New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: Board70

ECCouncil 312-50 Actual Questions

Page: 9 / 17
Question 36

When does the Payment Card Industry Data Security Standard (PCI-DSS) require organizations to perform external and internal penetration testing?

Options:

A.

At least once a year and after any significant upgrade or modification

B.

At least once every three years or after any significant upgrade or modification

C.

At least twice a year or after any significant upgrade or modification

D.

At least once every two years and after any significant upgrade or modification

Question 37

In the OSI model, where does PPTP encryption take place?

Options:

A.

Transport layer

B.

Application layer

C.

Data link layer

D.

Network layer

Question 38

The Open Web Application Security Project (OWASP) testing methodology addresses the need to secure web applications by providing which one of the following services?

Options:

A.

An extensible security framework named COBIT

B.

A list of flaws and how to fix them

C.

Web application patches

D.

A security certification for hardened web applications

Question 39

The intrusion detection system at a software development company suddenly generates multiple alerts regarding attacks against the company's external webserver, VPN concentrator, and DNS servers. What should the security team do to determine which alerts to check first?

Options:

A.

Investigate based on the maintenance schedule of the affected systems.

B.

Investigate based on the service level agreements of the systems.

C.

Investigate based on the potential effect of the incident.

D.

Investigate based on the order that the alerts arrived in.

Page: 9 / 17
Exam Code: 312-50
Exam Name: Ethical Hacking and Countermeasures
Last Update: Dec 27, 2024
Questions: 765
312-50 pdf

312-50 PDF

$25.5  $84.99
312-50 Engine

312-50 Testing Engine

$28.5  $94.99
312-50 PDF + Engine

312-50 PDF + Testing Engine

$40.5  $134.99