EC0-350 Exam Details

  • Exam Code
    :EC0-350
  • Exam Name
    :Ethical Hacking And Countermeasures (CEH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 07, 2026

EC-COUNCIL EC0-350 Online Questions & Answers

  • Question 41:

    Web servers often contain directories that do not need to be indexed. You create a text file with search engine indexing restrictions and place it on the root directory of the Web Server.

    User-agent: *

    Disallow: /images/

    Disallow: /banners/

    Disallow: /Forms/

    Disallow: /Dictionary/

    Disallow: /_borders/

    Disallow: /_fpclass/

    Disallow: /_overlay/

    Disallow: /_private/

    Disallow: /_themes/

    What is the name of this file?

    A. robots.txt
    B. search.txt
    C. blocklist.txt
    D. spf.txt

  • Question 42:

    In order to show improvement of security over time, what must be developed?

    A. Reports
    B. Testing tools
    C. Metrics
    D. Taxonomy of vulnerabilities

  • Question 43:

    Perimeter testing means determining exactly what your firewall blocks and what it allows. To conduct a good test, you can spoof source IP addresses and source ports. Which of the following command results in packets that will appear to originate from the system at 10.8.8.8? Such a packet is useful for determining whether the firewall is allowing random packets in or out of your network.

    A. hping3 -T 10.8.8.8 -S netbios -c 2 -p 80
    B. hping3 -Y 10.8.8.8 -S windows -c 2 -p 80
    C. hping3 -O 10.8.8.8 -S server -c 2 -p 80
    D. hping3 -a 10.8.8.8 -S springfield -c 2 -p 80

  • Question 44:

    Which type of access control is used on a router or firewall to limit network activity?

    A. Mandatory
    B. Discretionary
    C. Rule-based
    D. Role-based

  • Question 45:

    Ann would like to perform a reliable scan against a remote target. She is not concerned about being stealth at this point. Which of the following type of scans would be the most accurate and reliable option?

    A. A half-scan
    B. A UDP scan
    C. A TCP Connect scan
    D. A FIN scan

  • Question 46:

    Samantha was hired to perform an internal security test of XYZ. She quickly realized that all networks are making use of switches instead of traditional hubs. This greatly limits her ability to gather information through network sniffing. Which of the following techniques can she use to gather information from the switched network or to disable some of the traffic isolation features of the switch? (Choose two)

    A. Ethernet Zapping
    B. MAC Flooding
    C. Sniffing in promiscuous mode
    D. ARP Spoofing

  • Question 47:

    Which of the following is an example of IP spoofing?

    A. SQL injections
    B. Man-in-the-middle
    C. Cross-site scripting
    D. ARP poisoning

  • Question 48:

    You ping a target IP to check if the host is up. You do not get a response. You suspect ICMP is blocked at the firewall. Next you use hping2 tool to ping the target host and you get a response. Why does the host respond to hping2 and not ping packet?

    A. Ping packets cannot bypass firewalls
    B. You must use ping 10.2.3.4 switch
    C. Hping2 uses stealth TCP packets to connect
    D. Hping2 uses TCP instead of ICMP by default

  • Question 49:

    Which of the following steganography utilities exploits the nature of white space and allows the user to conceal information in these white spaces?

    A. Image Hide
    B. Snow
    C. Gif-It-Up
    D. NiceText

  • Question 50:

    Steven the hacker realizes the network administrator of Acme Corporation is using syskey in Windows 2008 Server to protect his resources in the organization. Syskey independently encrypts the hashes so that physical access to the server, tapes, or ERDs is only first step to cracking the passwords. Steven must break through the encryption used by syskey before he can attempt to use brute force dictionary attacks on the hashes. Steven runs a program called "SysCracker" targeting the Windows 2008 Server machine in attempting to crack the hash used by Syskey. He needs to configure the encryption level before he can launch the attack. How many bits does Syskey use for encryption?

    A. 40-bit encryption
    B. 128-bit encryption
    C. 256-bit encryption
    D. 64-bit encryption

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC0-350 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.