Free ECCouncil 312-50v11 Practice Exam with Questions & Answers | Set: 6

Name: How to Pass 312-50v11 Exams
Brand: Examstrack
SKU: 312-50v11
Price: 42 USD
Availability: InStock

Questions 76

After an audit, the auditors Inform you that there is a critical finding that you must tackle Immediately. You read the audit report, and the problem is the service running on port 389. Which service Is this and how can you tackle the problem?

Options:

The service is LDAP. and you must change it to 636. which is LDPAPS.

The service is NTP. and you have to change It from UDP to TCP in order to encrypt it

The findings do not require immediate actions and are only suggestions.

The service is SMTP, and you must change it to SMIME. which is an encrypted way to send emails.

ECCouncil 312-50v11 Premium Access

Lamar

23-Jun-2025

examstrack's 312-50v11 PDFs are a must-have for exam preparation.

Questions 77

Which tier in the N-tier application architecture is responsible for moving and processing data between the tiers?

Options:

Presentation tier

Application Layer

Logic tier

Data tier

Questions 78

What does the following command in netcat do?

nc -l -u -p55555 < /etc/passwd

Options:

logs the incoming connections to /etc/passwd file

loads the /etc/passwd file to the UDP port 55555

grabs the /etc/passwd file when connected to UDP port 55555

deletes the /etc/passwd file when connected to the UDP port 55555

Questions 79

what is the port to block first in case you are suspicious that an loT device has been compromised?

Options:

443

48101

Questions 80

Which of the following steps for risk assessment methodology refers to vulnerability identification?

Options:

Determines if any flaws exist in systems, policies, or procedures

Assigns values to risk probabilities; Impact values.

Determines risk probability that vulnerability will be exploited (High. Medium, Low)

Identifies sources of harm to an IT system. (Natural, Human. Environmental)

Questions 81

You start performing a penetration test against a specific website and have decided to start from grabbing all the links from the main page.

What Is the best Linux pipe to achieve your milestone?

Options:

dirb <a href="https://site.com">https://site.com</a> | grep "site"

curl -s <a href="https://sile.com">https://sile.com</a> | grep ‘’ < a href-\’http" | grep "Site-com- | cut -d "V" -f 2

wget <a href="https://stte.com">https://stte.com</a> | grep "< a href=\*http" | grep "site.com"

<a href="wgethttps://site.com">wgethttps://site.com</a> | cut-d "http-

Questions 82

How does a denial-of-service attack work?

Options:

A hacker prevents a legitimate user (or group of users) from accessing a service

A hacker uses every character, word, or letter he or she can think of to defeat authentication

A hacker tries to decipher a password by using a system, which subsequently crashes the network

A hacker attempts to imitate a legitimate user by confusing a computer or even another person

Questions 83

Which of the following program infects the system boot sector and the executable files at the same time?

Options:

Polymorphic virus

Stealth virus

Multipartite Virus

Macro virus

Questions 84

Firewalk has just completed the second phase (the scanning phase) and a technician receives the output shown below. What conclusions can be drawn based on these scan results?

TCP port 21 no response

TCP port 22 no response

TCP port 23 Time-to-live exceeded

Options:

The lack of response from ports 21 and 22 indicate that those services are not running on the destination server

The scan on port 23 was able to make a connection to the destination host prompting the firewall to respond with a TTL error

The scan on port 23 passed through the filtering device. This indicates that port 23 was not blocked at the firewall

The firewall itself is blocking ports 21 through 23 and a service is listening on port 23 of the target host

Questions 85

What is the minimum number of network connections in a multihomed firewall?

Options:

Questions 86

Which regulation defines security and privacy controls for Federal information systems and organizations?

Options:

HIPAA

EU Safe Harbor

PCI-DSS

NIST-800-53

Questions 87

CompanyXYZ has asked you to assess the security of their perimeter email gateway. From your office in New York, you craft a specially formatted email message and send it across the Internet to an employee of CompanyXYZ. The employee of CompanyXYZ is aware of your test. Your email message looks like this:

From: jim_miller@companyxyz.com

To: michelle_saunders@companyxyz.com Subject: Test message

Date: 4/3/2017 14:37

The employee of CompanyXYZ receives your email message.

