1. Home
  2. EC-COUNCIL
  3. 312-50V8

Certified Ethical Hacker v8

Exam Details

  • Exam Code
    :312-50V8
  • Exam Name
    :Certified Ethical Hacker v8
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :1008 Q&As
  • Last Updated
    :Apr 15, 2025

EC-COUNCIL EC-COUNCIL Certifications 312-50V8 Questions & Answers

  • Question 511:

    Which technical characteristic do Ethereal/Wireshark, TCPDump, and Snort have in common?

    A. They are written in Java.

    B. They send alerts to security monitors.

    C. They use the same packet analysis engine.

    D. They use the same packet capture utility.

  • Question 512:

    ICMP ping and ping sweeps are used to check for active systems and to check

    A. if ICMP ping traverses a firewall.

    B. the route that the ICMP ping took.

    C. the location of the switchport in relation to the ICMP ping.

    D. the number of hops an ICMP ping takes to reach a destination.

  • Question 513:

    A hacker searches in Google for filetype:pcf to find Cisco VPN config files. Those files may contain connectivity passwords that can be decoded with which of the following?

    A. Cupp

    B. Nessus

    C. Cain and Abel

    D. John The Ripper Pro

  • Question 514:

    A large company intends to use Blackberry for corporate mobile phones and a security analyst is assigned to evaluate the possible threats. The analyst will use the Blackjacking attack method to demonstrate how an attacker could circumvent perimeter defenses and gain access to the corporate network.

    What tool should the analyst use to perform a Blackjacking attack?

    A. Paros Proxy

    B. BBProxy

    C. BBCrack

    D. Blooover

  • Question 515:

    An ethical hacker for a large security research firm performs penetration tests, vulnerability tests, and risk assessments. A friend recently started a company and asks the hacker to perform a penetration test and vulnerability assessment of the new company as a favor.

    What should the hacker's next step be before starting work on this job?

    A. Start by foot printing the network and mapping out a plan of attack.

    B. Ask the employer for authorization to perform the work outside the company.

    C. Begin the reconnaissance phase with passive information gathering and then move into active information gathering.

    D. Use social engineering techniques on the friend's employees to help identify areas that may be susceptible to attack.

  • Question 516:

    Which of the following are advantages of adopting a Single Sign On (SSO) system? (Choose two.)

    A. A reduction in password fatigue for users because they do not need to know multiple passwords when accessing multiple applications

    B. A reduction in network and application monitoring since all recording will be completed at the SSO system

    C. A reduction in system administration overhead since any user login problems can be resolved at the SSO system

    D. A reduction in overall risk to the system since network and application attacks can only happen at the SSO point

  • Question 517:

    What results will the following command yielD. 'NMAP -sS -O -p 123-153 192.168.100.3'?

    A. A stealth scan,opening port 123 and 153

    B. A stealth scan,checking open ports 123 to 153

    C. A stealth scan,checking all open ports excluding ports 123 to 153

    D. A stealth scan,determine operating system,and scanning ports 123 to 153

  • Question 518:

    Which of the following network attacks takes advantage of weaknesses in the fragment reassembly functionality of the TCP/IP protocol stack?

    A. Teardrop

    B. SYN flood

    C. Smurf attack

    D. Ping of death

  • Question 519:

    A security engineer has been asked to deploy a secure remote access solution that will allow employees to connect to the company's internal network.

    Which of the following can be implemented to minimize the opportunity for the man-in-the-middle attack to occur?

    A. SSL

    B. Mutual authentication

    C. IPSec

    D. Static IP addresses

  • Question 520:

    Firewalk has just completed the second phase (the scanning phase) and a technician receives the output shown below. What conclusions can be drawn based on these scan results? TCP port 21 -no response TCP port 22 -no response TCP port 23 -Time-to-live exceeded

    A. The firewall itself is blocking ports 21 through 23 and a service is listening on port 23 of the target host.

    B. The lack of response from ports 21 and 22 indicate that those services are not running on the destination server.

    C. The scan on port 23 passed through the filtering device. This indicates that port 23 was not blocked at the firewall.

    D. The scan on port 23 was able to make a connection to the destination host prompting the firewall to respond with a TTL error.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50V8 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.