1. Home
  2. EC-COUNCIL
  3. 312-50V7

EC-COUNCIL 312-50V7 Online Practice Questions and Exam Preparation

312-50V7 Exam Details

  • Exam Code
    :312-50V7
  • Exam Name
    :Ethical Hacking and Countermeasures (CEHv7)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :514 Q&As
  • Last Updated
    :May 31, 2026

EC-COUNCIL 312-50V7 Online Questions & Answers

  • Question 181:

    What statement is true regarding LM hashes?

    A. LM hashes consist in 48 hexadecimal characters.
    B. LM hashes are based on AES128 cryptographic standard.
    C. Uppercase characters in the password are converted to lowercase.
    D. LM hashes are not generated when the password length exceeds 15 characters.

  • Question 182:

    Which of the following tools would be the best choice for achieving compliance with PCI Requirement 11?

    A. Truecrypt
    B. Sub7
    C. Nessus
    D. Clamwin

  • Question 183:

    Which of the following items of a computer system will an anti-virus program scan for viruses?

    A. Boot Sector
    B. Deleted Files
    C. Windows Process List
    D. Password Protected Files

  • Question 184:

    Within the context of Computer Security, which of the following statements describes Social Engineering best?

    A. Social Engineering is the act of publicly disclosing information
    B. Social Engineering is the means put in place by human resource to perform time accounting
    C. Social Engineering is the act of getting needed information from a person rather than breaking into a system
    D. Social Engineering is a training program within sociology studies

  • Question 185:

    Perimeter testing means determining exactly what your firewall blocks and what it allows. To conduct a good test, you can spoof source IP addresses and source ports. Which of the following command results in packets that will appear to originate from the system at 10.8.8.8? Such a packet is useful for determining whether the firewall is allowing random packets in or out of your network.

    A. hping3 -T 10.8.8.8 -S netbios -c 2 -p 80
    B. hping3 -Y 10.8.8.8 -S windows -c 2 -p 80
    C. hping3 -O 10.8.8.8 -S server -c 2 -p 80
    D. hping3 -a 10.8.8.8 -S springfield -c 2 -p 80

  • Question 186:

    Jeremy is web security consultant for Information Securitas. Jeremy has just been hired to perform contract work for a large state agency in Michigan. Jeremy's first task is to scan all the company's external websites. Jeremy comes upon a

    login page which appears to allow employees access to sensitive areas on the website. James types in the following statement in the username field:

    SELECT * from Users where username='admin' ?AND password='' AND email like '%@testers.com%'

    What will the SQL statement accomplish?

    A. If the page is susceptible to SQL injection, it will look in the Users table for usernames of admin
    B. This statement will look for users with the name of admin, blank passwords, and email addresses that end in @testers.com
    C. This Select SQL statement will log James in if there are any users with NULL passwords
    D. James will be able to see if there are any default user accounts in the SQL database

  • Question 187:

    Fred is the network administrator for his company. Fred is testing an internal switch. From an external IP address, Fred wants to try and trick this switch into thinking it already has established a session with his computer. How can Fred accomplish this?

    A. Fred can accomplish this by sending an IP packet with the RST/SIN bit and the source address of his computer.
    B. He can send an IP packet with the SYN bit and the source address of his computer.
    C. Fred can send an IP packet with the ACK bit set to zero and the source address of the switch.
    D. Fred can send an IP packet to the switch with the ACK bit and the source address of his machine.

  • Question 188:

    Attackers target HINFO record types stored on a DNS server to enumerate information. These are information records and potential source for reconnaissance. A network administrator has the option of entering host information specifically the CPU type and operating system when creating a new DNS record. An attacker can extract this type of information easily from a DNS server.

    Which of the following commands extracts the HINFO record?

    A. Option A
    B. Option B
    C. Option C
    D. Option D

  • Question 189:

    One way to defeat a multi-level security solution is to leak data via

    A. a bypass regulator.
    B. steganography.
    C. a covert channel.
    D. asymmetric routing.

  • Question 190:

    Which of the following conditions must be given to allow a tester to exploit a Cross-Site Request Forgery (CSRF) vulnerable web application?

    A. The victim user must open the malicious link with an Internet Explorer prior to version 8.
    B. The session cookies generated by the application do not have the HttpOnly flag set.
    C. The victim user must open the malicious link with a Firefox prior to version 3.
    D. The web application should not use random tokens.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50V7 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.