1. Home
  2. EC-COUNCIL
  3. 312-50V11

EC-COUNCIL 312-50V11 Online Practice Questions and Exam Preparation

312-50V11 Exam Details

  • Exam Code
    :312-50V11
  • Exam Name
    :EC-Council Certified Ethical Hacker (C|EH v11)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :528 Q&As
  • Last Updated
    :May 28, 2026

EC-COUNCIL 312-50V11 Online Questions & Answers

  • Question 341:

    You are a penetration tester working to test the user awareness of the employees of the client xyz. You harvested two employees' emails from some public sources and are creating a client-side backdoor to send it to the employees via email. Which stage of the cyber kill chain are you at?

    A. Reconnaissance
    B. Command and control
    C. Weaponization
    D. Exploitation

  • Question 342:

    Fred is the network administrator for his company. Fred is testing an internal switch.

    From an external IP address, Fred wants to try and trick this switch into thinking it already has established a session with his computer. How can Fred accomplish this?

    A. Fred can accomplish this by sending an IP packet with the RST/SIN bit and the source address of his computer.
    B. He can send an IP packet with the SYN bit and the source address of his computer.
    C. Fred can send an IP packet with the ACK bit set to zero and the source address of the switch.
    D. Fred can send an IP packet to the switch with the ACK bit and the source address of his machine.

  • Question 343:

    Bob is doing a password assessment for one of his clients. Bob suspects that security policies are not in place. He also suspects that weak passwords are probably the norm throughout the company he is evaluating. Bob is familiar with password weaknesses and key loggers.

    Which of the following options best represents the means that Bob can adopt to retrieve passwords from his clients hosts and servers?

    A. Hardware, Software, and Sniffing.
    B. Hardware and Software Keyloggers.
    C. Passwords are always best obtained using Hardware key loggers.
    D. Software only, they are the most effective.

  • Question 344:

    Bill has been hired as a penetration tester and cyber security auditor for a major credit card company. Which information security standard is most applicable to his role?

    A. FISMA
    B. HITECH
    C. PCI-DSS
    D. Sarbanes-OxleyAct

  • Question 345:

    Email is transmitted across the Internet using the Simple Mail Transport Protocol. SMTP does not encrypt email, leaving the information in the message vulnerable to being read by an unauthorized person. SMTP can upgrade a connection between two mail servers to use TLS. Email transmitted by SMTP over TLS is encrypted. What is the name of the command used by SMTP to transmit email over TLS?

    A. OPPORTUNISTICTLS
    B. UPGRADETLS
    C. FORCETLS
    D. STARTTLS

  • Question 346:

    Jude, a pen tester working in Keiltech Ltd., performs sophisticated security testing on his company's network infrastructure to identify security loopholes. In this process, he started to circumvent the network protection tools and firewalls used in the company. He employed a technique that can create forged TCP sessions by carrying out multiple SYN, ACK, and RST or FIN packets. Further, this process allowed Jude to execute DDoS attacks that can exhaust the network resources. What is the attack technique used by Jude for finding loopholes in the above scenario?

    A. UDP flood attack
    B. Ping-of-death attack
    C. Spoofed session flood attack
    D. Peer-to-peer attack

  • Question 347:

    Which method of password cracking takes the most time and effort?

    A. Dictionary attack
    B. Shoulder surfing
    C. Rainbow tables
    D. Brute force

  • Question 348:

    Insecure direct object reference is a type of vulnerability where the application does not verify if the user is authorized to access the internal object via its name or key. Suppose a malicious user Rob tries to get access to the account of a benign user Ned.

    Which of the following requests best illustrates an attempt to exploit an insecure direct object reference vulnerability?

    A. "GET /restricted/goldtransfer?to=Robandfrom=1 or 1=1' HTTP/1.1Host: westbank.com"
    B. "GET /restricted/\r\n\%00account%00Ned%00access HTTP/1.1 Host: westbank.com"
    C. "GET /restricted/accounts/?name=Ned HTTP/1.1 Host westbank.com"
    D. "GET /restricted/ HTTP/1.1 Host: westbank.com

  • Question 349:

    During an Xmas scan what indicates a port is closed?

    A. No return response
    B. RST
    C. ACK
    D. SYN

  • Question 350:

    Josh has finished scanning a network and has discovered multiple vulnerable services. He knows that several of these usually have protections against external sources but are frequently susceptible to internal users. He decides to draft an email, spoof the sender as the internal IT team, and attach a malicious file disguised as a financial spreadsheet. Before Josh sends the email, he decides to investigate other methods of getting the file onto the system. For this particular attempt, what was the last stage of the cyber kill chain that Josh performed?

    A. Exploitation
    B. Weaponization
    C. Delivery
    D. Reconnaissance

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50V11 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.