1. Home
  2. EC-COUNCIL
  3. 312-50V10

EC-COUNCIL 312-50V10 Online Practice Questions and Exam Preparation

312-50V10 Exam Details

  • Exam Code
    :312-50V10
  • Exam Name
    :EC-Council Certified Ethical Hacker (C|EH v10)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :747 Q&As
  • Last Updated
    :May 31, 2026

EC-COUNCIL 312-50V10 Online Questions & Answers

  • Question 291:

    On performing a risk assessment, you need to determine the potential impacts when some of the critical business process of the company interrupt its service. What is the name of the process by which you can determine those critical business?

    A. Risk Mitigation
    B. Emergency Plan Response (EPR)
    C. Disaster Recovery Planning (DRP)
    D. Business Impact Analysis (BIA)

  • Question 292:

    While using your bank's online servicing you notice the following string in the URL bar:

    "http://www.MyPersonalBank.com/account?id=368940911028389andDamount=10980andCam ount=21"

    You observe that if you modify the Damount and Camount values and submit the request, that data on the web page reflect the changes.

    Which type of vulnerability is present on this site?

    A. Web Parameter Tampering
    B. Cookie Tampering
    C. XSS Reflection
    D. SQL injection

  • Question 293:

    What is the minimum number of network connections in a multihomed firewall?

    A. 3
    B. 2
    C. 5
    D. 4

  • Question 294:

    What tool and process are you going to use in order to remain undetected by an IDS while pivoting and passing traffic over a server you've compromised and gained root access to?

    A. Install Cryptcat and encrypt outgoing packets from this server.
    B. Use HTTP so that all traffic can be routed via a browser, thus evading the internal Intrusion Detection Systems.
    C. Use Alternate Data Streams to hide the outgoing packets from this server.

  • Question 295:

    Your next door neighbor, that you do not get along with, is having issues with their network, so he yells to his spouse the network's SSID and password and you hear them both clearly. What do you do with this information?

    A. Nothing, but suggest to him to change the network's SSID and password.
    B. Sell his SSID and password to friends that come to your house, so it doesn't slow down your network.
    C. Log onto to his network, after all it's his fault that you can get in.
    D. Only use his network when you have large downloads so you don't tax your own network.

  • Question 296:

    While performing online banking using a Web browser, a user receives an email that contains a link to an interesting Web site. When the user clicks on the link, another Web browser session starts and displays a video of cats playing a piano. The next business day, the user receives what looks like an email from his bank, indicating that his bank account has been accessed from a foreign country. The email asks the user to call his bank and verify the authorization of a funds transfer that took place. What Web browser-based security vulnerability was exploited to compromise the user?

    A. Cross-Site Request Forgery
    B. Cross-Site Scripting
    C. Clickjacking
    D. Web form input validation

  • Question 297:

    The following is part of a log file taken from the machine on the network with the IP address of 192.168.1.106:

    What type of activity has been logged?

    A. Port scan targeting 192.168.1.103
    B. Teardrop attack targeting 192.168.1.106
    C. Denial of service attack targeting 192.168.1.103
    D. Port scan targeting 192.168.1.106

  • Question 298:

    A large mobile telephony and data network operator has a data that houses network elements. These are essentially large computers running on Linux. The perimeter of the data center is secured with firewalls and IPS systems. What is the best security policy concerning this setup?

    A. Network elements must be hardened with user ids and strong passwords. Regular security tests and audits should be performed.
    B. As long as the physical access to the network elements is restricted, there is no need for additional measures.
    C. There is no need for specific security measures on the network elements as long as firewalls and IPS systems exist.
    D. The operator knows that attacks and down time are inevitable and should have a backup site.

  • Question 299:

    Which of the following tools is used to detect wireless LANs using the 802.11a/b/g/n WLAN standards on a linux platform?

    A. Kismet
    B. Nessus
    C. Netstumbler
    D. Abel

  • Question 300:

    You are looking for SQL injection vulnerability by sending a special character to web applications. Which of the following is the most useful for quick validation?

    A. Double quotation
    B. Backslash
    C. Semicolon
    D. Single quotation

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50V10 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.