312-50V7 Exam Details

  • Exam Code
    :312-50V7
  • Exam Name
    :Ethical Hacking and Countermeasures (CEHv7)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :514 Q&As
  • Last Updated
    :Jul 11, 2026

EC-COUNCIL 312-50V7 Online Questions & Answers

  • Question 31:

    Which Windows system tool checks integrity of critical files that has been digitally signed by Microsoft?

    A. signverif.exe
    B. sigverif.exe
    C. msverif.exe
    D. verifier.exe

  • Question 32:

    Which of the following can the administrator do to verify that a tape backup can be recovered in its entirety?

    A. Restore a random file.
    B. Perform a full restore.
    C. Read the first 512 bytes of the tape.
    D. Read the last 512 bytes of the tape.

  • Question 33:

    Jess the hacker runs L0phtCrack's built-in sniffer utility that grabs SMB password hashes and stores them for offline cracking. Once cracked, these passwords can provide easy access to whatever network resources the user account has access to. But Jess is not picking up hashes from the network. Why?

    A. The network protocol is configured to use SMB Signing
    B. The physical network wire is on fibre optic cable
    C. The network protocol is configured to use IPSEC
    D. L0phtCrack SMB sniffing only works through Switches and not Hubs

  • Question 34:

    Which of the following cryptography attack methods is usually performed without the use of a computer?

    A. Ciphertext-only attack
    B. Chosen key attack
    C. Rubber hose attack
    D. Rainbow table attack

  • Question 35:

    If a tester is attempting to ping a target that exists but receives no response or a response that states the destination is unreachable, ICMP may be disabled and the network may be using TCP. Which other option could the tester use to get a response from a host using TCP?

    A. Hping
    B. Traceroute
    C. TCP ping
    D. Broadcast ping

  • Question 36:

    The SNMP Read-Only Community String is like a password. The string is sent along with each SNMP Get-Request and allows (or denies) access to a device. Most network vendors ship their equipment with a default password of "public". This is the so-called "default public community string". How would you keep intruders from getting sensitive information regarding the network devices using SNMP? (Select 2 answers)

    A. Enable SNMPv3 which encrypts username/password authentication
    B. Use your company name as the public community string replacing the default 'public'
    C. Enable IP filtering to limit access to SNMP device
    D. The default configuration provided by device vendors is highly secure and you don't need to change anything

  • Question 37:

    A rootkit is a collection of tools (programs) that enable administrator-level access to a computer. This program hides itself deep into an operating system for malicious activity and is extremely difficult to detect. The malicious software operates in a stealth fashion by hiding its files, processes and registry keys and may be used to create a hidden directory or folder designed to keep out of view from a user's operating system and security software.

    What privilege level does a rootkit require to infect successfully on a Victim's machine?

    A. User level privileges
    B. Ring 3 Privileges
    C. System level privileges
    D. Kernel level privileges

  • Question 38:

    Keystroke logging is the action of tracking (or logging) the keys struck on a keyboard, typically in a covert manner so that the person using the keyboard is unaware that their actions are being monitored.

    How will you defend against hardware keyloggers when using public computers and Internet Kiosks? (Select 4 answers)

    A. Alternate between typing the login credentials and typing characters somewhere else in the focus window
    B. Type a wrong password first, later type the correct password on the login page defeating the keylogger recording
    C. Type a password beginning with the last letter and then using the mouse to move the cursor for each subsequent letter.
    D. The next key typed replaces selected text portion. E.g. if the password is "secret", one could type "s", then some dummy keys "asdfsd".Then these dummies could be selected with mouse, and next character from the password "e" is typed, which replaces the dummies"asdfsd"
    E. The next key typed replaces selected text portion. E.g. if the password is "secret", one could type "s", then some dummy keys "asdfsd".Then these dummies could be selected with mouse, and next character from the password "e" is typed, which replaces the dummies"asdfsd"

  • Question 39:

    How many bits encryption does SHA-1 use?

    A. 64 bits
    B. 128 bits
    C. 256 bits
    D. 160 bits

  • Question 40:

    A hacker is attempting to use nslookup to query Domain Name Service (DNS). The hacker uses the nslookup interactive mode for the search. Which command should the hacker type into the command shell to request the appropriate records?

    A. Locate type=ns
    B. Request type=ns
    C. Set type=ns
    D. Transfer type=ns

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50V7 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.