• Home
  • Blogs
  • [Jan 14, 2022] EC-COUNCIL 312-50v10 Real Exam Questions and Answers FREE [Q330-Q349]

[Jan 14, 2022] EC-COUNCIL 312-50v10 Real Exam Questions and Answers FREE [Q330-Q349]

Share

[Jan 14, 2022] EC-COUNCIL 312-50v10 Real Exam Questions and Answers FREE

Pass EC-COUNCIL 312-50v10 Exam Info and Free Practice Test


Covered Skills

The exam is divided into nine domains. The learning process should be built strategically as each section has different weight and is further divided into multiple sub-domains.

  • Wireless Network Hacking [6%] – 8 Questions

    This part of the syllabus requires applicants to be familiar with wireless concepts, most common wireless threats, hacking methodologies as well as tools, and wireless security tools. Moreover, the concepts such as encryption and countermeasures should be covered as well.

  • Cloud Computing [6%] – 7 questions

    For this domain, the candidates should know what the key cloud computing concepts are, what are the details of cloud computing and security, and serverless computing. Then, pay attention to the concepts like container technology and threats of cloud computing.

  • Cryptography [6%] – 7 questions

    Encryption algorithms, cryptography tools and concepts, and email and disk encryption are some of the topics covered in this section. In addition, one has to demonstrate knowledge of Public Key Infrastructure (PKI), countermeasures, and cryptanalysis to excel in the exam.

  • Web Application Hacking [16%] – 20 questions

    To answer the questions under this section, the candidates have to know what all it takes to hack web servers and web applications. SQL Injection is another focused skill. Speaking in detail, one needs to understand the concepts of web server, available security tools, attack methodology, and more. In addition, get understanding of the attack access controls, app threats, attacks targeting authorization and authentication, and types of SQL Injection along with its methods and tools.

  • Network and Perimeter Hacking [14%] – 18 questions

    This domain is all about sniffing, social engineering, service denial, session hijacking, and ways to evade IVS and firewalls along with honeypots. The subtopics include diverse sniffing tools and techniques, how to identify theft, the concepts and techniques for social engineering, impersonalization, and DDoS. Also, make sure to learn more about session hijacking on the network and application levels, common tools, and more.

  • Mobile Platform, IoT, and OT Hacking [8%] – 10 questions

    The key information regarding this section relates to the hacking expertise needed to hack mobile platforms, IoT, and OT. One should know the vectors for attacks that target mobile platforms, specifics of the iOS and Android hacking, and the guidelines of mobile security, among the rest. For the second subtopic, learn more about hacking tools and methods for OT and IoT.

  • Techniques for Reconnaissance [21%] – 26 questions

    Scanning networks, and enumeration are the sub-topics of this domain. Leaners should gain expertise over concepts like footprinting through search engines and web services. In addition to this, knowledge of footprinting in relation to websites, email, DNS, and networking is also required for succeeding in this section.

    As the domain proceeds, it throws lights on tools for scanning, host and OS discovery, and scanning beyond IDS and Firewall. NetBIOS, SNMP, and LDAP Enumeration as well as various other related topics are covered extensively.

  • System Hacking Phases and Attack Techniques [17%] – 21 questions

    This module assesses one’s understanding of the nitty-gritty of ethical hacking essentials like system hacking, malware threats, and analysis of vulnerability. Before this section ends, it imparts a great cognizance about concepts like the types of vulnerabilities, assessment solutions, system hacking, access maintenance, passwords cracking, and escalating privilege. Familiarity with anti-malware software along with knowledge of APT and Trojans is needed, among the rest.

  • Review of Ethical Hacking and Information Security [6%] – 8 questions

    This part of the exam content covers the basics of ethical hacking, including the key topics such as Information security overview, general hacking as well as ethical hacking concepts, information security controls, and standards and laws.

 

NEW QUESTION 330
What is the best defense against privilege escalation vulnerability?

  • A. Review user roles and administrator privileges for maximum utilization of automation services.
  • B. Run administrator and applications on least privileges and use a content registry for tracking.
  • C. Run services with least privileged accounts and implement multi-factor authentication and authorization.
  • D. Patch systems regularly and upgrade interactive login privileges at the system administrator level.

Answer: C

 

NEW QUESTION 331
Which of the following is considered an exploit framework and has the ability to perform automated attacks on services, ports, applications and unpatched security flaws in a computer system?

  • A. Maltego
  • B. Wireshark
  • C. Metasploit
  • D. Nessus

Answer: C

 

NEW QUESTION 332
The Open Web Application Security Project (OWASP) is the worldwide not-for-profit charitable
organization focused on improving the security of software. What item is the primary concern on OWASP's
Top Ten Project Most Critical Web Application Security Risks?

