EC0-350 Exam Details

  • Exam Code
    :EC0-350
  • Exam Name
    :Ethical Hacking And Countermeasures (CEH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 15, 2026

EC-COUNCIL EC0-350 Online Questions & Answers

  • Question 251:

    Which of the following conditions must be given to allow a tester to exploit a Cross-Site Request Forgery (CSRF) vulnerable web application?

    A. The victim user must open the malicious link with an Internet Explorer prior to version 8.
    B. The session cookies generated by the application do not have the HttpOnly flag set.
    C. The victim user must open the malicious link with a Firefox prior to version 3.
    D. The web application should not use random tokens.

  • Question 252:

    Study the log below and identify the scan type.

    A. nmap -sR 192.168.1.10
    B. nmap -sS 192.168.1.10
    C. nmap -sV 192.168.1.10
    D. nmap -sO -T 192.168.1.10

  • Question 253:

    Joel and her team have been going through tons of garbage, recycled paper, and other rubbish in order to find some information about the target they are attempting to penetrate. How would you call this type of activity?

    A. Dumpster Diving
    B. Scanning
    C. CI Gathering
    D. Garbage Scooping

  • Question 254:

    Which type of attack is port scanning?

    A. Web server attack
    B. Information gathering
    C. Unauthorized access
    D. Denial of service attack

  • Question 255:

    A network administrator received an administrative alert at 3:00 a.m. from the intrusion detection system. The alert was generated because a large number of packets were coming into the network over ports 20 and 21. During analysis, there were no signs of attack on the FTP servers. How should the administrator classify this situation?

    A. True negatives
    B. False negatives
    C. True positives
    D. False positives

  • Question 256:

    The following is a sample of output from a penetration tester's machine targeting a machine with the IP address of 192.168.1.106:

    What is most likely taking place?

    A. Ping sweep of the 192.168.1.106 network
    B. Remote service brute force attempt
    C. Port scan of 192.168.1.106
    D. Denial of service attack on 192.168.1.106

  • Question 257:

    When Nmap performs a ping sweep, which of the following sets of requests does it send to the target device?

    A. ICMP ECHO_REQUEST and TCP SYN
    B. ICMP ECHO_REQUEST and TCP ACK
    C. ICMP ECHO_REPLY and TFP RST
    D. ICMP ECHO_REPLY and TCP FIN

  • Question 258:

    What file system vulnerability does the following command take advantage of? type c:\anyfile.exe > c:\winnt\system32\calc.exe:anyfile.exe

    A. HFS
    B. Backdoor access
    C. XFS
    D. ADS

  • Question 259:

    You perform the above traceroute and notice that hops 19 and 20 both show the same IP address.

    This probably indicates what?

    A. A host based IDS
    B. A Honeypot
    C. A stateful inspection firewall
    D. An application proxying firewall

  • Question 260:

    You want to perform advanced SQL Injection attack against a vulnerable website. You are unable to perform command shell hacks on this server. What must be enabled in SQL Server to launch these attacks?

    A. System services
    B. EXEC master access
    C. xp_cmdshell
    D. RDC

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC0-350 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.