• Home
  • Articles
  • [Q138-Q160] 312-50v10 Dumps are Available for Instant Access [2025]

[Q138-Q160] 312-50v10 Dumps are Available for Instant Access [2025]

Share

312-50v10 Dumps are Available for Instant Access [2025]

Practice with these 312-50v10 dumps Certification Sample Questions


The CEH v10 certification exam is designed to test the knowledge and skills of professionals in various aspects of ethical hacking, such as reconnaissance, scanning networks, enumeration, system hacking, and Trojans and backdoors. 312-50v10 exam also covers topics such as sniffing and session hijacking, social engineering, web application hacking, wireless network hacking, and cryptography. 312-50v10 exam is designed to test the knowledge and skills of professionals in both theoretical and practical aspects of ethical hacking.


312-50v10 Exam topics

Candidates must know the exam topics before they start of preparation. Because it will really help them in hitting the core. Our 312-50v10 exam dumps will include the following topics:

  • Viruses and Works
  • System Hacking
  • Scanning Networks
  • Social Engineering
  • SQL Injection
  • Hacking Wireless Networks
  • Cryptography

The CEH v10 certification is suitable for professionals who want to pursue a career in ethical hacking or who want to enhance their knowledge and skills in the field of information security. Certified Ethical Hacker Exam (CEH v10) certification is also suitable for professionals who want to demonstrate their expertise in ethical hacking to their employers and clients. The CEH v10 certification is recognized by various organizations and government agencies, and it is also required by many companies as a prerequisite for certain jobs in the field of information security.

 

NEW QUESTION # 138
It is an entity or event with the potential to adversely impact a system through unauthorized access, destruction, disclosure, denial of service or modification of data.
Which of the following terms best matches the definition?

  • A. Threat
  • B. Vulnerability
  • C. Attack
  • D. Risk

Answer: A

Explanation:
A threat is at any circumstance or event with the potential to adversely impact organizational operations (including mission, functions, image, or reputation), organizational assets, or individuals through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. Also, the potential for a threat-source to successfully exploit a particular information system vulnerability.
References: https://en.wikipedia.org/wiki/Threat_(computer)


NEW QUESTION # 139
If an attacker uses the command SELECT*FROM user WHERE name = 'x' AND userid IS NULL; --'; which type of SQL injection attack is the attacker performing?

  • A. End of Line Comment
  • B. UNION SQL Injection
  • C. Tautology
  • D. Illegal/Logically Incorrect Query

Answer: A


NEW QUESTION # 140
Due to a slowdown of normal network operations, the IT department decided to monitor internet traffic for all of the employees. From a legal stand point, what would be troublesome to take this kind of measure?

  • A. The network could still experience traffic slow down.
  • B. All of the employees would stop normal work activities
  • C. Not informing the employees that they are going to be monitored could be an invasion of privacy.
  • D. IT department would be telling employees who the boss is

Answer: C


NEW QUESTION # 141
Which NMAP feature can a tester implement or adjust while scanning for open ports to avoid detection by the network's IDS?

  • A. ICMP ping sweep to determine which hosts on the network are not available
  • B. Traceroute to control the path of the packets sent during the scan
  • C. Fingerprinting to identify which operating systems are running on the network
  • D. Timing options to slow the speed that the port scan is conducted

Answer: D


NEW QUESTION # 142
Supposed you are the Chief Network Engineer of a certain Telco. Your company is planning for a big business expansion and it requires that your network authenticate users connecting using analog modems, Digital Subscriber Lines (DSL), wireless data services, and Virtual Private Networks (VPN) over a Frame Relay network. Which AAA protocol would you implement?

  • A. RADIUS
  • B. DIAMETER
  • C. Kerberos
  • D. TACACS+

Answer: A


NEW QUESTION # 143
You have successfully logged on a Linux system. You want to now cover your track. Your login attempt may be logged on several files located in /var/log. Which file does NOT belong to the list:

  • A. wtmp
  • B. auth.log
  • C. btmp
  • D. user.log

Answer: D


NEW QUESTION # 144
Bob, a network administrator at BigUniversity, realized that some students are connecting their notebooks in the wired network to have Internet access. In the university campus, there are many Ethernet ports available for professors and authorized visitors but not for students.
He identified this when the IDS alerted for malware activities in the network.
What should Bob do to avoid this problem?

