312-50v12 ECCouncil Certified Ethical Hacker Exam (CEHv12) exact Exam Questions

Certified Ethical Hacker Exam (CEHv12)

Last Update 20 hours ago Total Questions : 572

The Certified Ethical Hacker Exam (CEHv12) content is now fully updated, with all current exam questions added 20 hours ago. Deciding to include 312-50v12 practice exam questions in your study plan goes far beyond basic test preparation.

You'll find that our 312-50v12 exam questions frequently feature detailed scenarios and practical problem-solving exercises that directly mirror industry challenges. Engaging with these 312-50v12 sample sets allows you to effectively manage your time and pace yourself, giving you the ability to finish any Certified Ethical Hacker Exam (CEHv12) practice test comfortably within the allotted time.

Question # 61

While using your bank’s online servicing you notice the following string in the URL bar:

“http: // www. MyPersonalBank. com/ account?id=368940911028389 & Damount=10980 & Camount=21”

You observe that if you modify the Damount & Camount values and submit the request, that data on the web page reflects the changes.

Which type of vulnerability is present on this site?

Cookie Tampering

SQL Injection

Web Parameter Tampering

XSS Reflection

Question # 62

Bob received this text message on his mobile phone: “Hello, this is Scott Smelby from the Yahoo Bank. Kindly contact me for a vital transaction on: scottsmelby@yahoo.com”. Which statement below is true?

This is a scam as everybody can get a @yahoo address, not the Yahoo customer service employees.

This is a scam because Bob does not know Scott.

Bob should write to scottmelby@yahoo.com to verify the identity of Scott.

This is probably a legitimate message as it comes from a respectable organization.

Question # 63

Eric has discovered a fantastic package of tools named Dsniff on the Internet. He has learnt to use these tools in his lab and is now ready for real world exploitation. He was able to effectively intercept communications between the two entities and establish credentials with both sides of the connections. The two remote ends of the communication never notice that Eric is relaying the information between the two. What would you call this attack?

Interceptor

Man-in-the-middle

ARP Proxy

Poisoning Attack

Question # 64

A large company intends to use Blackberry for corporate mobile phones and a security analyst is assigned to evaluate the possible threats. The analyst will use the Blackjacking attack method to demonstrate how an attacker could circumvent perimeter defenses and gain access to the Prometric Online Testing – Reports https://ibt1.prometric.com/users/custom/report_queue/rq_str... corporate network. What tool should the analyst use to perform a Blackjacking attack?

Paros Proxy

BBProxy

Blooover

BBCrack

Question # 65

Your company was hired by a small healthcare provider to perform a technical assessment on the network.

What is the best approach for discovering vulnerabilities on a Windows-based computer?

Use the built-in Windows Update tool

Use a scan tool like Nessus

Check MITRE.org for the latest list of CVE findings

Create a disk image of a clean Windows installation

Question # 66

Study the snort rule given below:

From the options below, choose the exploit against which this rule applies.

WebDav

SQL Slammer

MS Blaster

MyDoom

Question # 67

You have successfully comprised a server having an IP address of 10.10.0.5. You would like to enumerate all machines in the same network quickly.

What is the best Nmap command you will use?

nmap -T4 -q 10.10.0.0/24

nmap -T4 -F 10.10.0.0/24

nmap -T4 -r 10.10.1.0/24

nmap -T4 -O 10.10.0.0/24

Question # 68

Which of the following describes the characteristics of a Boot Sector Virus?

Modifies directory table entries so that directory entries point to the virus code instead of the actual program.

Moves the MBR to another location on the RAM and copies itself to the original location of the MBR.

Moves the MBR to another location on the hard disk and copies itself to the original location of the MBR.

Overwrites the original MBR and only executes the new virus code.

Question # 69

Which address translation scheme would allow a single public IP address to always correspond to a single machine on an internal network, allowing " server publishing " ?

Overloading Port Address Translation

Dynamic Port Address Translation

Dynamic Network Address Translation

Static Network Address Translation

Question # 70

Session splicing is an IDS evasion technique in which an attacker delivers data in multiple, small sized packets to the target computer, making it very difficult for an IDS to detect the attack signatures. Which tool can be used to perform session splicing attacks?

tcpsplice

Burp

Hydra

Whisker

Answer:

Explanation:

«Many IDS reassemble communication streams; hence, if a packet is not received within a reasonable period, many IDS stop reassembling and handling that stream. If the application under attack keeps a session active for a longer time than that spent by the IDS on reassembling it, the IDS will stop. As a result, any session after the IDS stops reassembling the sessions will be susceptible to malicious data theft by attackers. The IDS will not log any attack attempt after a successful splicing attack. Attackers can use tools such as Nessus for session splicing attacks.»

Did you know that the EC-Council exam shows how well you know their official book? So, there is no " Whisker " in it. In the chapter " Evading IDS " - > " Session Splicing " , the recommended tool for performing a session-splicing attack is Nessus. Where Wisker came from is not entirely clear, but I will assume the author of the question found it while copying Wikipedia.

https://en.wikipedia.org/wiki/Intrusion_detection_system_evasion_techniques

One basic technique is to split the attack payload into multiple small packets so that the IDS must reassemble the packet stream to detect the attack. A simple way of splitting packets is by fragmenting them, but an adversary can also simply craft packets with small payloads. The ' whisker ' evasion tool calls crafting packets with small payloads ' session splicing ' .

By itself, small packets will not evade any IDS that reassembles packet streams. However, small packets can be further modified in order to complicate reassembly and detection. One evasion technique is to pause between sending parts of the attack, hoping that the IDS will time out before the target computer does. A second evasion technique is to send the packets out of order, confusing simple packet re-assemblers but not the target computer.

NOTE: Yes, I found scraps of information about the tool that existed in 2012, but I can not give you unverified information. According to the official tutorials, the correct answer is Nessus, but if you know anything about Wisker, please write in the QA section. Maybe this question will be updated soon, but I ' m not sure about that.

Question # 71

An attacker has installed a RAT on a host. The attacker wants to ensure that when a user attempts to go to " www.MyPersonalBank.com " , the user is directed to a phishing site.

Which file does the attacker need to modify?

Boot.ini

Sudoers

Networks

Hosts

Question # 72

Which of the following tools is used to detect wireless LANs using the 802.11a/b/g/n WLAN standards on a linux platform?

Kismet

Abel

Netstumbler

Nessus

Question # 73

Which of the following represents the initial two commands that an IRC client sends to join an IRC network?

USER, NICK

USER, PASS

Question # 74

Why is a penetration test considered to be more thorough than vulnerability scan?

Vulnerability scans only do host discovery and port scanning by default.

A penetration test actively exploits vulnerabilities in the targeted infrastructure, while a vulnerability scan does not typically involve active exploitation.

It is not – a penetration test is often performed by an automated tool, while a vulnerability scan requires active engagement.

The tools used by penetration testers tend to have much more comprehensive vulnerability databases.