EC0-350 Exam Details

  • Exam Code
    :EC0-350
  • Exam Name
    :Ethical Hacking And Countermeasures (CEH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 07, 2026

EC-COUNCIL EC0-350 Online Questions & Answers

  • Question 21:

    Keystroke logging is the action of tracking (or logging) the keys struck on a keyboard, typically in a covert manner so that the person using the keyboard is unaware that their actions are being monitored.

    How will you defend against hardware keyloggers when using public computers and Internet Kiosks? (Select 4 answers)

    A. Alternate between typing the login credentials and typing characters somewhere else in the focus window
    B. Type a wrong password first, later type the correct password on the login page defeating the keylogger recording
    C. Type a password beginning with the last letter and then using the mouse to move the cursor for each subsequent letter.
    D. The next key typed replaces selected text portion. E.g. if the password is "secret", one could type "s", then some dummy keys "asdfsd". Then these dummies could be selected with mouse, and next character from the password "e" is typed, which replaces the dummies "asdfsd"
    E. The next key typed replaces selected text portion. E.g. if the password is "secret", one could type "s", then some dummy keys "asdfsd". Then these dummies could be selected with mouse, and next character from the password "e" is typed, which replaces the dummies "asdfsd"

  • Question 22:

    This IDS defeating technique works by splitting a datagram (or packet) into multiple fragments and the IDS will not spot the true nature of the fully assembled datagram. The datagram is not reassembled until it reaches its final destination. It would be a processor- intensive task for IDS to reassemble all fragments itself, and on a busy system the packet will slip through the IDS onto the network. What is this technique called?

    A. IP Routing or Packet Dropping
    B. IDS Spoofing or Session Assembly
    C. IP Fragmentation or Session Splicing
    D. IP Splicing or Packet Reassembly

  • Question 23:

    What type of port scan is shown below?

    A. Idle Scan
    B. Windows Scan
    C. XMAS Scan
    D. SYN Stealth Scan

  • Question 24:

    Which of the following are variants of mandatory access control mechanisms? (Choose two.)

    A. Two factor authentication
    B. Acceptable use policy
    C. Username / password
    D. User education program
    E. Sign in register

  • Question 25:

    A Buffer Overflow attack involves:

    A. Using a trojan program to direct data traffic to the target host's memory stack
    B. Flooding the target network buffers with data traffic to reduce the bandwidth available to legitimate users
    C. Using a dictionary to crack password buffers by guessing user names and passwords
    D. Poorly written software that allows an attacker to execute arbitrary code on a target system

  • Question 26:

    Where should a security tester be looking for information that could be used by an attacker against an organization? (Select all that apply)

    A. CHAT rooms
    B. WHOIS database
    C. News groups
    D. Web sites
    E. Search engines
    F. Organization's own web site

  • Question 27:

    You are the CIO for Avantes Finance International, a global finance company based in Geneva. You are responsible for network functions and logical security throughout the entire corporation. Your company has over 250 servers running Windows Server, 5000 workstations running Windows Vista, and 200 mobile users working from laptops on Windows 7. Last week, 10 of your company's laptops were stolen from salesmen while at a conference in Amsterdam. These laptops contained proprietary company information. While doing damage assessment on the possible public relations nightmare this may become, a news story leaks about the stolen laptops and also that sensitive information from those computers was posted to a blog online.

    What built-in Windows feature could you have implemented to protect the sensitive information on these laptops?

    A. You should have used 3DES which is built into Windows
    B. If you would have implemented Pretty Good Privacy (PGP) which is built into Windows, the sensitive information on the laptops would not have leaked out
    C. You should have utilized the built-in feature of Distributed File System (DFS) to protect the sensitive information on the laptops
    D. You could have implemented Encrypted File System (EFS) to encrypt the sensitive files on the laptops

  • Question 28:

    This type of Port Scanning technique splits TCP header into several packets so that the packet filters are not able to detect what the packets intends to do.

    A. UDP Scanning
    B. IP Fragment Scanning
    C. Inverse TCP flag scanning
    D. ACK flag scanning

  • Question 29:

    When setting up a wireless network, an administrator enters a pre-shared key for security. Which of the following is true?

    A. The key entered is a symmetric key used to encrypt the wireless data.
    B. The key entered is a hash that is used to prove the integrity of the wireless data.
    C. The key entered is based on the Diffie-Hellman method.
    D. The key is an RSA key used to encrypt the wireless data.

  • Question 30:

    Peter extracts the SIDs list from Windows 2000 Server machine using the hacking tool "SIDExtractor". Here is the output of the SIDs:

    From the above list identify the user account with System Administrator privileges.

    A. John
    B. Rebecca
    C. Sheela
    D. Shawn
    E. Somia
    F. Chang
    G. Micah

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC0-350 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.