  • A. Path disclosure
  • B. Cross Site Scripting
  • C. Injection
  • D. Cross Site Request Forgery

Answer: C

 

NEW QUESTION 333
You want to do an ICMP scan on a remote computer using hping2. What is the proper syntax?

  • A. hping2 -1 host.domain.com
  • B. hping2 host.domain.com
  • C. hping2 -i host.domain.com
  • D. hping2 --set-ICMP host.domain.com

Answer: A

 

NEW QUESTION 334
Which of the following types of firewalls ensures that the packets are part of the established session?

  • A. Circuit-level firewall
  • B. Stateful inspection firewall
  • C. Application-level firewall
  • D. Switch-level firewall

Answer: B

Explanation:
A stateful firewall is a network firewall that tracks the operating state and characteristics of network connections traversing it. The firewall is configured to distinguish legitimate packets for different types of connections. Only packets matching a known active connection (session) are allowed to pass the firewall.
References: https://en.wikipedia.org/wiki/Stateful_firewall

 

NEW QUESTION 335
You have the SOA presented below in your Zone.
Your secondary servers have not been able to contact your primary server to synchronize information. How long will the secondary servers attempt to contact the primary server before it considers that zone is dead and stops responding to queries?
collegae.edu.SOA, cikkye.edu ipad.college.edu. (200302028 3600 3600 604800 3600)

  • A. One month
  • B. One day
  • C. One hour
  • D. One week

Answer: D

 

NEW QUESTION 336
A large mobile telephony and data network operator has a data center that houses network elements. These are essentially large computers running on Linux. The perimeter of the data center is secured with firewalls and IPS systems.
What is the best security policy concerning this setup?

  • A. The operator knows that attacks and down time are inevitable and should have a backup site.
  • B. There is no need for specific security measures on the network elements as long as firewalls and IPS systems exist.
  • C. Network elements must be hardened with user ids and strong passwords. Regular security tests and audits should be performed.
  • D. As long as the physical access to the network elements is restricted, there is no need for additional measures.

Answer: C

 

NEW QUESTION 337
During a penetration test, a tester finds a target that is running MS SQL 2000 with default credentials. The tester assumes that the service is running with Local System account.
How can this weakness be exploited to access the system?

  • A. Using the Metasploit psexec module setting the SA / Admin credential
  • B. Invoking the stored procedure xp_shell to spawn a Windows command shell
  • C. Invoking the stored procedure cmd_shell to spawn a Windows command shell
  • D. Invoking the stored procedure xp_cmdshell to spawn a Windows command shell

Answer: D

 

NEW QUESTION 338
(Note: the student is being tested on concepts learnt during passive OS fingerprinting, basic TCP/IP connection concepts and the ability to read packet signatures from a sniff dump.). Snort has been used to capture packets on the network. On studying the packets, the penetration tester finds it to be abnormal. If you were the penetration tester, why would you find this abnormal?
What is odd about this attack? Choose the best answer.

  • A. This is not a spoofed packet as the IP stack has increasing numbers for the three flags.
  • B. The attacker wants to avoid creating a sub-carries connection that is not normally valid.
  • C. These packets were crafted by a tool, they were not created by a standard IP stack.
  • D. This is back orifice activity as the scan comes from port 31337.

Answer: D

 

NEW QUESTION 339
Which of the following Nmap commands will produce the following output?
Output:

  • A. nmap -sN -Ps -T4 192.168.1.1
  • B. nmap -sS -Pn 192.168.1.1
  • C. nmap -sT -sX -Pn -p 1-65535 192.168.1.1
  • D. nmap -sS -sU -Pn -p 1-65535 192.168.1.1

Answer: D

 

NEW QUESTION 340
Which of the following viruses tries to hide from anti-virus programs by actively altering and corrupting the chosen service call interruptions when they are being run?

  • A. Stealth virus
  • B. Tunneling virus
  • C. Cavity virus
  • D. Polymorphic virus

Answer: A

 

NEW QUESTION 341
Nedved is an IT Security Manager of a bank in his country. One day. he found out that there is a security breach to his company's email server based on analysis of a suspicious connection from the email server to an unknown IP Address.
What is the first thing that Nedved needs to do before contacting the incident response team?

  • A. Block the connection to the suspicious IP Address from the firewall
  • B. Disconnect the email server from the network
  • C. Leave it as it Is and contact the incident response te3m right away
  • D. Migrate the connection to the backup email server

Answer: B

 

NEW QUESTION 342
What are two things that are possible when scanning UDP ports? (Choose two.)

