1. Home
  2. EC-COUNCIL
  3. 312-50V10

EC-COUNCIL 312-50V10 Online Practice Questions and Exam Preparation

312-50V10 Exam Details

  • Exam Code
    :312-50V10
  • Exam Name
    :EC-Council Certified Ethical Hacker (C|EH v10)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :747 Q&As
  • Last Updated
    :May 31, 2026

EC-COUNCIL 312-50V10 Online Questions & Answers

  • Question 91:

    John is an incident handler at a financial institution. His steps in a recent incident are not up to the standards of the company. John frequently forgets some steps and procedures while handling responses as they are very stressful to perform. Which of the following actions should John take to overcome this problem with the least administrative effort?

    A. Create an incident checklist.
    B. Select someone else to check the procedures.
    C. Increase his technical skills.
    D. Read the incident manual every time it occurs.

  • Question 92:

    Backing up data is a security must. However, it also has certain level of risks when mishandled. Which of the following is the greatest threat posed by backups?

    A. A backup is the source of Malware or illicit information
    B. A backup is incomplete because no verification was performed
    C. A backup is unavailable during disaster recovery
    D. An unencrypted backup can be misplaced or stolen

  • Question 93:

    While doing a Black box pen test via the TCP port (80), you noticed that the traffic gets blocked when you tried to pass IRC traffic from a web enabled host. However, you also noticed that outbound HTTP traffic is being allowed. What type of firewall is being utilized for the outbound traffic?

    A. Stateful
    B. Application
    C. Circuit
    D. Packet Filtering

  • Question 94:

    Which of the following scanning method splits the TCP header into several packets and makes it difficult for packet filters to detect the purpose of the packet?

    A. ICMP Echo scanning
    B. SYN/FIN scanning using IP fragments
    C. ACK flag probe scanning
    D. IPID scanning

  • Question 95:

    These hackers have limited or no training and know how to use only basic techniques or tools. What kind of hackers are we talking about?

    A. Black-Hat Hackers A
    B. Script Kiddies
    C. White-Hat Hackers
    D. Gray-Hat Hacker

  • Question 96:

    Every company needs a formal written document which spells out to employees precisely what they are allowed to use the company's systems for, what is prohibited, and what will happen to them if they break the rules. Two printed copies of the policy should be given to every employee as soon as possible after they join the organization. The employee should be asked to sign one copy, which should be safely filed by the company. No one should be allowed to use the company's computer systems until they have signed the policy in acceptance of its terms.

    What is this document called?

    A. Information Audit Policy (IAP)
    B. Information Security Policy (ISP)
    C. Penetration Testing Policy (PTP)
    D. Company Compliance Policy (CCP)

  • Question 97:

    A Security Engineer at a medium-sized accounting firm has been tasked with discovering how much information can be obtained from the firm's public facing web servers. The engineer decides to start by using netcat to port 80. The engineer receives this output:

    Which of the following is an example of what the engineer performed?

    A. Cross-site scripting
    B. Banner grabbing
    C. SQL injection
    D. Whois database query

  • Question 98:

    A security engineer has been asked to deploy a secure remote access solution that will allow employees to connect to the company's internal network. Which of the following can be implemented to minimize the opportunity for the man-in-themiddle attack to occur?

    A. SSL
    B. Mutual authentication
    C. IPSec
    D. Static IP addresses

  • Question 99:

    Nation-state threat actors often discover vulnerabilities and hold on to them until they want to launch a sophisticated attack. The Stuxnet attack was an unprecedented style of attack because it used four types of vulnerability. What is this style of attack called?

    A. zero-day
    B. zero-hour
    C. zero-sum
    D. no-day

  • Question 100:

    Which of the following is a restriction being enforced in "white box testing?"

    A. Only the internal operation of a system is known to the tester
    B. The internal operation of a system is completely known to the tester
    C. The internal operation of a system is only partly accessible to the tester
    D. Only the external operation of a system is accessible to the tester

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50V10 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.