1. Home
  2. EC-COUNCIL
  3. 312-50V7

EC-COUNCIL 312-50V7 Online Practice Questions and Exam Preparation

312-50V7 Exam Details

  • Exam Code
    :312-50V7
  • Exam Name
    :Ethical Hacking and Countermeasures (CEHv7)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :514 Q&As
  • Last Updated
    :May 31, 2026

EC-COUNCIL 312-50V7 Online Questions & Answers

  • Question 161:

    Most cases of insider abuse can be traced to individuals who are introverted, incapable of dealing with stress or conflict, and frustrated with their job, office politics, and lack of respect or promotion. Disgruntled employees may pass company secrets and intellectual property to competitors for monitory benefits.

    Here are some of the symptoms of a disgruntled employee:

    A. Frequently leaves work early, arrive late or call in sick
    B. Spends time surfing the Internet or on the phone
    C. Responds in a confrontational, angry, or overly aggressive way to simple requests or comments
    D. Always negative; finds fault with everything. These disgruntled employees are the biggest threat to enterprise security. How do you deal with these threats? (Select 2 answers)
    E. Limit access to the applications they can run on their desktop computers and enforce strict work hour rules
    F. By implementing Virtualization technology from the desktop to the data centre, organizations can isolate different environments with varying levels of access and security to various employees
    G. Organizations must ensure that their corporate data is centrally managed and delivered to users just and when needed
    H. Limit Internet access, e-mail communications, access to social networking sites and job hunting portals

  • Question 162:

    During a wireless penetration test, a tester detects an access point using WPA2 encryption. Which of the following attacks should be used to obtain the key?

    A. The tester must capture the WPA2 authentication handshake and then crack it.
    B. The tester must use the tool inSSIDer to crack it using the ESSID of the network.
    C. The tester cannot crack WPA2 because it is in full compliance with the IEEE 802.11i standard.
    D. The tester must change the MAC address of the wireless network card and then use the AirTraf tool to obtain the key.

  • Question 163:

    Which of the following tools will scan a network to perform vulnerability checks and compliance auditing?

    A. NMAP
    B. Metasploit
    C. Nessus
    D. BeEF

  • Question 164:

    What techniques would you use to evade IDS during a Port Scan? (Select 4 answers)

    A. Use fragmented IP packets
    B. Spoof your IP address when launching attacks and sniff responses from the server
    C. Overload the IDS with Junk traffic to mask your scan
    D. Use source routing (if possible)
    E. Connect to proxy servers or compromised Trojaned machines to launch attacks

  • Question 165:

    You are footprinting an organization and gathering competitive intelligence. You visit the company's website for contact information and telephone numbers but do not find them listed there. You know they had the entire staff directory listed on their website 12 months ago but now it is not there. Is there any way you can retrieve information from a website that is outdated?

    A. Visit Google's search engine and view the cached copy
    B. Crawl the entire website and store them into your computer
    C. Visit Archive.org web site to retrieve the Internet archive of the company's website
    D. Visit the company's partners and customers website for this information

  • Question 166:

    Which type of scan measures a person's external features through a digital video camera?

    A. Iris scan
    B. Retinal scan
    C. Facial recognition scan
    D. Signature kinetics scan

  • Question 167:

    During a penetration test, a tester finds that the web application being analyzed is vulnerable to Cross Site Scripting (XSS). Which of the following conditions must be met to exploit this vulnerability?

    A. The web application does not have the secure flag set.
    B. The session cookies do not have the HttpOnly flag set.
    C. The victim user should not have an endpoint security solution.
    D. The victim's browser must have ActiveX technology enabled.

  • Question 168:

    What two things will happen if a router receives an ICMP packet, which has a TTL value of 1, and the destination host is several hops away? (Select 2 answers)

    A. The router will discard the packet
    B. The router will decrement the TTL value and forward the packet to the next router on the path to the destination host
    C. The router will send a time exceeded message to the source host
    D. The router will increment the TTL value and forward the packet to the next router on the path to the destination host.
    E. The router will send an ICMP Redirect Message to the source host

  • Question 169:

    Joel and her team have been going through tons of garbage, recycled paper, and other rubbish in order to find some information about the target they are attempting to penetrate. How would you call this type of activity?

    A. Dumpster Diving
    B. Scanning
    C. CI Gathering
    D. Garbage Scooping

  • Question 170:

    In TCP communications there are 8 flags; FIN, SYN, RST, PSH, ACK, URG, ECE, CWR. These flags have decimal numbers assigned to them:

    FIN = 1 SYN = 2 RST = 4 PSH = 8 ACK = 16 URG = 32 ECE = 64 CWR =128

    Example: To calculate SYN/ACK flag decimal value, add 2 (which is the decimal value of the SYN flag) to 16 (which is the decimal value of the ACK flag), so the result would be 18. Based on the above calculation, what is the decimal value for XMAS scan?

    A. 23
    B. 24
    C. 41
    D. 64

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50V7 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.