Enjoy 15% Discount With Coupon 15off

EC-Council 312-38 Certified Network Defender Online Training

EC-Council 312-38 Certified Network Defender Online Training

EC-Council 312-38 Online Training

The questions for 312-38 were last updated at Apr 24,2024.
  • Exam Code: 312-38
  • Exam Name: Certified Network Defender
  • Certification Provider: EC-Council
  • Latest update: Apr 24,2024
Question #1

Which phase of vulnerability management deals with the actions taken for correcting the discovered vulnerability?

  • A . Mitigation
  • B . Assessment
  • C . Remediation
  • D . Verification

Reveal Solution Hide Solution

Question #2

How is application whitelisting different from application blacklisting?

  • A . It allows all applications other than the undesirable applications
  • B . It allows execution of trusted applications in a unified environment
  • C . It allows execution of untrusted applications in an isolated environment
  • D . It rejects all applications other than the allowed applications

Reveal Solution Hide Solution

Question #3

John, the network administrator and he wants to enable the NetFlow feature in Cisco routers to collect and monitor the IP network traffic passing through the router.

Which command will John use to enable NetFlow on an interface?

  • A . Router(Config-if) # IP route – cache flow
  • B . Router# Netmon enable
  • C . Router IP route
  • D . Router# netflow enable

Reveal Solution Hide Solution

Question #4

Sean has built a site-to-site VPN architecture between the head office and the branch office of his company. When users in the branch office and head office try to communicate with each other, the traffic is encapsulated. As the traffic passes though the gateway, it is encapsulated again. The header and payload both are encapsulated. This second encapsulation occurs only in the __________implementation of a VPN.

  • A . Full Mesh Mode
  • B . Point-to-Point Mode
  • C . Transport Mode
  • D . Tunnel Mode

Reveal Solution Hide Solution

Question #5

Sophie has been working as a Windows network administrator at an MNC over the past 7 years. She wants to check whether SMB1 is enabled or disabled.

Which of the following command allows Sophie to do so?

  • A . Get-WindowsOptionalFeatures -Online -FeatureNames SMB1Protocol
  • B . Get-WindowsOptionalFeature -Online -FeatureName SMB1Protocol
  • C . Get-WindowsOptionalFeature -Online -FeatureNames SMB1Protocol
  • D . Get-WindowsOptionalFeatures -Online -FeatureName SMB1Protocol

Reveal Solution Hide Solution

Question #6

Cindy is the network security administrator for her company. She just got back from a security conference in Las Vegas where they talked about all kinds of old and new security threats; many of which she did not know of. She is worried about the current security state of her company’s network so she decides to start scanning the network from an external IP address. To see how some of the hosts on her network react, she sends out SYN packets to an IP range. A number of IPs responds with a SYN/ACK response. Before the connection is established, she sends RST packets to those hosts to stop the session. She has done this to see how her intrusion detection system will log the traffic.

What type of scan is Cindy attempting here?

  • A . The type of scan she is usinq is called a NULL scan.
  • B . Cindy is using a half-open scan to find live hosts on her network.
  • C . Cindy is attempting to find live hosts on her company’s network by using a XMAS scan.
  • D . She is utilizing a RST scan to find live hosts that are listening on her network.

Reveal Solution Hide Solution

Question #7

Which of the following helps prevent executing untrusted or untested programs or code from untrusted or unverified third-parties?

  • A . Application sandboxing
  • B . Deployment of WAFS
  • C . Application whitelisting
  • D . Application blacklisting

Reveal Solution Hide Solution

Question #8

A VPN Concentrator acts as a bidirectional tunnel endpoint among host machines.

What are the other f unction(s) of the device? (Select all that apply)

  • A . Provides access memory, achieving high efficiency
  • B . Assigns user addresses
  • C . Enables input/output (I/O) operations
  • D . Manages security keys

Reveal Solution Hide Solution

Question #9

Damian is the chief security officer of Enigma Electronics. To block intruders and prevent any environmental accidents, he needs to set a two-factor authenticated keypad lock at the entrance, rig a fire suppression system, and link any video cameras at various corridors to view the feeds in the surveillance room.

What layer of network defense-in-depth strategy is he trying to follow?

  • A . Physical
  • B . Perimeter
  • C . Policies and procedures
  • D . Host

Reveal Solution Hide Solution

Question #10

John wants to implement a packet filtering firewall in his organization’s network.

What TCP/IP layer does a packet filtering firewall work on?

  • A . Application layer
  • B . Network Interface layer
  • C . TCP layer
  • D . IP layer

Reveal Solution Hide Solution

Next Questions
Latest 312-38 Dumps Valid Version with 120 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download 312-38 PDF
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments

Related Posts

24Oct

EC-Council 312-50v10 Certified Ethical Hacker Exam (C|EH v10) Online Training

Question #1 As an Ethical Hacker you are capturing traffic from your customer network with Wireshark and you need to find... read more

16Oct

EC-Council 312-50v11 Certified Ethical Hacker Exam – C|EH v11 Online Training

Question #1 Alice, a professional hacker, targeted an organization's cloud services. She infiltrated the targets MSP provider by sending spear-phishing emails... read more

25Oct

EC-Council 312-49v10 Computer Hacking Forensic Investigator (CHFI-v10) Online Training

Question #1 Larry is an IT consultant who works for corporations and government agencies. Larry plans on shutting down the city's... read more

11Oct

EC-Council 312-50v12 Certified Ethical Hacker Exam (CEHv12) Online Training

Question #1 Which of the following tools performs comprehensive tests against web servers, including dangerous files and CGIs? A . NiktoB .... read more

12Oct

EC-Council 512-50 EC-Council Information Security Manager (E|ISM) Online Training

Question #1 When choosing a risk mitigation method what is the MOST important factor? A . Approval from the board of directorsB... read more

28Oct

EC-Council ECSAv10 EC-Council Certified Security Analyst Online Training

Question #1 Irin is a newly joined penetration tester for XYZ Ltd. While joining, as a part of her training, she... read more

19Oct

EC-Council 412-79V10 EC-Council Certified Security Analyst (ECSA) V10 Online Training

Question #1 A WHERE clause in SQL specifies that a SQL Data Manipulation Language (DML) statement should only affect rows that... read more

15Oct

EC-Council 312-85 Certified Threat Intelligence Analyst Online Training

Question #1 Jian is a member of the security team at Trinity, Inc. He was conducting a real-time assessment of system... read more

01Oct

EC-Council 712-50 EC-Council Certified CISO (CCISO) Online Training

Question #1 Which of the following functions MUST your Information Security Governance program include for formal organizational reporting? A . Audit and... read more

28Oct

EC-Council 312-39 Certified SOC Analyst (CSA) Online Training

Question #1 Jane, a security analyst, while analyzing IDS logs, detected an event matching Regex /((%3C)|<)((%69)|i|(% 49))((%6D)|m|(%4D))((%67)|g|(%47))[^n]+((%3E)|>)/|. What does this event... read more