Browse Exams Pricing

Exams312-50V10Questions

312-50V10 Exam Questions

937 real 312-50V10 exam questions with expert-verified answers and explanations. Page 18 of 19.

Question #859Hacking Wireless Networks
You are a penetration tester tasked with testing the wireless network of your client Brakeme SA. You are attempting to break into the wireless network with the SSID "Brakeme-lntern...
WPA3DragonbloodSAE vulnerabilitywireless exploitation
Question #860Hacking Web Servers
Attacker Steve targeted an organization's network with the aim of redirecting the company's web traffic to another malicious website. To achieve this goal, Steve performed DNS cach...
DNS cache poisoningpharmingDNS spoofingidentity theft
Question #861System Hacking
what is the correct way of using MSFvenom to generate a reverse TCP shellcode for windows?
MSFvenomreverse TCP shellcodeMetasploitpayload generation
Question #862System Hacking
Harry. a professional hacker, targets the IT infrastructure of an organization. After preparing for the attack, he attempts to enter the target network using techniques such as sen...
APT lifecycleinitial intrusionspear-phishingmalware deployment
Question #863Social Engineering
Johnson, an attacker, performed online research for the contact details of reputed cybersecurity firms. He found the contact number of sibertech.org and dialed the number, claiming...
social engineeringvishingimpersonationtechnical support scam
Question #864System Hacking
Ricardo has discovered the username for an application in his targets environment. As he has a limited amount of time, he decides to attempt to use a list of common passwords he fo...
password crackingdictionary attackbrute forcecredential attack
Question #865Footprinting and Reconnaissance
Richard, an attacker, targets an MNC. in this process, he uses a footprinting technique to gather as much information as possible. Using this technique, he gathers domain informati...
Whois footprintingdomain registrationOSINTnetwork mapping
Question #866Footprinting and Reconnaissance
Taylor, a security professional, uses a tool to monitor her company's website, analyze the website's traffic, and track the geographical location of the users visiting the company'...
website monitoringtraffic analysisgeolocation trackingOSINT tools
Question #867Evading IDS, Firewalls, and Honeypots
Kevin, a professional hacker, wants to penetrate CyberTech Inc.'s network. He employed a technique, using which he encoded packets with Unicode characters. The company's IDS cannot...
IDS evasionUnicode encodingobfuscationpacket manipulation
Question #868Scanning Networks
Henry Is a cyber security specialist hired by BlackEye - Cyber security solutions. He was tasked with discovering the operating system (OS) of a host. He used the Unkornscan tool t...
OS fingerprintingTTL valuesactive scanningWindows identification
Question #869Information Security and Ethical Hacking Fundamentals
Bob was recently hired by a medical company after it experienced a major cyber security breach. Many patients are complaining that their personal medical records are fully exposed...
HIPAAPIIdata protection regulationcompliance
Question #870Scanning Networks
If a tester is attempting to ping a target that exists but receives no response or a response that states the destination is unreachable, ICMP may be disabled and the network may b...
HpingTCP pingICMP bypassnetwork scanning
Question #871Hacking Mobile Platforms
Steven connected his iPhone to a public computer that had been infected by Clark, an attacker. After establishing the connection with the public computer, Steven enabled iTunes WI-...
iOS trustjackingiTunes WiFi syncmobile device compromisepersistent access
Question #872Cloud Computing
Alice, a professional hacker, targeted an organization's cloud services. She infiltrated the targets MSP provider by sending spear-phishing emails and distributed custom-made malwa...
cloud hopper attackMSP compromisespear-phishingcloud lateral movement
Question #873Hacking Web Applications
While testing a web application in development, you notice that the web server does not properly ignore the "dot dot slash" (../) character string and instead returns the file list...
directory traversalpath traversalweb vulnerabilityfile listing
Question #874System Hacking
You are a penetration tester working to test the user awareness of the employees of the client xyz. You harvested two employees' emails from some public sources and are creating a...
cyber kill chainweaponizationclient-side backdoormalware creation
Question #875Footprinting and Reconnaissance
jane, an ethical hacker. Is testing a target organization's web server and website to identity security loopholes. In this process, she copied the entire website and its content on...
website mirroringweb footprintingdirectory structureOSINT
Question #876Footprinting and Reconnaissance
You have been authorized to perform a penetration test against a website. You want to use Google dorks to footprint the site but only want results that show file extensions. What G...
Google hackingfiletype operatorGoogle dorkspassive reconnaissance
Question #877Enumeration
Which of the following commands checks for valid users on an SMTP server?
SMTP enumerationVRFY commanduser enumerationemail server
Question #878Hacking Wireless Networks
jane invites her friends Alice and John over for a LAN party. Alice and John access Jane's wireless network without a password. However. Jane has a long, complex password on her ro...
wireless unauthorized accesspiggybackingWPA2 bypasswireless security
Question #879Evading IDS, Firewalls, and Honeypots
if you send a TCP ACK segment to a known closed port on a firewall but it does not respond with an RST. what do you know about the firewall you are scanning?
stateful firewallACK scanfirewall detectionTCP RST behavior
Question #880Footprinting and Reconnaissance
Wilson, a professional hacker, targets an organization for financial benefit and plans to compromise its systems by sending malicious emails. For this purpose, he uses a tool to tr...
email footprintingemail tracking toolsOSINTsender identity
Question #881Enumeration
During the enumeration phase. Lawrence performs banner grabbing to obtain information such as OS details and versions of services running. The service that he enumerated runs direc...
SMB enumerationport 445banner grabbingWindows file sharing
Question #882Cryptography
Samuel a security administrator, is assessing the configuration of a web server. He noticed that the server permits SSlv2 connections, and the same private key certificate is used...
DROWN attackSSLv2 vulnerabilitySSL/TLScryptographic attacks
Question #883Evading IDS, Firewalls, and Honeypots
Robin, an attacker, is attempting to bypass the firewalls of an organization through the DNS tunneling method in order to exfiltrate data. He is using the NSTX tool for bypassing t...
DNS tunnelingfirewall evasionNSTX tooldata exfiltration
Question #884Cryptography
In the field of cryptanalysis, what is meant by a "rubber-hose" attack?
rubber-hose attackcryptanalysiscoercionphysical security
Question #885Hacking Wireless Networks
in this attack, an adversary tricks a victim into reinstalling an already-in-use key. This is achieved by manipulating and replaying cryptographic handshake messages. When the vict...
KRACK attackWPA2 vulnerabilitykey reinstallationhandshake manipulation
Question #886IoT and OT Hacking
Jim, a professional hacker, targeted an organization that is operating critical Industrial Infrastructure. Jim used Nmap to scan open pons and running services on systems connected...
Nmap OT scanningEthernet/IPS7 protocolICS enumeration
Question #887Information Security and Ethical Hacking Fundamentals
Log monitoring tools performing behavioral analysis have alerted several suspicious logins on a Linux server occurring during non-business hours. After further examination of all l...
NTPtime synchronizationLinux administrationnetwork protocols
Question #888Information Security and Ethical Hacking Fundamentals
Bob, your senior colleague, has sent you a mail regarding a deal with one of the clients. You are requested to accept the offer and you oblige. After 2 days. Bob denies that he had...
non-repudiationsecurity principlesdigital signaturesauthentication
Question #889Vulnerability Analysis
John, a disgruntled ex-employee of an organization, contacted a professional hacker to exploit the organization. In the attack process, the professional hacker Installed a scanner...
agent-based scannervulnerability assessmentscanner typesvulnerability management
Question #890Scanning Networks
You are a penetration tester and are about to perform a scan on a specific server. The agreement that you signed with the client contains the following specific condition for the s...
Nmap decoy scanspoofed source IPport scanningNmap flags
Question #891Cloud Computing
There are multiple cloud deployment options depending on how isolated a customer's resources are from those of other customers. Shared environments share the costs and allow each c...
