Exam 312-50v12 topic 1 question 297 discussion

Actual exam question from ECCouncil's 312-50v12

Question #: 297
Topic #: 1

Dayn, an attacker, wanted to detect if any honeypots are installed in a target network. For this purpose, he used a time-based TCP fingerprinting method to validate the response to a normal computer and the response of a honeypot to a manual SYN request.

Which of the following techniques is employed by Dayn to detect honeypots?

A. Detecting honeypots running on VMware
B. Detecting the presence of Snort_inline honeypots
C. Detecting the presence of Honeyd honeypots
D. Detecting the presence of Sebek-based honeypots

Show Suggested Answer

Suggested Answer: C 🗳️

by qtygbapjpesdayazko at Feb. 24, 2024, 12:59 p.m.

Comments

Submit Cancel

shaody

3 months ago

Selected Answer: C

Attacker can identify the presence of honeyd honeypot by performing time-based TCP fingerprinting methods.

upvoted 1 times

...

sunce12

5 months ago

C. Detecting the presence of Honeyd honeypots

upvoted 1 times

...

LordXander

7 months, 3 weeks ago

Selected Answer: C

CEHv12 - 1760 / 1759

upvoted 1 times

...

insaniunt

9 months ago

Selected Answer: C

C. Detecting the presence of Honeyd honeypots

upvoted 3 times

...

Most Voted

Save Cancel

Loading ...

Exam 312-50v12 All Questions

View all questions & answers for the 312-50v12 exam

Exam 312-50v12 topic 1 question 297 discussion

Comments

shaody

sunce12

LordXander

insaniunt

Get IT Certification

New Version GCP Professional Cloud Architect Certificate & Helpful Information

The 5 Most In-Demand Project Management Certifications of 2019