  • A. Use the 802.1x protocol
  • B. Disable unused ports in the switches
  • C. Separate students in a different VLAN
  • D. Ask students to use the wireless network

Answer: A


NEW QUESTION # 145
An attacker is trying to redirect the traffic of a small office. That office is using their own mail server, DNS server and NTP server because of the importance of their job. The attacker gain access to the DNS server and redirect the direction www.google.com to his own IP address. Now when the employees of the office wants to go to Google they are being redirected to the attacker machine. What is the name of this kind of attack?

  • A. DNS spoofing
  • B. ARP Poisoning
  • C. MAC Flooding
  • D. Smurf Attack

Answer: A


NEW QUESTION # 146
Study the log below and identify the scan type.

  • A. nmap -sR 192.168.1.10
  • B. nmap -sO -T 192.168.1.10
  • C. nmap -sV 192.168.1.10
  • D. nmap -sS 192.168.1.10

Answer: B


NEW QUESTION # 147
Port scanning can be used as part of a technical assessment to determine network vulnerabilities. The
TCP XMAS scan is used to identify listening ports on the targeted system.
If a scanned port is open, what happens?

  • A. The port will send a SYN.
  • B. The port will send an ACK.
  • C. The port will send an RST.
  • D. The port will ignore the packets.

Answer: D


NEW QUESTION # 148
A new wireless client is configured to join a 802.11 network. This client uses the same hardware and software as many of the other clients on the network. The client can see the network, but cannot connect. A wireless packet sniffer shows that the Wireless Access Point (WAP) is not responding to the association requests being sent by the wireless client.
What is a possible source of this problem?

  • A. The WAP does not recognize the client's MAC address
  • B. Client is configured for the wrong channel
  • C. The client cannot see the SSID of the wireless network
  • D. The wireless client is not configured to use DHCP

Answer: A

Explanation:
Explanation
MAC Filtering (or GUI filtering, or layer 2 address filtering) refers to a security access control method whereby the 48-bit address assigned to each network card is used to determine access to the network. MAC Filtering is often used on wireless networks.
References: https://en.wikipedia.org/wiki/MAC_filtering


NEW QUESTION # 149
Using Windows CMD, how would an attacker list all the shares to which the current user context has access?

  • A. NET VIEW
  • B. NET USE
  • C. NET CONFIG
  • D. NET FILE

Answer: B

Explanation:
Explanation
Connects a computer to or disconnects a computer from a shared resource, or displays information about computer connections. The command also controls persistent net connections. Used without parameters, net use retrieves a list of network connections.
References: https://technet.microsoft.com/en-us/library/bb490717.aspx


NEW QUESTION # 150
How does the Address Resolution Protocol (ARP) work?

  • A. It sends a request packet to all the network elements, asking for the domain name from a specific IP.
  • B. It sends a reply packet to all the network elements, asking for the MAC address from a specific IP.
  • C. It sends a request packet to all the network elements, asking for the MAC address from a specific IP.
  • D. It sends a reply packet for a specific IP, asking for the MAC address.

Answer: C


NEW QUESTION # 151
This phase will increase the odds of success in later phases of the penetration test. It is also the very first step in Information Gathering and it will tell you the "landscape" looks like. What is the most important phase of ethical hacking in which you need to spend a considerable amount of time?

  • A. network mapping
  • B. footprinting
  • C. escalating privileges
  • D. gaining access

Answer: B


NEW QUESTION # 152
DNS cache snooping is a process of determining if the specified resource address is present in the DNS cache records. It may be useful during the examination of the network to determine what software update resources are used, thus discovering what software is installed.
What command is used to determine if the entry is present in DNS cache?

  • A. dnsnooping -rt update.antivirus.com
  • B. dns --snoop update.antivirus.com
  • C. nslookup -norecursive update.antivirus.com
  • D. nslookup -fullrecursive update.antivirus.com

Answer: C


NEW QUESTION # 153
What is the proper response for a NULL scan if the port is open?

