• Home
  • Articles
  • [Oct-2021] Dumps Brief Outline Of The 312-50v10 Exam - DumpStillValid [Q93-Q115]

[Oct-2021] Dumps Brief Outline Of The 312-50v10 Exam - DumpStillValid [Q93-Q115]

Share

[Oct-2021] Dumps Brief Outline Of The 312-50v10 Exam - DumpStillValid

312-50v10 Training & Certification Get Latest Certified Ethical Hacker 

NEW QUESTION 93
An attacker with access to the inside network of a small company launches a successful STP manipulation attack. What will he do next?

  • A. He will create a SPAN entry on the spoofed root bridge and redirect traffic to his computer.
  • B. He will repeat the same attack against all L2 switches of the network.
  • C. He will activate OSPF on the spoofed root bridge.
  • D. He will repeat this action so that it escalates to a DoS attack.

Answer: A

 

NEW QUESTION 94
>NMAP -sn 192.168.11.200-215 The NMAP command above performs which of the following?

  • A. A ping scan
  • B. A port scan
  • C. An operating system detect
  • D. A trace sweep

Answer: A

 

NEW QUESTION 95
You are performing a penetration test for a client and have gained shell access to a Windows machine on the internal network. You intend to retrieve all DNS records for the internal domain. If the DNS server is at
192.168.10.2 and the domain name is abccorp.local, what command would you type at the nslookup prompt to attempt a zone transfer?

  • A. Is -d accorp.local
  • B. list server=192.168.10.2 type=all
  • C. Iserver 192.168.10.2 -t all
  • D. list domain=abccorp.local type=zone

Answer: A

 

NEW QUESTION 96
While you were gathering information as part of security assessments for one of your clients, you were able to gather data that show your client is involved with fraudulent activities. What should you do?

  • A. Ignore the data and continue the assessment until completed as agreed
  • B. Immediately stop work and contact the proper legal authorities
  • C. Confront the client in a respectful manner and ask her about the data
  • D. Copy the data to removable media and keep it in case you need it

Answer: B

 

NEW QUESTION 97
Craig received a report of all the computers on the network that showed all the missing patches and weak passwords. What type of software generated this report?

  • A. a port scanner
  • B. a vulnerability scanner
  • C. a malware scanner
  • D. a virus scanner

Answer: B

 

NEW QUESTION 98
Smart cards use which protocol to transfer the certificate in a secure manner?

  • A. Point to Point Tunneling Protocol (PPTP)
  • B. Extensible Authentication Protocol (EAP)
  • C. Point to Point Protocol (PPP)
  • D. Layer 2 Tunneling Protocol (L2TP)

Answer: B

 

NEW QUESTION 99
In the OSI model, where does PPTP encryption take place?

  • A. Transport layer
  • B. Network layer
  • C. Application layer
  • D. Data link layer

Answer: D

 

NEW QUESTION 100
What are the three types of compliance that the Open Source Security Testing Methodology Manual (OSSTMM) recognizes?

  • A. Contractual, regulatory, industry
  • B. Legal, performance, audit
  • C. Audit, standards based, regulatory
  • D. Legislative, contractual, standards based

Answer: D

 

NEW QUESTION 101
This kind of password cracking method uses word lists in combination with numbers and special characters:

  • A. Brute Force
  • B. Linear
  • C. Symmetric
  • D. Hybrid

Answer: D

 

NEW QUESTION 102
Seth is starting a penetration test from inside the network. He hasn't been given any information about the
network. What type of test is he conducting?

  • A. Internal, Whitebox
  • B. External, Whitebox
  • C. External, Blackbox
  • D. Internal, Blackbox

Answer: D

 

NEW QUESTION 103
A virus that attempts to install itself inside the file it is infecting is called?

  • A. Tunneling virus
  • B. Cavity virus
  • C. Polymorphic virus
  • D. Stealth virus

Answer: B

 

NEW QUESTION 104
A Security Engineer at a medium-sized accounting firm has been tasked with discovering how much information can be obtained from the firm's public facing web servers. The engineer decides to start by using netcat to port 80.
The engineer receives this output:

Which of the following is an example of what the engineer performed?

  • A. Banner grabbing
  • B. SQL injection
  • C. Cross-site scripting
  • D. Whois database query

Answer: A

 

NEW QUESTION 105
As a Certified Ethical Hacker, you were contracted by a private firm to conduct an external security assessment through penetration testing.
What document describes the specifics of the testing, the associated violations, and essentially protects both the organization's interest and your liabilities as a tester?

  • A. Terms of Engagement
  • B. Project Scope
  • C. Service Level Agreement
  • D. Non-Disclosure Agreement

Answer: A

 

NEW QUESTION 106
A hacker has managed to gain access to a Linux host and stolen the password file from /etc/passwd. How can he use it?