  • A. Nothing
  • B. An ICMP message will be returned
  • C. A reset will be returned
  • D. The four-way handshake will not be completed
  • E. An RFC 1294 message will be returned

Answer: A,B

 

NEW QUESTION 343
You went to great lengths to install all the necessary technologies to prevent hacking attacks, such as expensive firewalls, antivirus software, anti-spam systems and intrusion detection/prevention tools in your company's network. You have configured the most secure policies and tightened every device on your network. You are confident that hackers will never be able to gain access to your network with complex security system in place.
Your peer, Peter Smith who works at the same department disagrees with you.
He says even the best network security technologies cannot prevent hackers gaining access to the network because of presence of "weakest link" in the security chain.
What is Peter Smith talking about?

  • A. "Polymorphic viruses" are the weakest link in the security chain since the Anti-Virus scanners will not be able to detect these attacks
  • B. Untrained staff or ignorant computer users who inadvertently become the weakest link in your security chain
  • C. Continuous Spam e-mails cannot be blocked by your security system since spammers use different techniques to bypass the filters in your gateway
  • D. "zero-day" exploits are the weakest link in the security chain since the IDS will not be able to detect these attacks

Answer: B

 

NEW QUESTION 344
What is the primary drawback to using advanced encryption standard (AES) algorithm with a 256 bit key to share sensitive data?

  • A. It has been proven to be a weak cipher; therefore, should not be trusted to protect sensitive data.
  • B. To get messaging programs to function with this algorithm requires complex configurations.
  • C. Due to the key size, the time it will take to encrypt and decrypt the message hinders efficient communication.
  • D. It is a symmetric key algorithm, meaning each recipient must receive the key through a different channel than the message.

Answer: D

 

NEW QUESTION 345
Which of the following is a command line packet analyzer similar to GUI-based Wireshark?

  • A. Jack the ripper
  • B. Tcpdump
  • C. Ethereal
  • D. Nessus

Answer: B

 

NEW QUESTION 346
The security administrator of ABC needs to permit Internet traffic in the host 10.0.0.2 and UDP traffic in the host 10.0.0.3. Also he needs to permit all FTP traffic to the rest of the network and deny all other traffic. After he applied his ACL configuration in the router nobody can access to the ftp and the permitted hosts cannot access to the Internet. According to the next configuration what is happening in the network?

  • A. The ACL for FTP must be before the ACL 110
  • B. The ACL 110 needs to be changed to port 80
  • C. The first ACL is denying all TCP traffic and the other ACLs are being ignored by the router
  • D. The ACL 104 needs to be first because is UDP

Answer: C

 

NEW QUESTION 347
What is the known plaintext attack used against DES which gives the result that encrypting plaintext with one DES key followed by encrypting it with a second DES key is no more secure than using a single key?

  • A. Replay attack
  • B. Man-in-the-middle attack
  • C. Meet-in-the-middle attack
  • D. Traffic analysis attack

Answer: C

Explanation:
Explanation/Reference:

 

NEW QUESTION 348
A company's security policy states that all Web browsers must automatically delete their HTTP browser cookies upon terminating. What sort of security breach is this policy attempting to mitigate?

  • A. Attempts by attackers to access password stored on the user's computer without the user's knowledge.
  • B. Attempts by attackers to access the user and password information stored in the company's SQL database.
  • C. Attempts by attackers to access Web sites that trust the Web browser user by stealing the user's authentication credentials.
  • D. Attempts by attackers to determine the user's Web browser usage patterns, including when sites were visited and for how long.

Answer: C

 

NEW QUESTION 349
......


Exam Outline in Detail

The EC-Council 312-50v10 exam measures the candidates’ competence in a wide range of hacking techniques that are grouped into 20 modules. Here they are:

Module 1: Introduction to Ethical Hacking

This topic includes one’s understanding of current security trends; familiarity with cybersecurity elements; awareness of cybersecurity threats & attack vectors; knowledge of hacking types, concepts, as well as phases; familiarity with ethical hacking scope and concepts; understanding of cybersecurity management & defense-in-depth; knowledge of procedures, policies, as well as awareness; awareness of physical security & controls; grasp of incidence management processes; knowledge of vulnerability evaluation as well as penetration testing; familiarity with cybersecurity acts and laws.


What is the duration of the 312-50v10 Exam

  • Number of Questions: 125
  • Format: Multiple choices, multiple answers
  • Passing Score: 70%
  • Length of Examination: 4 hours

 

Latest 312-50v10 Exam Dumps EC-COUNCIL Exam: https://www.exams-boost.com/312-50v10-valid-materials.html

Related Blogs

more
EC-COUNCIL 312-50v10 Certification Practice Exam

Copyright © 2026 EXAMS-BOOST.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor.