nerdexam
Exams312-50V12Questions#191
EC-CouncilEC-Council

312-50V12 · Question #191

312-50V12 Question #191: Real Exam Question with Answer & Explanation

The correct answer is B: snmp-check (snmp_enum Module) to gather a wide array of information about the target. The ethical hacker aims to exploit default SNMP community strings to extract network information via SNMP enumeration without modifying the target MIB. The snmp-check tool is the most suitable choice for this task, as it performs comprehensive read-only enumeration.

Submitted by kevin_r· Mar 4, 2026Reconnaissance Techniques

Question

An ethical hacker has been tasked with assessing the security of a major corporation's network. She suspects the network uses default SNMP community strings. To exploit this, she plans to extract valuable network information using SNMP enumeration. Which tool could best help her to get the information without directly modifying any parameters within the SNMP agent's management information base (MIB)?

Options

  • ASnmpWalk, with a command to change an OID to a different value
  • Bsnmp-check (snmp_enum Module) to gather a wide array of information about the target
  • CNmap, with a script to retrieve all running SNMP processes and associated ports
  • DOpUtils, are mainly designed for device management and not SNMP enumeration

Explanation

The ethical hacker aims to exploit default SNMP community strings to extract network information via SNMP enumeration without modifying the target MIB. The snmp-check tool is the most suitable choice for this task, as it performs comprehensive read-only enumeration.

Common mistakes.

  • A. While SnmpWalk is used for enumerating MIBs, the instruction to "change an OID to a different value" describes an SNMP SET operation, which explicitly modifies the MIB and violates the requirement of not modifying any parameters.
  • C. Nmap is primarily a port scanner and service discovery tool; while it can identify running SNMP services and associated ports, it does not perform the detailed, comprehensive MIB enumeration required to extract valuable network information as effectively as specialized SNMP enumeration tools.
  • D. OpUtils is a network management suite primarily focused on device management and monitoring, using SNMP for operational purposes rather than being a dedicated security tool for exploiting default community strings through aggressive enumeration for security assessment.

Concept tested. SNMP enumeration for network information gathering

Reference. https://learn.microsoft.com/en-us/windows-server/networking/snmp/snmp-security

Topics

#SNMP enumeration#network reconnaissance#snmp-check#default community strings

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 312-50V12 PracticeBrowse All 312-50V12 Questions