ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50v12 All Questions

View all questions & answers for the 312-50v12 exam
Go to Exam

Exam 312-50v12 topic 1 question 29 discussion

Actual exam question from ECCouncil's 312-50v12
Question #: 29
Topic #: 1
[All 312-50v12 Questions]

Nicolas just found a vulnerability on a public-facing system that is considered a zero-day vulnerability. He sent an email to the owner of the public system describing the problem and how the owner can protect themselves from that vulnerability. He also sent an email to Microsoft informing them of the problem that their systems are exposed to.
What type of hacker is Nicolas?

  • A. Black hat
  • B. White hat
  • C. Gray hat
  • D. Red hat
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by eli117 at April 4, 2023, 3:34 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
SailOn
Highly Voted 1 year, 8 months ago
From CEH v12 book, the defining feature of a white hat is PERMISSION. That's Chapter 1, and the whole point of the entire CEH course, PERMISSION. If you do not have it, you are not a white hat. So answer is C. GRAY HAT
upvoted 25 times
qtygbapjpesdayazko
1 year, 1 month ago
This is true!
upvoted 1 times
qtygbapjpesdayazko
1 year, 1 month ago
White Hats, Keyword "They have permission from the system owner." White Hats: White hats or penetration testers are individuals who use their hacking skills for defensive purposes. These days, almost every organization has security analysts who are knowledgeable about hacking countermeasures, which can secure its network and information systems against malicious attacks. They have permission from the system owner. Gray Hats: Gray hats are the individuals who work both offensively and defensively at various times. Gray hats might help hackers to find various vulnerabilities in a system or network and, at the same time, help vendors to improve products (software or hardware) by checking limitations and making them more secure.
upvoted 1 times
...
...
...
0ea2cf3
Highly Voted 1 year, 2 months ago
White hat hacker because even though Nicolas did not have permission, it was a public-facing website that implied that Nicholas did not have to do anything nefarious to access the site.
upvoted 5 times
...
HackerTom
Most Recent 4 weeks, 1 day ago
Selected Answer: C
I can see why people are saying B but the question is poor because you don't necessarily have to break into anything to find an 0-day, it could just be something obvious on a page thats publicly hosted and you can theorize what the next steps would be. So the possibility for B is definitely there.
upvoted 1 times
...
RobertVidal
2 months ago
Selected Answer: B
Nicolas is an **ethical hacker** or a **white-hat hacker**. Since he responsibly disclosed the vulnerability to both the system owner and Microsoft instead of exploiting it for malicious purposes, he is demonstrating the behavior of a **white-hat hacker**—someone who helps organizations improve their security by identifying and reporting vulnerabilities ethically. If Nicolas had disclosed the vulnerability publicly before giving the affected parties a chance to fix it, he might be considered a **gray-hat hacker**. However, since he followed responsible disclosure practices, he fits the white-hat category.
upvoted 1 times
...
Mann098
4 months, 1 week ago
Selected Answer: C
Gray hat
upvoted 1 times
...
blehbleh
5 months, 1 week ago
Selected Answer: C
This is C. If you think this is B you should not take this exam.
upvoted 2 times
...
7c4eac1
5 months, 2 weeks ago
Selected Answer: B
White Hat is the right answer. Grey is a combination of both White and Black. white during the day and black during night.
upvoted 2 times
...
W1seByt3s
5 months, 2 weeks ago
Selected Answer: C
- Answer is C (No permission + Good intentions = Gey hat)
upvoted 2 times
...
bomboclad
7 months ago
Selected Answer: C
C the hack did not start with permission then he was Black but when he reported the zero day he became gray not White because he did not start with permission
upvoted 2 times
...
afonsopaizin
7 months, 1 week ago
Selected Answer: C
the c is correct
upvoted 1 times
...
f257c4e
11 months, 2 weeks ago
I was misleaded by the good intentions of Nicolas, but he doesn't have permission.
upvoted 3 times
...
qtygbapjpesdayazko
1 year, 1 month ago
Selected Answer: C
White Hats, Keyword "They have permission from the system owner."
upvoted 1 times
...
Theclassicman
1 year, 4 months ago
Does not say they got permission first to scan. So I would consider them a gray hat hacker.
upvoted 2 times
...
Hapipass
1 year, 4 months ago
Selected Answer: C
C. Gray Hat White Hat (with Permission and good intention) + Black Hat (without permission and bad intention) = Gray Hat ( with/without permission and good/bad intention)
upvoted 2 times
...
Folken
1 year, 4 months ago
Selected Answer: C
Gray Hats : no permission
upvoted 1 times
...
insaniunt
1 year, 5 months ago
Selected Answer: C
pag 39 from CEH v12 book: White Hats Individuals who use their professed hacking skills for defensive purposes and are also known as security analysts. They have permission from the system owner Gray Hats Individuals who work both offensively and defensively at various times
upvoted 1 times
...
insaniunt
1 year, 5 months ago
Selected Answer: C
See page 39 from CEH v12 book. White Hats: Individuals who use their professed hacking skills for defensive purposes and are also known as security analysts. They have permission from the system owner (end Nicolas dont have) So, Nicolas are: C. Gray Hats Individuals who work both offensively and defensively at various times
upvoted 2 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago