1. Home
  2. EC-COUNCIL
  3. 312-50

Certified Ethical Hacker

Exam Details

  • Exam Code
    :312-50
  • Exam Name
    :Certified Ethical Hacker
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :614 Q&As
  • Last Updated
    :Apr 16, 2025

EC-COUNCIL EC-COUNCIL Certifications 312-50 Questions & Answers

  • Question 391:

    Matthew re-injects a captured wireless packet back onto the network. He does this hundreds of times within a second. The packet is correctly encrypted and Matthew assumes it is an ARP request packet. The wireless host responds with a

    stream of responses, all individually encrypted with different IVs.

    What is this attack most appropriately called?

    A. Spoof attack

    B. Replay attack

    C. Injection attack

    D. Rebound attack

  • Question 392:

    In order to attack a wireless network, you put up an access point and override the signal of the real access point. As users send authentication data, you are able to capture it. What kind of attack is this?

    A. WEP attack

    B. Drive by hacking

    C. Rogue access point attack

    D. Unauthorized access point attack

  • Question 393:

    Jacob would like your advice on using a wireless hacking tool that can save him time and get him better results with lesser packets. You would like to recommend a tool that uses KoreK's implementation. Which tool would you recommend from the list below?

    A. Kismet

    B. Shmoo

    C. Aircrack

    D. John the Ripper

  • Question 394:

    Jackson discovers that the wireless AP transmits 128 bytes of plaintext, and the station responds by encrypting the plaintext. It then transmits the resulting ciphertext using the same key and cipher that are used by WEP to encrypt subsequent network traffic. What authentication mechanism is being followed here?

    A. no authentication

    B. single key authentication

    C. shared key authentication

    D. open system authentication

  • Question 395:

    Bob reads an article about how insecure wireless networks can be. He gets approval from his management to implement a policy of not allowing any wireless devices on the network. What other steps does Bob have to take in order to successfully implement this? (Select 2 answer.)

    A. Train users in the new policy.

    B. Disable all wireless protocols at the firewall.

    C. Disable SNMP on the network so that wireless devices cannot be configured.

    D. Continuously survey the area for wireless devices.

  • Question 396:

    On wireless networks, SSID is used to identify the network. Why are SSID not considered to be a good security mechanism to protect a wireless networks?

    A. The SSID is only 32 bits in length.

    B. The SSID is transmitted in clear text.

    C. The SSID is the same as the MAC address for all vendors.

    D. The SSID is to identify a station, not a network.

  • Question 397:

    In order to attack a wireless network, you put up an access point and override the signal of the real access point. As users send authentication data, you are able to capture it. What kind of attack is this?

    A. Rouge access point attack

    B. Unauthorized access point attack

    C. War Chalking

    D. WEP attack

  • Question 398:

    Access control is often implemented through the use of MAC address filtering on wireless Access Points. Why is this considered to be a very limited security measure?

    A. Vendors MAC address assignment is published on the Internet.

    B. The MAC address is not a real random number.

    C. The MAC address is broadcasted and can be captured by a sniffer.

    D. The MAC address is used properly only on Macintosh computers.

  • Question 399:

    While probing an organization you discover that they have a wireless network. From your attempts to connect to the WLAN you determine that they have deployed MAC filtering by using ACL on the access points. What would be the easiest way to circumvent and communicate on the WLAN?

    A. Attempt to crack the WEP key using Airsnort.

    B. Attempt to brute force the access point and update or delete the MAC ACL.

    C. Steel a client computer and use it to access the wireless network.

    D. Sniff traffic if the WLAN and spoof your MAC address to one that you captured.

  • Question 400:

    802.11b is considered a ____________ protocol.

    A. Connectionless

    B. Secure

    C. Unsecure

    D. Token ring based

    E. Unreliable

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.