  • A. He can open it and read the user ids and corresponding passwords.
  • B. The file reveals the passwords to the root user only.
  • C. He cannot read it because it is encrypted.
  • D. The password file does not contain the passwords themselves.

Answer: D

 

NEW QUESTION 107
A computer science student needs to fill some information into a secured Adobe PDF job application that was received from a prospective employer. Instead of requesting a new document that allowed the forms to be completed, the student decides to write a script that pulls passwords from a list of commonly used passwords to try against the secured PDF until the correct password is found or the list is exhausted.
Which cryptography attack is the student attempting?

  • A. Brute-force attack
  • B. Dictionary attack
  • C. Session hijacking
  • D. Man-in-the-middle attack

Answer: B

 

NEW QUESTION 108
Ricardo wants to send secret messages to a competitor company. To secure these messages, he uses a technique of hiding a secret message within an ordinary message. The technique provides 'security through obscurity'.
What technique is Ricardo using?

  • A. Steganography
  • B. Encryption
  • C. RSA algorithm
  • D. Public-key cryptography

Answer: A

 

NEW QUESTION 109
A hacker is attempting to use nslookup to query Domain Name Service (DNS). The hacker uses the nslookup interactive mode for the search. Which command should the hacker type into the command shell to request the appropriate records?

  • A. Transfer type=ns
  • B. Request type=ns
  • C. Locate type=ns
  • D. Set type=ns

Answer: D

 

NEW QUESTION 110
The security administrator of ABC needs to permit Internet traffic in the host 10.0.0.2 and UDP traffic in the host 10.0.0.3. He also needs to permit all FTP traffic to the rest of the network and deny all other traffic. After he applied his ACL configuration in the router, nobody can access to the ftp, and the permitted hosts cannot access the Internet.
According to the next configuration, what is happening in the network?

  • A. The first ACL is denying all TCP traffic and the other ACLs are being ignored by the router
  • B. The ACL 110 needs to be changed to port 80
  • C. The ACL 104 needs to be first because is UDP
  • D. The ACL for FTP must be before the ACL 110

Answer: A

 

NEW QUESTION 111
Eve is spending her day scanning the library computers. She notices that Alice is using a computer whose port 445 is active and listening. Eve uses the ENUM tool to enumerate Alice machine. From the command prompt, she types the following command.

What is Eve trying to do?

  • A. Eve is trying to carry out a password crack for user Administrator
  • B. Eve is trying to connect as a user with Administrator privileges
  • C. Eve is trying to escalate privilege of the null user to that of Administrator
  • D. Eve is trying to enumerate all users with Administrative privileges

Answer: A

 

NEW QUESTION 112
An attacker sniffs encrypted traffic from the network and is subsequently able to decrypt it.
The attacker can now use which cryptanalytic technique to attempt to discover the encryption key?

  • A. Plaintext attack
  • B. Birthday attack
  • C. Chosen ciphertext attack
  • D. Meet in the middle attack

Answer: C

 

NEW QUESTION 113
The following is a sample of output from a penetration tester's machine targeting a machine with the IP address of 192.168.1.106:

What is most likely taking place?

  • A. Remote service brute force attempt
  • B. Ping sweep of the 192.168.1.106 network
  • C. Denial of service attack on 192.168.1.106
  • D. Port scan of 192.168.1.106

Answer: A

 

NEW QUESTION 114
Rebecca commonly sees an error on her Windows system that states that a Data Execution Prevention
(DEP) error has taken place. Which of the following is most likely taking place?

  • A. A page fault is occuring, which forces the operating system to write data from the hard drive.
  • B. Malware is executing in either ROM or a cache memory area.
  • C. A race condition is being exploited, and the operating system is containing the malicious process.
  • D. Malicious code is attempting to execute instruction a non-executable memory region.

Answer: D

 

NEW QUESTION 115
......

Certification Training for 312-50v10 Exam Dumps Test Engine: https://www.dumpstillvalid.com/312-50v10-prep4sure-review.html

Certified Ethical Hacker 312-50v10 Real Exam Questions and Answers FREE Updated: https://drive.google.com/open?id=1ssym7S2DToKLhchXoLz5rSBduEVcU9D7

Related Articles

more
EC-COUNCIL 312-50v10 Certification Practice Exam

All the exam dumps and exam training material of DumpStillValid are valid and reliable. DumpStillValid provides you with the up to date exam dumps and keeps the latest information for you. Dumps are still valid, to make your decision.

Contact Us

Our Working Time: ( GMT 0:00-15:00 )   From Monday to Saturday

Contact now

Copyright © 2026 DumpStillValid NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy