ECCouncil Certified Ethical Hacker Exam 312-50 Exam Dumps: Updated Questions & Answers (October 2025)

Question # 1

Which of the following examples best represents a logical or technical control?

Security tokens

Heating and air conditioning

Smoke and fire alarms

Corporate security policy

Question # 2

How can telnet be used to fingerprint a web server?

telnet webserverAddress 80

HEAD / HTTP/1.0

telnet webserverAddress 80

PUT / HTTP/1.0

telnet webserverAddress 80

HEAD / HTTP/2.0

telnet webserverAddress 80

PUT / HTTP/2.0

Question # 3

During a wireless penetration test, a tester detects an access point using WPA2 encryption. Which of the following attacks should be used to obtain the key?

The tester must capture the WPA2 authentication handshake and then crack it.

The tester must use the tool inSSIDer to crack it using the ESSID of the network.

The tester cannot crack WPA2 because it is in full compliance with the IEEE 802.11i standard.

The tester must change the MAC address of the wireless network card and then use the AirTraf tool to obtain the key.

Question # 4

At a Windows Server command prompt, which command could be used to list the running services?

Sc query type= running

Sc query \\servername

Sc query

Sc config

Question # 5

During a penetration test, a tester finds a target that is running MS SQL 2000 with default credentials. The tester assumes that the service is running with Local System account. How can this weakness be exploited to access the system?

Using the Metasploit psexec module setting the SA / Admin credential

Invoking the stored procedure xp_shell to spawn a Windows command shell

Invoking the stored procedure cmd_shell to spawn a Windows command shell

Invoking the stored procedure xp_cmdshell to spawn a Windows command shell

Question # 6

A Network Administrator was recently promoted to Chief Security Officer at a local university. One of employee's new responsibilities is to manage the implementation of an RFID card access system to a new server room on campus. The server room will house student enrollment information that is securely backed up to an off-site location.

During a meeting with an outside consultant, the Chief Security Officer explains that he is concerned that the existing security controls have not been designed properly. Currently, the Network Administrator is responsible for approving and issuing RFID card access to the server room, as well as reviewing the electronic access logs on a weekly basis.

Which of the following is an issue with the situation?

Segregation of duties

Undue influence

Lack of experience

Inadequate disaster recovery plan

Question # 7

During a penetration test, the tester conducts an ACK scan using NMAP against the external interface of the DMZ firewall. NMAP reports that port 80 is unfiltered. Based on this response, which type of packet inspection is the firewall conducting?

Host

Stateful

Stateless

Application

Question # 8

WPA2 uses AES for wireless data encryption at which of the following encryption levels?

64 bit and CCMP

128 bit and CRC

128 bit and CCMP

128 bit and TKIP

Question # 9

Which of the following is a symmetric cryptographic standard?

DSA

PKI

RSA

3DES

Question # 10

A network administrator received an administrative alert at 3:00 a.m. from the intrusion detection system. The alert was generated because a large number of packets were coming into the network over ports 20 and 21. During analysis, there were no signs of attack on the FTP servers. How should the administrator classify this situation?

True negatives

False negatives

True positives

False positives

Summer Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: dcdisc65

ECCouncil Certified Ethical Hacker Exam 312-50 Exam Dumps: Updated Questions & Answers (October 2025)

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Most Popular Certification Exams

Site Map

Help

Payment

Contact us

Site Secure