1. Home
  2. EC-COUNCIL
  3. 312-50V8

EC-COUNCIL 312-50V8 Online Practice Questions and Exam Preparation

312-50V8 Exam Details

  • Exam Code
    :312-50V8
  • Exam Name
    :Certified Ethical Hacker v8
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :1008 Q&As
  • Last Updated
    :May 31, 2026

EC-COUNCIL 312-50V8 Online Questions & Answers

  • Question 201:

    What tool can crack Windows SMB passwords simply by listening to network traffic? Select the best answer.

    A. This is not possible
    B. Netbus
    C. NTFSDOS
    D. L0phtcrack

  • Question 202:

    In order to attack a wireless network, you put up an access point and override the signal of the real access point. As users send authentication data, you are able to capture it. What kind of attack is this?

    A. WEP attack
    B. Drive by hacking
    C. Rogue access point attack
    D. Unauthorized access point attack

  • Question 203:

    Eve is spending her day scanning the library computers. She notices that Alice is using a computer whose port 445 is active and listening. Eve uses the ENUM tool to enumerate Alice machine. From the command prompt, she types the

    following command.

    For /f "tokens=1 %%a in (hackfile.txt) do net use * \\10.1.2.3\c$ /user:"Administrator" %%a

    What is Eve trying to do?

    A. Eve is trying to connect as an user with Administrator privileges
    B. Eve is trying to enumerate all users with Administrative privileges
    C. Eve is trying to carry out a password crack for user Administrator
    D. Eve is trying to escalate privilege of the null user to that of Administrator

  • Question 204:

    What type of attack is shown in the following diagram?

    A. Man-in-the-Middle (MiTM) Attack
    B. Session Hijacking Attack
    C. SSL Spoofing Attack
    D. Identity Stealing Attack

  • Question 205:

    Which of the following conditions must be given to allow a tester to exploit a Cross-Site Request Forgery (CSRF) vulnerable web application?

    A. The victim user must open the malicious link with an Internet Explorer prior to version 8.
    B. The session cookies generated by the application do not have the HttpOnly flag set.
    C. The victim user must open the malicious link with a Firefox prior to version 3.
    D. The web application should not use random tokens.

  • Question 206:

    Stephanie works as a records clerk in a large office building in downtown Chicago. On Monday, she went to a mandatory security awareness class (Security5) put on by her company's IT department. During the class, the IT department informed all employees that everyone's Internet activity was thenceforth going to be monitored.

    Stephanie is worried that her Internet activity might give her supervisor reason to write her up, or worse get her fired. Stephanie's daily work duties only consume about four hours of her time, so she usually spends the rest of the day surfing the web. Stephanie really enjoys surfing the Internet but definitely does not want to get fired for it.

    What should Stephanie use so that she does not get in trouble for surfing the Internet?

    A. Stealth IE
    B. Stealth Anonymizer
    C. Stealth Firefox
    D. Cookie Disabler

  • Question 207:

    A botnet can be managed through which of the following?

    A. IRC
    B. E-Mail
    C. Linkedin and Facebook
    D. A vulnerable FTP server

  • Question 208:

    What framework architecture is shown in this exhibit?

    A. Core Impact
    B. Metasploit
    C. Immunity Canvas
    D. Nessus

  • Question 209:

    Bill has successfully executed a buffer overflow against a Windows IIS web server. He has been able to spawn an interactive shell and plans to deface the main web page. He first attempts to use the "Echo" command to simply overwrite index.html and remains unsuccessful. He then attempts to delete the page and achieves no progress. Finally, he tries to overwrite it with another page again in vain.

    What is the probable cause of Bill's problem?

    A. The system is a honeypot.
    B. There is a problem with the shell and he needs to run the attack again.
    C. You cannot use a buffer overflow to deface a web page.
    D. The HTML file has permissions of ready only.

  • Question 210:

    What are the main drawbacks for anti-virus software?

    A. AV software is difficult to keep up to the current revisions.
    B. AV software can detect viruses but can take no action.
    C. AV software is signature driven so new exploits are not detected.
    D. It's relatively easy for an attacker to change the anatomy of an attack to bypass AV systems
    E. AV software isn't available on all major operating systems platforms.
    F. AV software is very machine (hardware) dependent.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 312-50V8 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.