EC0-350 Exam Details

  • Exam Code
    :EC0-350
  • Exam Name
    :Ethical Hacking And Countermeasures (CEH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 07, 2026

EC-COUNCIL EC0-350 Online Questions & Answers

  • Question 121:

    What are the two basic types of attacks? (Choose two.

    A. DoS
    B. Passive
    C. Sniffing
    D. Active
    E. Cracking

  • Question 122:

    What type of Virus is shown here?

    A. Macro Virus
    B. Cavity Virus
    C. Boot Sector Virus
    D. Metamorphic Virus
    E. Sparse Infector Virus

  • Question 123:

    You are performing a port scan with nmap. You are in hurry and conducting the scans at the fastest possible speed. However, you don't want to sacrifice reliability for speed. If stealth is not an issue, what type of scan should you run to get very reliable results?

    A. Stealth scan
    B. Connect scan
    C. Fragmented packet scan
    D. XMAS scan

  • Question 124:

    Symmetric encryption algorithms are known to be fast but present great challenges on the key management side. Asymmetric encryption algorithms are slow but allow communication with a remote host without having to transfer a key out of band or in person. If we combine the strength of both crypto systems where we use the symmetric algorithm to encrypt the bulk of the data and then use the asymmetric encryption system to encrypt the symmetric key, what would this type of usage be known as?

    A. Symmetric system
    B. Combined system
    C. Hybrid system
    D. Asymmetric system

  • Question 125:

    The Open Web Application Security Project (OWASP) testing methodology addresses the need to secure web applications by providing which one of the following services?

    A. An extensible security framework named COBIT
    B. A list of flaws and how to fix them
    C. Web application patches
    D. A security certification for hardened web applications

  • Question 126:

    The GET method should never be used when sensitive data such as credit card is being sent to a CGI program. This is because any GET command will appear in the URL, and will be logged by any servers. For example, let's say that you've

    entered your credit card information into a form that uses the GET method. The URL may appear like this:

    https://www.xsecurity-bank.com/creditcard.asp?cardnumber=453453433532234

    The GET method appends the credit card number to the URL. This means that anyone with access to a server log will be able to obtain this information. How would you protect from this type of attack?

    A. Never include sensitive information in a script
    B. Use HTTPS SSLv3 to send the data instead of plain HTTPS
    C. Replace the GET with POST method when sending data
    D. Encrypt the data before you send using GET method

  • Question 127:

    When a normal TCP connection starts, a destination host receives a SYN (synchronize/start) packet from a source host and sends back a SYN/ACK (synchronize acknowledge). The destination host must then hear an ACK (acknowledge) of the SYN/ACK before the connection is established. This is referred to as the "TCP three-way handshake." While waiting for the ACK to the SYN ACK, a connection queue of finite size on the destination host keeps track of connections waiting to be completed. This queue typically empties quickly since the ACK is expected to arrive a few milliseconds after the SYN ACK. How would an attacker exploit this design by launching TCP SYN attack?

    A. Attacker generates TCP SYN packets with random destination addresses towards a victim host
    B. Attacker floods TCP SYN packets with random source addresses towards a victim host
    C. Attacker generates TCP ACK packets with random source addresses towards a victim host
    D. Attacker generates TCP RST packets with random source addresses towards a victim host

  • Question 128:

    In what stage of Virus life does a stealth virus gets activated with the user performing certain actions such as running an infected program?

    A. Design
    B. Elimination
    C. Incorporation
    D. Replication
    E. Launch
    F. Detection

  • Question 129:

    Which of the following is a symmetric cryptographic standard?

    A. DSA
    B. PKI
    C. RSA
    D. 3DES

  • Question 130:

    To see how some of the hosts on your network react, Winston sends out SYN packets to an IP range. A number of IPs respond with a SYN/ACK response. Before the connection is established he sends RST packets to those hosts to stop the session. Winston has done this to see how his intrusion detection system will log the traffic. What type of scan is Winston attempting here?

    A. Winston is attempting to find live hosts on your company's network by using an XMAS scan.
    B. He is utilizing a SYN scan to find live hosts that are listening on your network.
    C. This type of scan he is using is called a NULL scan.
    D. He is using a half-open scan to find live hosts on your network.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC0-350 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.