EC Council312 50Exam
EDUSUM.COM
Getcompletedetailon312 50examguidetocrackEC CouncilCertifiedEthicalHacker.Youcan collectallinformationon312 50tutorial,practicetest,books,studymaterial,examquestions,and syllabus.FirmyourknowledgeonEC CouncilCertifiedEthicalHackerandgetreadytocrack312 50certification.Exploreallinformationon312 50examwithnumberofquestions,passing percentageandtimedurationtocompletetest.
The EC-Council 312-50 Exam is challenging and thorough preparation is essential for success. This exam study guide is designed to help you prepare for the CEH certification exam. It contains a detailed list of the topics covered on the Professional exam, as well as a detailed list of preparation resources. This study guide for the EC-Council Certified Ethical Hacker will help guide you through the study process for your certification.
Topic Details
- Network Footprinting
Footprinting through Social Engineering Footprinting Tools
Footprinting Countermeasures
Network Scanning Concepts Scanning Tools
Scanning Networks
Host Discovery Port and Service Discovery OS Discovery (Banner Grabbing/OS Fingerprinting) Scanning Beyond IDS and Firewall Draw Network Diagrams
Enumeration Concepts
NetBIOS Enumeration
SNMP Enumeration
LDAP Enumeration
NTP and NFS Enumeration
Enumeration
SMTP and DNS Enumeration
Other Enumeration Techniques (IPsec, VoIP, RPC, Unix/Linux, Telnet, FTP, TFTP, SMB, IPv6, and BGP enumeration)
- Enumeration Countermeasures
System Hacking Phases and Attack Techniques - 17%
Vulnerability Assessment Concepts
Vulnerability Classification and Assessment Types
Vulnerability Analysis
Vulnerability Assessment Solutions and Tools
Vulnerability Assessment Reports
System Hacking Concepts
Gaining Access
Cracking Passwords
- Vulnerability Exploitation
System Hacking
- Escalating Privileges
- Maintaining Access
- Executing Applications
- Hiding Files - Clearing Logs
Malware Threats
- Malware Concepts APT Concepts
- Trojan Concepts
Virus and Worm Concepts File less Malware Concepts Malware Analysis Malware Countermeasures Anti Malware Software
Network and Perimeter Hacking - 14%
Sniffing Concepts
Sniffing Technique: MAC Attacks Sniffing Technique: DHCP Attacks
Sniffing
Social Engineering
Sniffing Technique: ARP Poisoning Sniffing Technique: Spoofing Attacks Sniffing Technique: DNS Poisoning Sniffing Tools
Sniffing Countermeasures Sniffing Detection Techniques
Social Engineering Concepts
Social Engineering Techniques Insider Threats
Impersonation on Social Networking Sites Identity Theft Social Engineering Countermeasures
DoS/DDoS Concepts
DoS/DDoS Attack Techniques Botnets
Denial-of-Service
- DDoS - Case Study - DoS/DDoS Attack Tools
- DoS/DDoS Countermeasures - DoS/DDoS Protection Tools
- Session Hijacking Concepts
- Application Level Session Hijacking
Session Hijacking
- Network Level Session Hijacking - Session Hijacking Tools - Session Hijacking Countermeasures
- IDS, IPS, Firewall, and Honeypot Concepts IDS, IPS, Firewall, and Honeypot Solutions
Evading IDS
Evading IDS, Firewalls, and Honeypots
Evading Firewalls IDS/Firewall Evading Tools Detecting Honeypots IDS/Firewall Evasion Countermeasures
Web Application Hacking - 16%
Web Server Concepts Web Server Attacks Web Server Attack Methodology Web Server Attack Tools Web Server Countermeasures Patch Management Web Server Security Tools
Web App Concepts Web App Threats Web App Hacking Methodology Footprint Web Infrastructure Analyze Web Applications
Bypass Client Side Controls Attack Authentication Mechanism Attack Authorization Schemes Attack Access Controls
Attack Session Management Mechanism Perform Injection Attacks Attack Application Logic Flaws
- Attack Shared Environments
- Attack Database Connectivity
- Attack Web App Client
- Attack Web Services
- Web API, Webhooks and Web Shell
- Web App Security
- SQL Injection Concepts
SQL Injection
Types of SQL Injection SQL Injection Methodology
Topic Details
- SQL Injection Tools
Evasion Techniques
SQL Injection Countermeasures
Wireless Network Hacking - 6%
- Wireless Concepts
- Wireless Encryption
- Wireless Threats
Hacking Wireless Networks
Wireless Hacking Methodology
Wireless Hacking Tools
Bluetooth Hacking Wireless Countermeasures
Wireless Security Tools
Mobile Platform, IoT, and OT Hacking - 8%
Mobile Platform Attack Vectors
Hacking Mobile Platforms
Hacking Android OS Hacking iOS
Mobile Device Management
Mobile Security Guidelines and Tools
IoT Concepts
IoT Attacks
IoT Hacking Methodology
IoT Hacking Tools
IoT Countermeasures
IoT and OT Hacking
OT Concepts
OT Attacks
OT Hacking Methodology
OT Hacking Tools
OT Countermeasures
Cloud Computing - 6%
Cloud Computing Concepts
Container Technology
Serverless Computing
Cloud Computing
Cloud Computing Threats
Cloud Hacking Cloud Security
Topic Details
Cryptography - 6%
- Cryptography Concepts - Encryption Algorithms - Cryptography Tools
Cryptography
Public Key Infrastructure (PKI) Email Encryption Disk Encryption Cryptanalysis
Countermeasures
To make you familiar with the EC Council Certified Ethical Hacker (312 50) certification exam structure, we have prepared this sample question set. We suggest you to try our Sample Questions for CEH v11 312-50 Certification to test your understanding of the EC-Council 312-50 process with the real EC-Council certification exam environment.
312-50 EC-Council Certified Ethical Hacker Sample Questions:01. The DNS server where records for a domain belonging to an organization or enterprise reside is called the ____________ server.
Local 02. Which of these devices would not be considered part of the Internet of Things?
312 50: Certified Ethical Hacker (CEH) 7
03. You've installed multiple files and processes on the compromised system. What should you also look at installing?
a) Registry keys
b) Alternate data streams c) Root login d) Rootkit
04. What order, from bottom to top, does the TCP/IP architecture use?
a) Network Access, Network, Transport, Application b) Link, Internet, Transport, Application c) Physical, Network, Session, Application d) Data Link, Internet, Transport, Application
05. How would you ensure that confidentiality is implemented in an organization?
a) Watchdog processes b) Encryption c) Cryptographic hashes d) Web servers
06. What piece of software could you use to recover from a ransomware attack?
a) Decryptor b) Encryptor c) Anti-malware d) Endpoint detection and response
07. You see the following text written down—port:502. What does that likely reference?
a) Shodan search b) I/O search c) p0f results d) RIR query
08. Why is it important to store system logs remotely?
a) Local systems can't handle it. b) Bandwidth is faster than disks. c) Attackers might delete local logs. d) It will defend against attacks.
50: Certified Ethical Hacker (CEH)
09. An intrusion detection system can perform which of the following functions?
a) Block traffic b) Filter traffic based on headers c) Generate alerts on traffic d) Log system messages
10. If you wanted a lightweight protocol to send real-time data over, which of these would you use?
a) TCP b) HTTP c) ICMP d) UDP
Answers:-
Answer 01:- a Answer 02:- a Answer 03:- d Answer 04:- b Answer 05:- b Answer 06:- a Answer 07:- a Answer 08:- c Answer 09:- c Answer 10:- d