Free 312-50v12 Exam Braindumps

- (Exam Topic 2)
Clark, a professional hacker, was hired by an organization lo gather sensitive Information about its competitors surreptitiously. Clark gathers the server IP address of the target organization using Whole footprinting. Further, he entered the server IP address as an input to an online tool to retrieve information such as the network range of the target organization and to identify the network topology and operating system used in the network. What is the online tool employed by Clark in the above scenario?

1. A. AOL
2. B. ARIN
3. C. DuckDuckGo
4. D. Baidu

Correct Answer: B
https://search.arin.net/rdap/?query=199.43.0.43

- (Exam Topic 1)
What is the known plaintext attack used against DES which gives the result that encrypting plaintext with one DES key followed by encrypting it with a second DES key is no more secure than using a single key?

1. A. Man-in-the-middle attack
2. B. Meet-in-the-middle attack
3. C. Replay attack
4. D. Traffic analysis attack

Correct Answer: B
https://en.wikipedia.org/wiki/Meet-in-the-middle_attack
The meet-in-the-middle attack (MITM), a known plaintext attack, is a generic space–time tradeoff cryptographic attack against encryption schemes that rely on performing multiple encryption operations in sequence. The MITM attack is the primary reason why Double DES is not used and why a Triple DES key (168-bit) can be bruteforced by an attacker with 256 space and 2112 operations.
The intruder has to know some parts of plaintext and their ciphertexts. Using meet-in-the-middle attacks it is possible to break ciphers, which have two or more secret keys for multiple encryption using the same algorithm. For example, the 3DES cipher works in this way. Meet-in-the-middle attack was first presented by Diffie and Hellman for cryptanalysis of DES algorithm.

- (Exam Topic 1)
Tess King is using the nslookup command to craft queries to list all DNS information (such as Name Servers, host names, MX records, CNAME records, glue records (delegation for child Domains), zone serial number, TimeToLive (TTL) records, etc) for a Domain.
What do you think Tess King is trying to accomplish? Select the best answer.

1. A. A zone harvesting
2. B. A zone transfer
3. C. A zone update
4. D. A zone estimate

Correct Answer: B

- (Exam Topic 3)
An attacker identified that a user and an access point are both compatible with WPA2 and WPA3 encryption. The attacker installed a rogue access point with only WPA2 compatibility in the vicinity and forced the victim to go through the WPA2 four-way handshake to get connected. After the connection was established, the attacker used automated tools to crack WPA2-encrypted messages. What is the attack performed in the above scenario?

1. A. Timing-based attack
2. B. Side-channel attack
3. C. Downgrade security attack
4. D. Cache-based attack

Correct Answer: B

- (Exam Topic 1)
Which of the following is assured by the use of a hash?

1. A. Authentication
2. B. Confidentiality
3. C. Availability
4. D. Integrity

Correct Answer: D