312-50V7 Exam Details

  • Exam Code
    :312-50V7
  • Exam Name
    :Ethical Hacking and Countermeasures (CEHv7)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :514 Q&As
  • Last Updated
    :Jul 11, 2026

EC-COUNCIL 312-50V7 Online Questions & Answers

  • Question 11:

    Which of the following can take an arbitrary length of input and produce a message digest output of 160 bit?

    A. SHA-1
    B. MD5
    C. HAVAL
    D. MD4

  • Question 12:

    Lauren is performing a network audit for her entire company. The entire network is comprised of around 500 computers. Lauren starts an ICMP ping sweep by sending one IP packet to the broadcast address of the network, but only receives responses from around five hosts. Why did this ping sweep only produce a few responses?

    A. Only Windows systems will reply to this scan.
    B. A switched network will not respond to packets sent to the broadcast address.
    C. Only Linux and Unix-like (Non-Windows) systems will reply to this scan.
    D. Only servers will reply to this scan.

  • Question 13:

    Data is sent over the network as clear text (unencrypted) when Basic Authentication is configured on Web Servers.

    A. true
    B. false

  • Question 14:

    Which of the following techniques can be used to mitigate the risk of an on-site attacker from connecting to an unused network port and gaining full access to the network? (Choose three.)

    A. Port Security
    B. IPSec Encryption
    C. Network Admission Control (NAC)
    D. 802.1q Port Based Authentication
    E. 802.1x Port Based Authentication
    F. Intrusion Detection System (IDS)

  • Question 15:

    An attacker is attempting to telnet into a corporation's system in the DMZ. The attacker doesn't want to get caught and is spoofing his IP address. After numerous tries he remains unsuccessful in connecting to the system. The attacker rechecks that the target system is actually listening on Port 23 and he verifies it with both nmap and hping2. He is still unable to connect to the target system. What could be the reason?

    A. The firewall is blocking port 23 to that system
    B. He needs to use an automated tool to telnet in
    C. He cannot spoof his IP and successfully use TCP
    D. He is attacking an operating system that does not reply to telnet even when open

  • Question 16:

    Which of the following statements would NOT be a proper definition for a Trojan Horse?

    A. An authorized program that has been designed to capture keyboard keystroke while the user is unaware of such activity being performed
    B. An unauthorized program contained within a legitimate program. This unauthorized program performs functions unknown (and probably unwanted) by the user
    C. A legitimate program that has been altered by the placement of unauthorized code within it; this code performs functions unknown (and probably unwanted) by the user
    D. Any program that appears to perform a desirable and necessary function but that (because of unauthorized code within it that is unknown to the user) performs functions unknown (and definitely unwanted) by the user

  • Question 17:

    While testing web applications, you attempt to insert the following test script into the search area on the company's web site:

    Later, when you press the search button, a pop up box appears on your screen with the text "Testing Testing Testing". What vulnerability is detected in the web application here?

    A. Cross Site Scripting
    B. Password attacks
    C. A Buffer Overflow
    D. A hybrid attack

  • Question 18:

    An organization hires a tester to do a wireless penetration test. Previous reports indicate that the last test did not contain management or control packets in the submitted traces. Which of the following is the most likely reason for lack of management or control packets?

    A. The wireless card was not turned on.
    B. The wrong network card drivers were in use by Wireshark.
    C. On Linux and Mac OS X, only 802.11 headers are received in promiscuous mode.
    D. Certain operating systems and adapters do not collect the management or control packets.

  • Question 19:

    When analyzing the IDS logs, the system administrator notices connections from outside of the LAN have been sending packets where the Source IP address and Destination IP address are the same. There have been no alerts sent via email or logged in the IDS. Which type of an alert is this?

    A. False positive
    B. False negative
    C. True positive
    D. True negative

  • Question 20:

    This attack technique is used when a Web application is vulnerable to an SQL Injection but the results of the Injection are not visible to the attacker.

    A. Unique SQL Injection
    B. Blind SQL Injection
    C. Generic SQL Injection
    D. Double SQL Injection

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50V7 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.