EC0-350 Exam Details

  • Exam Code
    :EC0-350
  • Exam Name
    :Ethical Hacking And Countermeasures (CEH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 07, 2026

EC-COUNCIL EC0-350 Online Questions & Answers

  • Question 31:

    What are the three types of compliance that the Open Source Security Testing Methodology Manual (OSSTMM) recognizes?

    A. Legal, performance, audit
    B. Audit, standards based, regulatory
    C. Contractual, regulatory, industry
    D. Legislative, contractual, standards based

  • Question 32:

    Exhibit:

    ettercap CLzs --quiet

    What does the command in the exhibit do in "Ettercap"?

    A. This command will provide you the entire list of hosts in the LAN
    B. This command will check if someone is poisoning you and will report its IP.
    C. This command will detach from console and log all the collected passwords from the network to a file.
    D. This command broadcasts ping to scan the LAN instead of ARP request of all the subnet IPs.

  • Question 33:

    A large company intends to use Blackberry for corporate mobile phones and a security analyst is assigned to evaluate the possible threats. The analyst will use the Blackjacking attack method to demonstrate how an attacker could circumvent perimeter defenses and gain access to the corporate network. What tool should the analyst use to perform a Blackjacking attack?

    A. Paros Proxy
    B. BBProxy
    C. BBCrack
    D. Blooover

  • Question 34:

    You are attempting to map out the firewall policy for an organization. You discover your target system is one hop beyond the firewall. Using hping2, you send SYN packets with the exact TTL of the target system starting at port 1 and going up to port 1024. What is this process known as?

    A. Footprinting
    B. Firewalking
    C. Enumeration
    D. Idle scanning

  • Question 35:

    Michael is a junior security analyst working for the National Security Agency (NSA) working primarily on breaking terrorist encrypted messages. The NSA has a number of methods they use to decipher encrypted messages including Government Access to Keys (GAK) and inside informants. The NSA holds secret backdoor keys to many of the encryption algorithms used on the Internet. The problem for the NSA, and Michael, is that terrorist organizations are starting to use custom-built algorithms or obscure algorithms purchased from corrupt governments. For this reason, Michael and other security analysts like him have been forced to find different methods of deciphering terrorist messages. One method that Michael thought of using was to hide malicious code inside seemingly harmless programs. Michael first monitors sites and bulletin boards used by known terrorists, and then he is able to glean email addresses to some of these suspected terrorists. Michael then inserts a stealth keylogger into a mapping program file readme.txt and then sends that as an attachment to the terrorist. This keylogger takes screenshots every 2 minutes and also logs all keyboard activity into a hidden file on the terrorist's computer. Then, the keylogger emails those files to Michael twice a day with a built in SMTP server. What technique has Michael used to disguise this keylogging software?

    A. Steganography
    B. Wrapping
    C. ADS
    D. Hidden Channels

  • Question 36:

    Which NMAP command combination would let a tester scan every TCP port from a class C network that is blocking ICMP with fingerprinting and service detection?

    A. NMAP -PN -A -O -sS 192.168.2.0/24
    B. NMAP -P0 -A -O -p1-65535 192.168.0/24
    C. NMAP -P0 -A -sT -p0-65535 192.168.0/16
    D. NMAP -PN -O -sS -p 1-1024 192.168.0/8

  • Question 37:

    In an attempt to secure his wireless network, Bob turns off broadcasting of the SSID. He concludes that since his access points require the client computer to have the proper SSID, it would prevent others from connecting to the wireless network. Unfortunately unauthorized users are still able to connect to the wireless network.

    Why do you think this is possible?

    A. Bob forgot to turn off DHCP.
    B. All access points are shipped with a default SSID.
    C. The SSID is still sent inside both client and AP packets.
    D. Bob's solution only works in ad-hoc mode.

  • Question 38:

    In the context of Windows Security, what is a 'null' user?

    A. A user that has no skills
    B. An account that has been suspended by the admin
    C. A pseudo account that has no username and password
    D. A pseudo account that was created for security administration purpose

  • Question 39:

    Which of the following statements about a zone transfer correct?(Choose three.

    A. A zone transfer is accomplished with the DNS
    B. A zone transfer is accomplished with the nslookup service
    C. A zone transfer passes all zone information that a DNS server maintains
    D. A zone transfer passes all zone information that a nslookup server maintains
    E. A zone transfer can be prevented by blocking all inbound TCP port 53 connections
    F. Zone transfers cannot occur on the Internet

  • Question 40:

    A technician is resolving an issue where a computer is unable to connect to the Internet using a wireless access point. The computer is able to transfer files locally to other machines, but cannot successfully reach the Internet. When the technician examines the IP address and default gateway they are both on the 192.168.1.0/24. Which of the following has occurred?

    A. The gateway is not routing to a public IP address.
    B. The computer is using an invalid IP address.
    C. The gateway and the computer are not on the same network.
    D. The computer is not using a private IP address.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC0-350 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.