EC0-350 Exam Details

  • Exam Code
    :EC0-350
  • Exam Name
    :Ethical Hacking And Countermeasures (CEH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 07, 2026

EC-COUNCIL EC0-350 Online Questions & Answers

  • Question 91:

    Say that "abigcompany.com" had a security vulnerability in the javascript on their website in the past. They recently fixed the security vulnerability, but it had been there for many months. Is there some way to 4go back and see the code for that error?

    Select the best answer.

    A. archive.org
    B. There is no way to get the changed webpage unless you contact someone at the company
    C. Usenet
    D. Javascript would not be in their html so a service like usenet or archive wouldn't help you

  • Question 92:

    Which of the following is a strong post designed to stop a car?

    A. Gate
    B. Fence
    C. Bollard
    D. Reinforced rebar

  • Question 93:

    The FIN flag is set and sent from host A to host B when host A has no more data to transmit (Closing a TCP connection). This flag releases the connection resources. However, host A can continue to receive data as long as the SYN sequence numbers of transmitted packets from host B are lower than the packet segment containing the set FIN flag.

    A. false
    B. true

  • Question 94:

    Annie has just succeeded in stealing a secure cookie via a XSS attack. She is able to replay the cookie even while the session is invalid on the server. Why do you think this is possible?

    A. It works because encryption is performed at the application layer (single encryption key)
    B. The scenario is invalid as a secure cookie cannot be replayed
    C. It works because encryption is performed at the network layer (layer 1 encryption)
    D. Any cookie can be replayed irrespective of the session status

  • Question 95:

    When discussing passwords, what is considered a brute force attack?

    A. You attempt every single possibility until you exhaust all possible combinations or discover the password
    B. You threaten to use the rubber hose on someone unless they reveal their password
    C. You load a dictionary of words into your cracking program
    D. You create hashes of a large number of words and compare it with the encrypted passwords
    E. You wait until the password expires

  • Question 96:

    You establish a new Web browser connection to Google. Since a 3-way handshake is required for any TCP connection, the following actions will take place.

    DNS query is sent to the DNS server to resolve www.google.com DNS server replies with the IP address for Google?

    SYN packet is sent to Google.

    Google sends back a SYN/ACK packet

    Your computer completes the handshake by sending an ACK The connection is established and the transfer of data commences

    Which of the following packets represent completion of the 3-way handshake?

    A. 4th packet
    B. 3rdpacket
    C. 6th packet
    D. 5th packet

  • Question 97:

    Which of the following settings enables Nessus to detect when it is sending too many packets and the network pipe is approaching capacity?

    A. Netstat WMI Scan
    B. Silent Dependencies
    C. Consider unscanned ports as closed
    D. Reduce parallel connections on congestion

  • Question 98:

    What are two types of ICMP code used when using the ping command?

    A. It uses types 0 and 8.
    B. It uses types 13 and 14.
    C. It uses types 15 and 17.
    D. The ping command does not use ICMP but uses UDP.

  • Question 99:

    What are the default passwords used by SNMP? (Choose two.)

    A. Password
    B. SA
    C. Private
    D. Administrator
    E. Public
    F. Blank

  • Question 100:

    A penetration tester was hired to perform a penetration test for a bank. The tester began searching for IP ranges owned by the bank, performing lookups on the bank's DNS servers, reading news articles online about the bank, watching what times the bank employees come into work and leave from work, searching the bank's job postings (paying special attention to IT related jobs), and visiting the local dumpster for the bank's corporate office. What phase of the penetration test is the tester currently in?

    A. Information reporting
    B. Vulnerability assessment
    C. Active information gathering
    D. Passive information gathering

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC0-350 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.