1. Home
  2. EC-COUNCIL
  3. 312-50

Certified Ethical Hacker

Exam Details

  • Exam Code
    :312-50
  • Exam Name
    :Certified Ethical Hacker
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :614 Q&As
  • Last Updated
    :Apr 07, 2025

EC-COUNCIL EC-COUNCIL Certifications 312-50 Questions & Answers

  • Question 691:

    Peter extracts the SID list from Windows 2008 Server machine using the hacking tool "SIDExtracter". Here is the output of the SIDs:

    From the above list identify the user account with System Administrator privileges?

    A. John

    B. Rebecca

    C. Sheela

    D. Shawn

    E. Somia

    F. Chang

    G. Micah

  • Question 692:

    Jayden is a network administrator for her company. Jayden wants to prevent MAC spoofing on all the Cisco switches in the network. How can she accomplish this?

    A. Jayden can use the command: ip binding set.

    B. Jayden can use the command: no ip spoofing.

    C. She should use the command: no dhcp spoofing.

    D. She can use the command: ip dhcp snooping binding.

  • Question 693:

    In TCP communications there are 8 flags; FIN, SYN, RST, PSH, ACK, URG, ECE, CWR. These flags have decimal numbers assigned to them:

    FIN = 1 SYN = 2 RST = 4 PSH = 8 ACK = 16 URG = 32 ECE = 64 CWR = 128

    Jason is the security administrator of ASPEN Communications. He analyzes some traffic using Wireshark and has enabled the following filters.

    What is Jason trying to accomplish here?

    A. SYN, FIN, URG and PSH

    B. SYN, SYN/ACK, ACK

    C. RST, PSH/URG, FIN

    D. ACK, ACK, SYN, URG

  • Question 694:

    Neil is a network administrator working in Istanbul. Neil wants to setup a protocol analyzer on his network that will receive a copy of every packet that passes through the main office switch. What type of port will Neil need to setup in order to accomplish this?

    A. Neil will have to configure a Bridged port that will copy all packets to the protocol analyzer.

    B. Neil will need to setup SPAN port that will copy all network traffic to the protocol analyzer.

    C. He will have to setup an Ether channel port to get a copy of all network traffic to the analyzer.

    D. He should setup a MODS port which will copy all network traffic.

  • Question 695:

    What type of session hijacking attack is shown in the exhibit?

    A. Cross-site scripting Attack

    B. SQL Injection Attack

    C. Token sniffing Attack

    D. Session Fixation Attack

  • Question 696:

    How do you defend against DHCP Starvation attack?

    A. Enable ARP-Block on the switch

    B. Enable DHCP snooping on the switch

    C. Configure DHCP-BLOCK to 1 on the switch

    D. Install DHCP filters on the switch to block this attack

  • Question 697:

    How does traceroute map the route a packet travels from point A to point B?

    A. Uses a TCP timestamp packet that will elicit a time exceeded in transit message

    B. Manipulates the value of the time to live (TTL) within packet to elicit a time exceeded in transit message

    C. Uses a protocol that will be rejected by gateways on its way to the destination

    D. Manipulates the flags within packets to force gateways into generating error messages

  • Question 698:

    Vulnerability scanners are automated tools that are used to identify vulnerabilities and misconfigurations of hosts. They also provide information regarding mitigating discovered vulnerabilities.

    Which of the following statements is incorrect?

    A. Vulnerability scanners attempt to identify vulnerabilities in the hosts scanned.

    B. Vulnerability scanners can help identify out-of-date software versions, missing patches, or system upgrades

    C. They can validate compliance with or deviations from the organization's security policy

    D. Vulnerability scanners can identify weakness and automatically fix and patch the vulnerabilities without user intervention

  • Question 699:

    An attacker finds a web page for a target organization that supplies contact information for the company. Using available details to make the message seem authentic, the attacker drafts e-mail to an employee on the contact page that appears to come from an individual who might reasonably request confidential information, such as a network administrator.

    The email asks the employee to log into a bogus page that requests the employee's user name and password or click on a link that will download spyware or other malicious programming.

    Google's Gmail was hacked using this technique and attackers stole source code and sensitive data from Google servers. This is highly sophisticated attack using zero-day exploit vectors, social engineering and malware websites that

    focused on targeted individuals working for the company.

    What is this deadly attack called?

    A. Spear phishing attack

    B. Trojan server attack

    C. Javelin attack

    D. Social networking attack

  • Question 700:

    What type of Virus is shown here?

    A. Cavity Virus

    B. Macro Virus

    C. Boot Sector Virus

    D. Metamorphic Virus

    E. Sparse Infector Virus

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.