1. Home
  2. EC-COUNCIL
  3. 312-50

EC-COUNCIL 312-50 Online Practice Questions and Exam Preparation

312-50 Exam Details

  • Exam Code
    :312-50
  • Exam Name
    :Certified Ethical Hacker
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :765 Q&As
  • Last Updated
    :May 31, 2026

EC-COUNCIL 312-50 Online Questions & Answers

  • Question 361:

    Neil is closely monitoring his firewall rules and logs on a regular basis. Some of the users have complained to Neil that there are a few employees who are visiting offensive web site during work hours, without any consideration for others. Neil knows that he has an up-to-date content filtering system and such access should not be authorized. What type of technique might be used by these offenders to access the Internet without restriction?

    A. They are using UDP that is always authorized at the firewall
    B. They are using an older version of Internet Explorer that allow them to bypass the proxy server
    C. They have been able to compromise the firewall, modify the rules, and give themselves proper access
    D. They are using tunneling software that allows them to communicate with protocols in a way it was not intended

  • Question 362:

    Which of the following attacks takes best advantage of an existing authenticated connection

    A. Spoofing
    B. Session Hijacking
    C. Password Sniffing
    D. Password Guessing

  • Question 363:

    If you come across a sheepdip machaine at your client site, what would you infer?

    A. A sheepdip computer is used only for virus checking.
    B. A sheepdip computer is another name for honeypop.
    C. A sheepdip coordinates several honeypots.
    D. A sheepdip computer defers a denial of service attack.

  • Question 364:

    What is the IV key size used in WPA2?

    A. 32
    B. 24
    C. 16
    D. 48
    E. 128

  • Question 365:

    Blane is a security analyst for a law firm. One of the lawyers needs to send out an email to a client but he wants to know if the email is forwarded on to any other recipients. The client is explicitly asked not to re-send the email since that would be a violation of the lawyer's and client's agreement for this particular case. What can Blane use to accomplish this?

    A. He can use a split-DNS service to ensure the email is not forwarded on.
    B. A service such as HTTrack would accomplish this.
    C. Blane could use MetaGoofil tracking tool.
    D. Blane can use a service such as ReadNotify tracking tool.

  • Question 366:

    This is an attack that takes advantage of a web site vulnerability in which the site displays content that includes un-sanitized user-provided data.

    See foobar

    What is this attack?

    A. Cross-site-scripting attack
    B. SQL Injection
    C. URL Traversal attack
    D. Buffer Overflow attack

  • Question 367:

    You establish a new Web browser connection to Google. Since a 3-way handshake is required for any TCP connection, the following actions will take place.

    Which of the following packets represent completion of the 3-way handshake?

    A. 4th packet
    B. 3rdpacket
    C. 6th packet
    D. 5th packet

  • Question 368:

    In an attempt to secure his 802.11b wireless network, Bob decides to use strategic antenna positioning. He places the antenna for the access point near the center of the building. For those access points near the outer edge of the building he uses semi-directional antennas that face towards the buildings center. There is a large parking lot and outlying filed surrounding the building that extends out half a mile around the building. Bob figures that with this and his placement of antennas, his wireless network will be safe from attack. Which of he following statements is true?

    A. Bob's network will not be safe until he also enables WEP
    B. With the 300-foot limit of a wireless signal, Bob's network is safe
    C. Bob's network will be sage but only if he doesn't switch to 802.11a
    D. Wireless signals can be detected from miles away; Bob's network is not safe

  • Question 369:

    In which part of OSI layer, ARP Poisoning occurs?

    A. Transport Layer
    B. Datalink Layer
    C. Physical Layer
    D. Application layer

  • Question 370:

    A specific site received 91 ICMP_ECHO packets within 90 minutes from 47 different sites. 77 of the ICMP_ECHO packets had an ICMP ID:39612 and Seq:57072. 13 of the ICMP_ECHO packets had an ICMP ID:0 and Seq:0. What can you infer from this information?

    A. The packets were sent by a worm spoofing the IP addresses of 47 infected sites
    B. ICMP ID and Seq numbers were most likely set by a tool and not by the operating system
    C. All 77 packets came from the same LAN segment and hence had the same ICMP ID and Seq number
    D. 13 packets were from an external network and probably behind a NAT, as they had an ICMP ID 0 and Seq 0

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.