1. Home
  2. EC-COUNCIL
  3. 312-50V7

EC-COUNCIL 312-50V7 Online Practice Questions and Exam Preparation

312-50V7 Exam Details

  • Exam Code
    :312-50V7
  • Exam Name
    :Ethical Hacking and Countermeasures (CEHv7)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :514 Q&As
  • Last Updated
    :May 31, 2026

EC-COUNCIL 312-50V7 Online Questions & Answers

  • Question 171:

    Fred is scanning his network to ensure it is as secure as possible. Fred sends a TCP probe packet to a host with a FIN flag and he receives a RST/ACK response. What does this mean?

    A. This response means the port he is scanning is open.
    B. The RST/ACK response means the port Fred is scanning is disabled.
    C. This means the port he is scanning is half open.
    D. This means that the port he is scanning on the host is closed.

  • Question 172:

    More sophisticated IDSs look for common shellcode signatures. But even these systems can be bypassed, by using polymorphic shellcode. This is a technique common among virus writers ?it basically hides the true nature of the shellcode in different disguises.

    How does a polymorphic shellcode work?

    A. They encrypt the shellcode by XORing values over the shellcode, using loader code to decrypt the shellcode, and then executing the decrypted shellcode
    B. They convert the shellcode into Unicode, using loader to convert back to machine code then executing them
    C. They reverse the working instructions into opposite order by masking the IDS signatures
    D. They compress shellcode into normal instructions, uncompress the shellcode using loader code and then executing the shellcode

  • Question 173:

    Steven the hacker realizes the network administrator of Acme Corporation is using syskey in Windows 2008 Server to protect his resources in the organization. Syskey independently encrypts the hashes so that physical access to the server, tapes, or ERDs is only first step to cracking the passwords. Steven must break through the encryption used by syskey before he can attempt to use brute force dictionary attacks on the hashes. Steven runs a program called "SysCracker"

    targeting the Windows 2008 Server machine in attempting to crack the hash used by Syskey. He needs to configure the encryption level before he can launch the attack. How many bits does Syskey use for encryption?

    A. 40-bit encryption
    B. 128-bit encryption
    C. 256-bit encryption
    D. 64-bit encryption

  • Question 174:

    Which of the following describes a component of Public Key Infrastructure (PKI) where a copy of a private key is stored to provide third-party access and to facilitate recovery operations?

    A. Key registry
    B. Recovery agent
    C. Directory
    D. Key escrow

  • Question 175:

    What type of session hijacking attack is shown in the exhibit?

    A. Cross-site scripting Attack
    B. SQL Injection Attack
    C. Token sniffing Attack
    D. Session Fixation Attack

  • Question 176:

    Which vital role does the U.S. Computer Security Incident Response Team (CSIRT) provide?

    A. Incident response services to any user, company, government agency, or organization in partnership with the Department of Homeland Security
    B. Maintenance of the nation's Internet infrastructure, builds out new Internet infrastructure, and decommissions old Internet infrastructure
    C. Registration of critical penetration testing for the Department of Homeland Security and public and private sectors
    D. Measurement of key vulnerability assessments on behalf of the Department of Defense (DOD) and State Department, as well as private sectors

  • Question 177:

    Gerald, the Systems Administrator for Hyped Enterprises, has just discovered that his network has been breached by an outside attacker. After performing routine maintenance on his servers, he discovers numerous remote tools were installed that no one claims to have knowledge of in his department. Gerald logs onto the management console for his IDS and discovers an unknown IP address that scanned his network constantly for a week and was able to access his network through a high-level port that was not closed. Gerald traces the IP address he found in the IDS log to a proxy server in Brazil. Gerald calls the company that owns the proxy server and after searching through their logs, they trace the source to another proxy server in Switzerland. Gerald calls the company in Switzerland that owns the proxy server and after scanning through the logs again, they trace the source back to a proxy server in China. What proxy tool has Gerald's attacker used to cover their tracks?

    A. ISA proxy
    B. IAS proxy
    C. TOR proxy
    D. Cheops proxy

  • Question 178:

    Lori was performing an audit of her company's internal Sharepoint pages when she came across the following codE. What is the purpose of this code?

    A. This JavaScript code will use a Web Bug to send information back to another server.
    B. This code snippet will send a message to a server at 192.154.124.55 whenever the "escape" key is pressed.
    C. This code will log all keystrokes.
    D. This bit of JavaScript code will place a specific image on every page of the RSS feed.

  • Question 179:

    One of the effective DoS/DDoS countermeasures is 'Throttling'. Which statement correctly defines this term?

    A. Set up routers that access a server with logic to adjust incoming traffic to levels that will be safe for the server to process
    B. Providers can increase the bandwidth on critical connections to prevent them from going down in the event of an attack
    C. Replicating servers that can provide additional failsafe protection
    D. Load balance each server in a multiple-server architecture

  • Question 180:

    When setting up a wireless network, an administrator enters a pre-shared key for security. Which of the following is true?

    A. The key entered is a symmetric key used to encrypt the wireless data.
    B. The key entered is a hash that is used to prove the integrity of the wireless data.
    C. The key entered is based on the Diffie-Hellman method.
    D. The key is an RSA key used to encrypt the wireless data.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50V7 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.