This proves that CompanyXYZ’s email gateway doesn’t prevent what?

Options:

Email Masquerading

Email Harvesting

Email Phishing

Email Spoofing

Questions 88

Henry is a penetration tester who works for XYZ organization. While performing enumeration on a client organization, he queries the DNS server for a specific cached DNS record. Further, by using this cached record, he determines the sites recently visited by the organization's user. What is the enumeration technique used by Henry on the organization?

Options:

DNS zone walking

DNS cache snooping

DNS SEC zone walking

DNS cache poisoning

Questions 89

A post-breach forensic investigation revealed that a known vulnerability in Apache Struts was to blame for the Equifax data breach that affected 143 million customers. A fix was available from the software vendor for several months prior 10 the Intrusion. This Is likely a failure in which of the following security processes?

Options:

vendor risk management

Security awareness training

Secure deployment lifecycle

Patch management

Questions 90

Robin, an attacker, is attempting to bypass the firewalls of an organization through the DNS tunneling method in order to exfiltrate data. He is using the NSTX tool for bypassing the firewalls. On which of the following ports should Robin run the NSTX tool?

Options:

Port 53

Port 23

Port 50

Port 80

Answer:

Explanation:

DNS uses Ports 53 which is almost always open on systems, firewalls, and clients to transmit DNS queries. instead of the more familiar Transmission Control Protocol (TCP) these queries use User Datagram Protocol (UDP) due to its low-latency, bandwidth and resource usage compared TCP-equivalent queries. UDP has no error or flow-control capabilities, nor does it have any integrity checking to make sure the info arrived intact.How is internet use (browsing, apps, chat etc) so reliable then? If the UDP DNS query fails (it’s a best-effort protocol after all) within the first instance, most systems will retry variety of times and only after multiple failures, potentially switch to TCP before trying again; TCP is additionally used if the DNS query exceeds the restrictions of the UDP datagram size – typically 512 bytes for DNS but can depend upon system settings.Figure 1 below illustrates the essential process of how DNS operates: the client sends a question string (for example, mail.google[.]com during this case) with a particular type – typically A for a number address. I’ve skipped the part whereby intermediate DNS systems may need to establish where ‘.com’ exists, before checking out where ‘google[.]com’ are often found, and so on.

Many worms and scanners are created to seek out and exploit systems running telnet. Given these facts, it’s really no surprise that telnet is usually seen on the highest Ten Target Ports list. Several of the vulnerabilities of telnet are fixed. They require only an upgrade to the foremost current version of the telnet Daemon or OS upgrade. As is usually the case, this upgrade has not been performed on variety of devices. this might flow from to the very fact that a lot of systems administrators and users don’t fully understand the risks involved using telnet. Unfortunately, the sole solution for a few of telnets vulnerabilities is to completely discontinue its use. the well-liked method of mitigating all of telnets vulnerabilities is replacing it with alternate protocols like ssh. Ssh is capable of providing many of an equivalent functions as telnet and a number of other additional services typical handled by other protocols like FTP and Xwindows. Ssh does still have several drawbacks to beat before it can completely replace telnet. it’s typically only supported on newer equipment. It requires processor and memory resources to perform the info encryption and decryption. It also requires greater bandwidth than telnet thanks to the encryption of the info . This paper was written to assist clarify how dangerous the utilization of telnet are often and to supply solutions to alleviate the main known threats so as to enhance the general security of the web

Once a reputation is resolved to an IP caching also helps: the resolved name-to-IP is usually cached on the local system (and possibly on intermediate DNS servers) for a period of your time . Subsequent queries for an equivalent name from an equivalent client then don’t leave the local system until said cache expires. Of course, once the IP address of the remote service is understood , applications can use that information to enable other TCP-based protocols, like HTTP, to try to to their actual work, for instance ensuring internet cat GIFs are often reliably shared together with your colleagues.So, beat all, a couple of dozen extra UDP DNS queries from an organization’s network would be fairly inconspicuous and will leave a malicious payload to beacon bent an adversary; commands could even be received to the requesting application for processing with little difficulty.

Exam Code: 312-50v11

Certification Provider: ECCouncil

Exam Name: Certified Ethical Hacker Exam (CEH v11)

Last Update: Jul 15, 2025

Questions: 528