  • A. PSH
  • B. SYN
  • C. FIN
  • D. RST
  • E. No response
  • F. ACK

Answer: E


NEW QUESTION # 154
Which of the following types of firewall inspects only header information in network traffic?

  • A. Stateful inspection
  • B. Application-level gateway
  • C. Circuit-level gateway
  • D. Packet filter

Answer: D


NEW QUESTION # 155
The chance of a hard drive failure is once every three years. The cost to buy a new hard drive is $300. It will require 10 hours to restore the OS and software to the new hard disk. It will require a further 4 hours to restore the database from the last backup to the new hard disk. The recovery person earns $10/hour. Calculate the SLE, ARO, and ALE. Assume the EF = 1 (100%).
What is the closest approximate cost of this replacement and recovery operation per year?

  • A. $440
  • B. $146
  • C. $1320
  • D. $100

Answer: B

Explanation:
The annualized loss expectancy (ALE) is the product of the annual rate of occurrence (ARO) and the single loss expectancy (SLE).
Suppose than an asset is valued at $100,000, and the Exposure Factor (EF) for this asset is 25%. The single loss expectancy (SLE) then, is 25% * $100,000, or $25,000.
In our example the ARO is 33%, and the SLE is 300+14*10 (as EF=1). The ALO is thus:
33%*(300+14*10) which equals 146.
References: https://en.wikipedia.org/wiki/Annualized_loss_expectancy


NEW QUESTION # 156
Study the snort rule given below and interpret the rule. alert tcp any any --> 192.168.1.0/24 111 (content:"|00 01 86 a5|"; msG. "mountd access";)

  • A. An alert is generated when any packet other than a TCP packet is seen on the network and destined for the 192.168.1.0 subnet
  • B. An alert is generated when a TCP packet originating from any IP address is seen on the network and destined for any IP address on the 192.168.1.0 subnet on port 111
  • C. An alert is generated when a TCP packet is generated from any IP on the 192.168.1.0 subnet and destined to any IP on port 111
  • D. An alert is generated when a TCP packet is originated from port 111 of any IP address to the
    192.168.1.0 subnet

Answer: B


NEW QUESTION # 157
Risks = Threats x Vulnerabilities is referred to as the:

  • A. BIA equation
  • B. Threat assessment
  • C. Risk equation
  • D. Disaster recovery formula

Answer: C

Explanation:
Explanation
The most effective way to define risk is with this simple equation:
Risk = Threat x Vulnerability x Cost
This equation is fundamental to all information security.
References:
http://www.icharter.org/articles/risk_equation.html


NEW QUESTION # 158
An attacker tries to do banner grabbing on a remote web server and executes the following command.

Service
detection performed. Please report any incorrect results at http://nmap.org/submit/.
Nmap done: 1 IP address (1 host up) scanned in 6.42 seconds
What did the hacker accomplish?

  • A. The hacker successfully completed the banner grabbing.
  • B. nmap can't retrieve the version number of any running remote service.
  • C. The hacker failed to do banner grabbing as he didn't get the version of the Apache web server.
  • D. The hacker should've used nmap -O host.domain.com.

Answer: A


NEW QUESTION # 159
Which of these options is the most secure procedure for storing backup tapes?

  • A. Inside the data center for faster retrieval in a fireproof safe
  • B. In a climate controlled facility offsite
  • C. On a different floor in the same building
  • D. In a cool dry environment

Answer: B


NEW QUESTION # 160
......

Get Instant Access REAL 312-50v10 DUMP Pass Your Exam Easily: https://www.premiumvcedump.com/EC-COUNCIL/valid-312-50v10-premium-vce-exam-dumps.html

312-50v10 Free Exam Questions with Quality Guaranteed: https://drive.google.com/open?id=1b3lJ1r2YhR5uCMuI0nRnu8fAb4BAwu_f

Related Articles

more
EC-COUNCIL 312-50v10 Certification Practice Exam