Weekend Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: get65

ECCouncil Updated 312-50v13 Exam Questions and Answers by rehmat

Page: 38 / 59

ECCouncil 312-50v13 Exam Overview :

Exam Name: Certified Ethical Hacker Exam (CEHv13)
Exam Code: 312-50v13 Dumps
Vendor: ECCouncil Certification: CEH v13
Questions: 797 Q&A's Shared By: rehmat
Question 152

On 10th of July this year, during a security penetration test at IntelliCore Systems in Raleigh, North Carolina, the ethical hacking team evaluates the stability of the company’s file-sharing server. Sofia crafts and transmits a sequence of oversized, malformed packets designed to test how the server handles unexpected input. Shortly after, the system begins crashing intermittently due to processing failures triggered by these anomalous network requests. The security team onsite is tasked with identifying the root cause behind the packet-induced instability and attributing it to a known DoS tactic.

Which of the following best explains the technique Sofia used to trigger the server crashes?

Options:

A.

ICMP Flood Attack

B.

Ping of Death PoD

C.

Smurf Attack

D.

ACK Flood Attack

Discussion
Question 153

A penetration tester discovers that a web application is vulnerable to Local File Inclusion (LFI) due to improper input validation in a URL parameter. Which approach should the tester take to exploit this vulnerability?

Options:

A.

Conduct a brute-force attack on the admin login page to gain access

B.

Inject SQL commands into the URL parameter to test for database vulnerabilities

C.

Perform a Cross-Site Scripting (XSS) attack by injecting malicious scripts into the URL

D.

Use directory traversal to access sensitive files on the server, such as /etc/passwd

Discussion
Question 154

The company ABC recently contracts a new accountant. The accountant will be working with the financial statements. Those financial statements need to be approved by the CFO and then they will be sent to the accountant but the CFO is worried because he wants to be sure that the information sent to the accountant was not modified once he approved it. Which of the following options can be useful to ensure the integrity of the data?

Options:

A.

The document can be sent to the accountant using an exclusive USB for that document

B.

The CFO can use an excel file with a password

C.

The financial statements can be sent twice, one by email and the other delivered in USB and the accountant can compare both to be sure is the same document

D.

The CFO can use a hash algorithm in the document once he approved the financial statements

Discussion
Nell
Are these dumps reliable?
Ernie Jun 24, 2026
Yes, very much so. Cramkey Dumps are created by experienced and certified professionals who have gone through the exams themselves. They understand the importance of providing accurate and relevant information to help you succeed.
Sarah
Yeah, I was so relieved when I saw that the question appeared in the exam were similar to their exam dumps. It made the exam a lot easier and I felt confident going into it.
Aaliyah Jun 9, 2026
Same here. I've heard mixed reviews about using exam dumps, but for us, it definitely paid off.
Wyatt
Passed my exam… Thank you so much for your excellent Exam Dumps.
Arjun Jun 8, 2026
That sounds really useful. I'll definitely check it out.
Ava-Rose
Yes! Cramkey Dumps are amazing I passed my exam…Same these questions were in exam asked.
Ismail Jun 12, 2026
Wow, that sounds really helpful. Thanks, I would definitely consider these dumps for my certification exam.
Question 155

During a red team assessment of a mid-sized insurance provider in Denver, Colorado, testers established persistent access on an internal developer workstation after exploiting a misconfigured automation service. To sustain command-and-control without triggering perimeter defenses, they configured a low-bandwidth outbound channel designed to blend into infrastructure traffic that is routinely permitted through egress controls.

Security operations later identified periodic outbound communication from the compromised host to a single unfamiliar external endpoint not associated with approved vendors or user activity. The traffic was distributed over time rather than bursty. Although the exchanges resembled legitimate service requests, packet inspection revealed irregular payload sizing and structured encoding patterns inconsistent with typical client behavior across the environment.

What covert communication technique was most likely used to sustain the red team’s access?

Options:

A.

ICMP Tunneling

B.

TCP Sequence Tunneling

C.

HTTP/S Tunneling

D.

DNS Tunneling

Discussion
Page: 38 / 59
Title
Questions
Posted

312-50v13
PDF

$36.75  $104.99

312-50v13 Testing Engine

$43.75  $124.99

312-50v13 PDF + Testing Engine

$57.75  $164.99