ECCouncil 312-96 Exam Questions and Answers, Certified Application Security Engineer (CASE) JAV | SPOTO

Fred is planning on using the windows socket application ClientApp.exe program to create a client-side application that his employees will use. This program will access backend programs from two different remote sites over WAN connections. If Fred does not make any modifications to the ClientApp.exe default settings, what port must he have the network engineer open in order for the application to communicate?

Devon is writing the following code to avoid what?

What would be the result of the following code? #include #include int main(int argc, char *argv[]) char *input=malloc(20); char *output=malloc(20); strcpy(output, normal output); strcpy(input, argv[1]); printf(input at %p: %s\n, input, input); printf(output at %p: %s\n, output, output); printf(\n\n%s\n, output);

Which Linux command will securely delete a file by overwriting its contents?

David is an applications developer working for Dewer and Sons law firm in Los Angeles David just completed a course on writing secure code and was enlightened by all the intricacies of how code must be rewritten many times to ensure its security. David decides to go through all the applications he has written and change them to be more secure. David comes across the following snippet in one of his programs: #include int main(int argc, char **argv) int number = 5; printf(argv[1]); putchar(\n); prin

What type of encryption will be used from the following code? Dim Publickey As Byte() = {214,46,220,83,160,73,40,39,201 155,19,202,3,11,191,178,56,74,90,36,248,103, 18,144,170,163,145,87,54,61,34,220,222,207, 137,149,173,14,92,120,206,222,158,28,40,24, 30,16,175,108,128,35,203,118,40,121,113,125, 216,130,11,24,9,0,48,194,240,105,44,76,34,57, 249,228,125,80,38,9,136,29,117,207,139,168,181, 85,137,126,10,126,242,120,247,121,8,100,12,201, 171,38,226,193,180,190,117,177,87,143,242,213, 11,44,18,0,113,93,106,99,

Harold is programming an application that needs to be incorporate data encryption. Harold decides to utilize an encryption algorithm that uses 4-bit working registers instead of the usual 2-bit working registers. What encryption algorithm has Harold decided to use?

After learning from an external auditor that his code was susceptible to attack, George decided to rewrite some of his code to look like the following. What is George preventing by changing the code? public voif doContent(...) { ... String s; if ((s = getUsernameByID(userid)) != null) { s = StringUtils.encodeToHTML(s, 50); response.write(
Applicant: + s + ); ...

Shayla is designing a web-based application that will pass data to and from a company extranet. This data is very sensitive and must be protected at all costs. Shayla will use a digital certificate and a digital signature to protect the data. The digital signature she has chosen to use is based on the difficulty in computing discrete logarithms. Which digital signature has she chosen?

What is defined as the practice of using selected process techniques to improve the quality of a software development effort?

Although software companies despise software piracy, they often realize that illegal release of their product parallel to the legal release can actually increase the item's user base. These illegal versions of the software can oftentimes increase actual legal buyers. What is this process called where illegal copies are released to the public along with the legal versions?

What two encryption methods are used by the Secure Electronic Transaction system?

Steve is using the libcap library to create scripts for capturing and analyzing network traffic. Steve has never used libcap before and is struggling with finding out the correct functions to use. Steve is trying to pick the default network interface in his script and does not know which function to use. Which function would he use to correctly choose the default interface in the script?

Processes having the “CAP_NET_BIND_SERVICE” can listen on which ports?

What security package is implemented with the following code? dwStatus = DsMakSpn ldap, MyServer.Mydomain.com, NULL, 0, NULL, &pcSpnLength, pszSpn ); rpcStatus = RpcServerRegisterAuthInfo psz RPC_C_AUTHN_GSS_NEGOTIATE, NULL, NULL );