1. Home
  2. EC-COUNCIL
  3. 312-50V8

Certified Ethical Hacker v8

Exam Details

  • Exam Code
    :312-50V8
  • Exam Name
    :Certified Ethical Hacker v8
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :1008 Q&As
  • Last Updated
    :Apr 15, 2025

EC-COUNCIL EC-COUNCIL Certifications 312-50V8 Questions & Answers

  • Question 201:

    Yancey is a network security administrator for a large electric company. This company provides power for over 100, 000 people in Las Vegas. Yancey has worked for his company for over 15 years and has become very successful. One day, Yancey comes in to work and finds out that the company will be downsizing and he will be out of a job in two weeks. Yancey is very angry and decides to place logic bombs, viruses, Trojans, and backdoors all over the network to take down the company once he has left. Yancey does not care if his actions land him in jail for 30 or more years, he just wants the company to pay for what they are doing to him.

    What would Yancey be considered?

    A. Yancey would be considered a Suicide Hacker

    B. Since he does not care about going to jail,he would be considered a Black Hat

    C. Because Yancey works for the company currently; he would be a White Hat

    D. Yancey is a Hacktivist Hacker since he is standing up to a company that is downsizing

  • Question 202:

    Within the context of Computer Security, which of the following statements describes Social Engineering best?

    A. Social Engineering is the act of publicly disclosing information

    B. Social Engineering is the means put in place by human resource to perform time accounting

    C. Social Engineering is the act of getting needed information from a person rather than breaking into a system

    D. Social Engineering is a training program within sociology studies

  • Question 203:

    In Trojan terminology, what is a covert channel?

    A. A channel that transfers information within a computer system or network in a way that violates the security policy

    B. A legitimate communication path within a computer system or network for transfer of data

    C. It is a kernel operation that hides boot processes and services to mask detection

    D. It is Reverse tunneling technique that uses HTTPS protocol instead of HTTP protocol to establish connections

  • Question 204:

    When a normal TCP connection starts, a destination host receives a SYN (synchronize/start) packet from a source host and sends back a SYN/ACK (synchronize acknowledge). The destination host must then hear an ACK (acknowledge) of the SYN/ACK before the connection is established. This is referred to as the "TCP three-way handshake." While waiting for the ACK to the SYN ACK, a connection queue of finite size on the destination host keeps track of connections waiting to be completed. This queue typically empties quickly since the ACK is expected to arrive a few milliseconds after the SYN ACK.

    How would an attacker exploit this design by launching TCP SYN attack?

    A. Attacker generates TCP SYN packets with random destination addresses towards a victim host

    B. Attacker floods TCP SYN packets with random source addresses towards a victim host

    C. Attacker generates TCP ACK packets with random source addresses towards a victim host

    D. Attacker generates TCP RST packets with random source addresses towards a victim host

  • Question 205:

    What port number is used by LDAP protocol?

    A. 110

    B. 389

    C. 464

    D. 445

  • Question 206:

    Fred is the network administrator for his company. Fred is testing an internal switch. From an external IP address, Fred wants to try and trick this switch into thinking it already has established a session with his computer.

    How can Fred accomplish this?

    A. Fred can accomplish this by sending an IP packet with the RST/SIN bit and the source address of his computer.

    B. He can send an IP packet with the SYN bit and the source address of his computer.

    C. Fred can send an IP packet with the ACK bit set to zero and the source address of the switch.

    D. Fred can send an IP packet to the switch with the ACK bit and the source address of his machine.

  • Question 207:

    You are programming a buffer overflow exploit and you want to create a NOP sled of 200 bytes in the program exploit.c

    What is the hexadecimal value of NOP instruction?

    A. 0x60

    B. 0x80

    C. 0x70

    D. 0x90

  • Question 208:

    This TCP flag instructs the sending system to transmit all buffered data immediately.

    A. SYN

    B. RST

    C. PSH

    D. URG

    E. FIN

  • Question 209:

    The network administrator at Spears Technology, Inc has configured the default gateway Cisco router's access-list as below:

    You are hired to conduct security testing on their network. You successfully brute-force the SNMP community string using a SNMP crack tool. The access-list configured at the router prevents you from establishing a successful connection.

    You want to retrieve the Cisco configuration from the router. How would you proceed?

    A. Use the Cisco's TFTP default password to connect and download the configuration file

    B. Run a network sniffer and capture the returned traffic with the configuration file from the router

    C. Run Generic Routing Encapsulation (GRE) tunneling protocol from your computer to the router masking your IP address

    D. Send a customized SNMP set request with a spoofed source IP address in the range - 192.168.1.0

  • Question 210:

    You work for Acme Corporation as Sales Manager. The company has tight network security restrictions. You are trying to steal data from the company's Sales database (Sales.xls) and transfer them to your home computer. Your company filters and monitors traffic that leaves from the internal network to the Internet.

    How will you achieve this without raising suspicion?

    A. Encrypt the Sales.xls using PGP and e-mail it to your personal gmail account

    B. Package the Sales.xls using Trojan wrappers and telnet them back your home computer

    C. You can conceal the Sales.xls database in another file like photo.jpg or other files and send it out in an innocent looking email or file transfer using Steganography techniques

    D. Change the extension of Sales.xls to sales.txt and upload them as attachment to your hotmail account

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50V8 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.