray and his team are trying to provide additional bandwidth to the network devices and increasing the capacity of the servers.
What is Ray and his team doing?

  • A. Degrading the services
  • B. Blocking the Attacks
  • C. Diverting the Traffic
  • D. Absorbing the Attack

Answer: D

 

NEW QUESTION 55
Which of the following formula represents the risk levels?

  • A. Level of risk = Consequence * Likelihood
  • B. Level of risk = Consequence * Asset Value
  • C. Level of risk = Consequence * Severity
  • D. Level of risk = Consequence * Impact

Answer: D

 

NEW QUESTION 56
Juliea a SOC analyst, while monitoring logs, noticed large TXT, NULL payloads.
What does this indicate?

  • A. DNS Exfiltration Attempt
  • B. Covering Tracks Attempt
  • C. Concurrent VPN Connections Attempt
  • D. DHCP Starvation Attempt

Answer: A

 

NEW QUESTION 57
Which attack works like a dictionary attack, but adds some numbers and symbols to the words from the dictionary and tries to crack the password?

  • A. Bruteforce Attack
  • B. Hybrid Attack
  • C. Birthday Attack
  • D. Rainbow Table Attack

Answer: A

 

NEW QUESTION 58
The Syslog message severity levels are labelled from level 0 to level 7.
What does level 0 indicate?

  • A. Alert
  • B. Debugging
  • C. Emergency
  • D. Notification

Answer: D

 

NEW QUESTION 59
Identify the password cracking attempt involving a precomputed dictionary of plaintext passwords and their corresponding hash values to crack the password.

  • A. Syllable Attack
  • B. Dictionary Attack
  • C. Rainbow Table Attack
  • D. Bruteforce Attack

Answer: B

 

NEW QUESTION 60
What does the HTTP status codes 1XX represents?

  • A. Informational message
  • B. Client error
  • C. Redirection
  • D. Success

Answer: A

 

NEW QUESTION 61
Which of the following formula represents the risk?

  • A. Risk = Likelihood * Impact * Asset Value
  • B. Risk = Likelihood * Severity * Asset Value
  • C. Risk = Likelihood * Impact * Severity
  • D. Risk = Likelihood * Consequence * Severity

Answer: D

 

NEW QUESTION 62
Which of the following stage executed after identifying the required event sources?

  • A. Identifying the monitoring Requirements
  • B. Validating the event source against monitoring requirement
  • C. Implementing and Testing the Use Case
  • D. Defining Rule for the Use Case

Answer: B

 

NEW QUESTION 63
Identify the type of attack, an attacker is attempting on www.example.com website.

  • A. SQL Injection Attack
  • B. Cross-site Scripting Attack
  • C. Denial-of-Service Attack
  • D. Session Attack

Answer: B

 

NEW QUESTION 64
......

Prepare for your EC-COUNCIL certification with the updated Prep4pass 312-39 exam questions: https://drive.google.com/open?id=1V5svgcUGzGyHe_poC1vnHmuLvyFZhrKW

Get Latest 312-39 Dumps Exam Questions in here: https://www.prep4pass.com/312-39_exam-braindumps.html

Related Articles

more
EC-COUNCIL 312-39 Certification Practice Exam

Prep4pass is experienced IT certification exam prep provider with high passing rate, our accurate and valid exam preparation help candidates pass exam 100%.

Latest Exam Prep

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 Prep4pass NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy