EC0-350 Exam Details

  • Exam Code
    :EC0-350
  • Exam Name
    :Ethical Hacking And Countermeasures (CEH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 15, 2026

EC-COUNCIL EC0-350 Online Questions & Answers

  • Question 181:

    Identify SQL injection attack from the HTTP requests shown below:

    A. http://www.myserver.c0m/search.asp? lname=smith%27%3bupdate%20usertable%20set%20passwd%3d%27hAx0r%27%3b-- %00
    B. http://www.myserver.c0m/script.php?mydata=%3cscript%20src=%22
    C. http%3a%2f%2fwww.yourserver.c0m%2fbadscript.js%22%3e%3c%2fscript%3e
    D. http://www.victim.com/example accountnumber=67891andcreditamount=999999999

  • Question 182:

    A majority of attacks come from insiders, people who have direct access to a company's computer system as part of their job function or a business relationship. Who is considered an insider?

    A. A competitor to the company because they can directly benefit from the publicity generated by making such an attack
    B. Disgruntled employee, customers, suppliers, vendors, business partners, contractors, temps, and consultants
    C. The CEO of the company because he has access to all of the computer systems
    D. A government agency since they know the company's computer system strengths and weaknesses

  • Question 183:

    Which of the following ICMP message types are used for destinations unreachables?

    B. 3
    C. 11
    D. 13
    E. 17

  • Question 184:

    Which of the following is true of the wireless Service Set ID (SSID)? (Select all that apply.)

    A. Identifies the wireless network
    B. Acts as a password for network access
    C. Should be left at the factory default setting
    D. Not broadcasting the SSID defeats NetStumbler and other wireless discovery tools

  • Question 185:

    How can a policy help improve an employee's security awareness?

    A. By implementing written security procedures, enabling employee security training, and promoting the benefits of security
    B. By using informal networks of communication, establishing secret passing procedures, and immediately terminating employees
    C. By sharing security secrets with employees, enabling employees to share secrets, and establishing a consultative help line
    D. By decreasing an employee's vacation time, addressing ad-hoc employment clauses, and ensuring that managers know employee strengths

  • Question 186:

    A company firewall engineer has configured a new DMZ to allow public systems to be located away from the internal network. The engineer has three security zones set:

    Untrust (Internet) ?(Remote network = 217.77.88.0/24)

    DMZ (DMZ) ?(11.12.13.0/24)

    Trust (Intranet) ?(192.168.0.0/24)

    The engineer wants to configure remote desktop access from a fixed IP on the remote network to a remote desktop server in the DMZ. Which rule would best fit this requirement?

    A. Permit 217.77.88.0/24 11.12.13.0/24 RDP 3389
    B. Permit 217.77.88.12 11.12.13.50 RDP 3389
    C. Permit 217.77.88.12 11.12.13.0/24 RDP 3389
    D. Permit 217.77.88.0/24 11.12.13.50 RDP 3389

  • Question 187:

    Which type of hacker represents the highest risk to your network?

    A. black hat hackers
    B. grey hat hackers
    C. disgruntled employees
    D. script kiddies

  • Question 188:

    You are programming a buffer overflow exploit and you want to create a NOP sled of 200 bytes in the program exploit.c

    What is the hexadecimal value of NOP instruction?

    A. 0x60
    B. 0x80
    C. 0x70
    D. 0x90

  • Question 189:

    Snort is an open source Intrusion Detection system. However, it can also be used for a few other purposes as well. Which of the choices below indicate the other features offered by Snort?

    A. IDS, Packet Logger, Sniffer
    B. IDS, Firewall, Sniffer
    C. IDS, Sniffer, Proxy
    D. IDS, Sniffer, content inspector

  • Question 190:

    Bart is looking for a Windows NT/2000/XP command-line tool that can be used to assign, display, or modify ACL's (access control lists) to files or folders and also one that can be used within batch files. Which of the following tools can be used for that purpose? (Choose the best answer)

    A. PERM.exe
    B. CACLS.exe
    C. CLACS.exe
    D. NTPERM.exe

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC0-350 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.