1. Home
  2. EC-COUNCIL
  3. 312-50V9

EC-Council Certified Ethical Hacker (C|EH v9)

Exam Details

  • Exam Code
    :312-50V9
  • Exam Name
    :EC-Council Certified Ethical Hacker (C|EH v9)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :614 Q&As
  • Last Updated
    :Apr 14, 2025

EC-COUNCIL EC-COUNCIL Certifications 312-50V9 Questions & Answers

  • Question 481:

    In the context of password security, a simple dictionary attack involves loading a dictionary file (a text file full of dictionary words) into a cracking application such as L0phtCrack or John the Ripper, and running it against user accounts located by the application. The larger the word and word fragment selection, the more effective the dictionary attack is. The brute force method is the most inclusive, although slow. It usually tries every possible letter and number combination in its automated exploration. If you would use both brute force and dictionary methods combined together to have variation of words, what would you call such an attack?

    A. Full Blown

    B. Thorough

    C. Hybrid

    D. BruteDics

  • Question 482:

    A user on your Windows 2000 network has discovered that he can use L0phtcrack to sniff the SMB exchanges which carry user logons. The user is plugged into a hub with 23 other systems. However, he is unable to capture any logons though he knows that other users are logging in. What do you think is the most likely reason behind this?

    A. There is a NIDS present on that segment.

    B. Kerberos is preventing it.

    C. Windows logons cannot be sniffed.

    D. L0phtcrack only sniffs logons to web servers.

  • Question 483:

    You are attempting to crack LM Manager hashed from Windows 2000 SAM file. You will be using LM Brute force hacking tool for decryption. What encryption algorithm will you be decrypting?

    A. MD4

    B. DES

    C. SHA

    D. SSL

  • Question 484:

    Which of the following algorithms can be used to guarantee the integrity of messages being sent, in transit, or stored?

    A. symmetric algorithms

    B. asymmetric algorithms

    C. hashing algorithms

    D. integrity algorithms

  • Question 485:

    Study the snort rule given below:

    From the options below, choose the exploit against which this rule applies.

    A. WebDav

    B. SQL Slammer

    C. MS Blaster

    D. MyDoom

  • Question 486:

    Bob is doing a password assessment for one of his clients. Bob suspects that security policies are not in place. He also suspects that weak passwords are probably the norm throughout the company he is evaluating. Bob is familiar with password weaknesses and key loggers. Which of the following options best represents the means that Bob can adopt to retrieve passwords from his clients hosts and servers?

    A. Hardware, Software, and Sniffing.

    B. Hardware and Software Keyloggers.

    C. Passwords are always best obtained using Hardware key loggers.

    D. Software only, they are the most effective.

  • Question 487:

    A network admin contacts you. He is concerned that ARP spoofing or poisoning might occur on his network. What are some things he can do to prevent it? Select the best answers.

    A. Use port security on his switches.

    B. Use a tool like ARPwatch to monitor for strange ARP activity.

    C. Use a firewall between all LAN segments.

    D. If you have a small network, use static ARP entries.

    E. Use only static IP addresses on all PC's.

  • Question 488:

    Peter, a Network Administrator, has come to you looking for advice on a tool that would help him perform

    SNMP enquires over the network.

    Which of these tools would do the SNMP enumeration he is looking for? Select the best answers.

    A. SNMPUtil

    B. SNScan

    C. SNMPScan

    D. Solarwinds IP Network Browser

    E. NMap

  • Question 489:

    If a token and 4-digit personal identification number (PIN) are used to access a computer system and the token performs off-line checking for the correct PIN, what type of attack is possible?

    A. Birthday

    B. Brute force

    C. Man-in-the-middle

    D. Smurf

  • Question 490:

    Why would you consider sending an email to an address that you know does not exist within the company you are performing a Penetration Test for?

    A. To determine who is the holder of the root account

    B. To perform a DoS

    C. To create needless SPAM

    D. To illicit a response back that will reveal information about email servers and how they treat undeliverable mail

    E. To test for virus protection

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50V9 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.