1. Home
  2. EC-COUNCIL
  3. 312-50V7

EC-COUNCIL 312-50V7 Online Practice Questions and Exam Preparation

312-50V7 Exam Details

  • Exam Code
    :312-50V7
  • Exam Name
    :Ethical Hacking and Countermeasures (CEHv7)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :514 Q&As
  • Last Updated
    :May 31, 2026

EC-COUNCIL 312-50V7 Online Questions & Answers

  • Question 361:

    Shayla is an IT security consultant, specializing in social engineering and external penetration tests. Shayla has been hired on by Treks Avionics, a subcontractor for the Department of Defense. Shayla has been given authority to perform any

    and all tests necessary to audit the company's network security.

    No employees for the company, other than the IT director, know about Shayla's work she will be doing. Shayla's first step is to obtain a list of employees through company website contact pages. Then she befriends a female employee of the company through an online chat website. After meeting with the female employee numerous times, Shayla is able to gain her trust and they become friends. One day, Shayla steals the employee's access badge and uses it to gain unauthorized access to the Treks Avionics offices.

    What type of insider threat would Shayla be considered?

    A. She would be considered an Insider Affiliate
    B. Because she does not have any legal access herself, Shayla would be considered an Outside Affiliate
    C. Shayla is an Insider Associate since she has befriended an actual employee
    D. Since Shayla obtained access with a legitimate company badge; she would be considered a Pure Insider

  • Question 362:

    Which type of scan does NOT open a full TCP connection?

    A. Stealth Scan
    B. XMAS Scan
    C. Null Scan
    D. FIN Scan

  • Question 363:

    Blane is a network security analyst for his company. From an outside IP, Blane performs an XMAS scan using Nmap. Almost every port scanned does not illicit a response. What can he infer from this kind of response?

    A. These ports are open because they do not illicit a response.
    B. He can tell that these ports are in stealth mode.
    C. If a port does not respond to an XMAS scan using NMAP, that port is closed.
    D. The scan was not performed correctly using NMAP since all ports, no matter what their state, will illicit some sort of response from an XMAS scan.

  • Question 364:

    Which method can provide a better return on IT security investment and provide a thorough and comprehensive assessment of organizational security covering policy, procedure design, and implementation?

    A. Penetration testing
    B. Social engineering
    C. Vulnerability scanning
    D. Access control list reviews

  • Question 365:

    Which of the following network attacks relies on sending an abnormally large packet size that exceeds TCP/IP specifications?

    A. Ping of death
    B. SYN flooding
    C. TCP hijacking
    D. Smurf attack

  • Question 366:

    Which of the following tool would be considered as Signature Integrity Verifier (SIV)?

    A. Nmap
    B. SNORT
    C. VirusSCAN
    D. Tripwire

  • Question 367:

    How can telnet be used to fingerprint a web server?

    A. telnet webserverAddress 80 HEAD / HTTP/1.0
    B. telnet webserverAddress 80 PUT / HTTP/1.0
    C. telnet webserverAddress 80 HEAD / HTTP/2.0
    D. telnet webserverAddress 80 PUT / HTTP/2.0

  • Question 368:

    A network security administrator is worried about potential man-in-the-middle attacks when users access a corporate web site from their workstations. Which of the following is the best remediation against this type of attack?

    A. Implementing server-side PKI certificates for all connections
    B. Mandating only client-side PKI certificates for all connections
    C. Requiring client and server PKI certificates for all connections
    D. Requiring strong authentication for all DNS queries

  • Question 369:

    In which location, SAM hash passwords are stored in Windows 7?

    A. c:\windows\system32\config\SAM
    B. c:\winnt\system32\machine\SAM
    C. c:\windows\etc\drivers\SAM
    D. c:\windows\config\etc\SAM

  • Question 370:

    What technique is used to perform a Connection Stream Parameter Pollution (CSPP) attack?

    A. Injecting parameters into a connection string using semicolons as a separator
    B. Inserting malicious Javascript code into input parameters
    C. Setting a user's session identifier (SID) to an explicit known value
    D. Adding multiple parameters with the same name in HTTP requests

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50V7 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.