nerdexam
Exams312-50V13Questions#516
EC-CouncilEC-Council

312-50V13 · Question #516

312-50V13 Question #516: Real Exam Question with Answer & Explanation

The correct answer is D: ntptrace -n -m 5 192.168.1.1. Explanation Option D (ntptrace -n -m 5 192.168.1.1) is correct because it combines all the elements needed to fully trace the NTP hierarchy: -n prevents hostname lookups (displaying IP addresses directly, making the trace faster and avoiding DNS resolution issues), -m 5 sets a ma

Submitted by yousef_jo· Mar 6, 2026Enumeration

Question

Being a Certified Ethical Hacker (CEH), a company has brought you on board to evaluate the safety measures in place for their network system. The company uses a network time protocol server in the demilitarized zone. During your enumeration, you decide to run a ntptrace command. Given the syntax: ntptrace [-n] [-m maxhosts] [servername/IP_address], which command usage would best serve your objective to find where the NTP server obtains the time from and to trace the list of NTP servers connected to the network?

Options

  • Antptrace -m 5 192.168.1.1
  • Btptrace 192.168.1.1
  • Cntptrace -n localhost
  • Dntptrace -n -m 5 192.168.1.1

Explanation

Explanation

Option D (ntptrace -n -m 5 192.168.1.1) is correct because it combines all the elements needed to fully trace the NTP hierarchy: -n prevents hostname lookups (displaying IP addresses directly, making the trace faster and avoiding DNS resolution issues), -m 5 sets a maximum of 5 hops to prevent infinite loops while still tracing multiple connected servers, and specifying the server IP ensures you're targeting the correct NTP server in the DMZ.

  • Option A (ntptrace -m 5 192.168.1.1) is incomplete - it omits the -n flag, meaning the command will attempt DNS lookups that can slow the trace or fail, and it doesn't optimally serve the full enumeration objective.
  • Option B (tptrace 192.168.1.1) is simply a typo/invalid command - "ntptrace" is misspelled, so it would not execute at all.
  • Option C (ntptrace -n localhost) uses -n correctly but targets only the local machine and sets no hop limit, meaning it won't trace the full chain of external NTP servers connected to the network.

Memory Tip: Think of D as the "Definitive" command - it uses all available flags together (-n + -m) with a specific target IP, giving you the most complete picture of your NTP chain. When a question asks for the most complete objective, the answer with all relevant options combined is usually correct.

Topics

#NTP enumeration#ntptrace command#Network tracing

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 312-50V13 PracticeBrowse All 312-50V13 Questions