cloud deployment modelscommunity cloudshared cloud environmentcloud computing
Question #892Information Security and Ethical Hacking Fundamentals
The "Gray-box testing" methodology enforces what kind of restriction?
gray-box testingpenetration testing methodologiessecurity testingblack-box vs white-box
Question #893Hacking Mobile Platforms
which of the following Bluetooth hacking techniques refers to the theft of information from a wireless device through Bluetooth?
Bluetooth attacksBluesnarfingBluejackingwireless theft
Question #894Enumeration
After an audit, the auditors Inform you that there is a critical finding that you must tackle Immediately. You read the audit report, and the problem is the service running on port...
LDAPLDAPSport 389directory service security
Question #895Hacking Web Applications
What would be the fastest way to perform content enumeration on a given web server by using the Gobuster tool?
Gobustercontent enumerationweb directory brute forcewordlist scanning
Question #896Enumeration
John, a professional hacker, targeted an organization that uses LDAP for accessing distributed directory services. He used an automated tool to anonymously query the IDAP service f...
LDAP enumerationjxplorerdirectory servicesanonymous LDAP query
Question #897SQL Injection
Ethical hacker jane Smith is attempting to perform an SQL injection attach. She wants to test the response time of a true or false response and wants to use a second command to det...
SQL injection typestime-based injectionboolean-based injectionblind SQL injection
Question #898Hacking Web Servers
what are common files on a web server that can be misconfigured and provide useful Information for a hacker such as verbose error messages?
web server misconfigurationidq.dllIIS vulnerabilitiesverbose error messages
Question #899IoT and OT Hacking
Richard, an attacker, aimed to hack loT devices connected to a target network. In this process. Richard recorded the frequency required to share information between connected devic...
replay attackIoT signal captureURH toolfrequency injection
Question #900Vulnerability Analysis
Sam is working as a system administrator In an organization. He captured the principal characteristics of a vulnerability and produced a numerical score to reflect Its severity usi...
CVSS v3.0vulnerability severity scoringbase scorevulnerability management
Question #901Malware Threats
A friend of yours tells you that he downloaded and executed a file that was sent to him by a coworker. Since the file did nothing when executed, he asks you for help because he sus...
trojan detectionmalware analysisnetstatincident response
Question #902Footprinting and Reconnaissance
Gerard, a disgruntled ex-employee of Sunglass IT Solutions, targets this organization to perform sophisticated attacks and bring down its reputation in the market. To launch the at...
DNS footprintingzone transferDNS enumerationautomated recon tools
Question #903Enumeration
Garry is a network administrator in an organization. He uses SNMP to manage networked devices from a remote location. To manage nodes in the network, he uses MIB. which contains fo...
SNMPMIB typesnetwork managementMIB_II
Question #904Information Security and Ethical Hacking Fundamentals
Nicolas just found a vulnerability on a public-facing system that is considered a zero-day vulnerability. He sent an email to the owner of the public system describing the problem...
hacker typeswhite hatresponsible disclosurezero-day reporting
Question #905System Hacking
Which of the following are well known password-cracking programs?
password crackingL0phtcrackJohn the Rippercracking tools
Question #906System Hacking
What is the Shellshock bash vulnerability attempting to do on a vulnerable Linux host? env x='(){ :;};echo exploit' bash 璫 `cat/etc/passwd'
Shellshockbash vulnerabilitycommand injectionCVE exploitation
Question #907Cloud Computing
joe works as an it administrator in an organization and has recently set up a cloud computing service for the organization. To implement this service, he reached out to a telecom c...
NIST cloud architecturecloud carriercloud deployment rolescloud service provider
Question #908Vulnerability Analysis
David is a security professional working in an organization, and he is implementing a vulnerability management program in the organization to evaluate and control the risks and vul...
vulnerability management lifecycleremediationpatch managementrisk reduction

PreviousPage 18 of 19Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.