EC0-350 Exam Details

  • Exam Code
    :EC0-350
  • Exam Name
    :Ethical Hacking And Countermeasures (CEH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 07, 2026

EC-COUNCIL EC0-350 Online Questions & Answers

  • Question 51:

    What techniques would you use to evade IDS during a Port Scan? (Select 4 answers)

    A. Use fragmented IP packets
    B. Spoof your IP address when launching attacks and sniff responses from the server
    C. Overload the IDS with Junk traffic to mask your scan
    D. Use source routing (if possible)
    E. Connect to proxy servers or compromised Trojaned machines to launch attacks

  • Question 52:

    If you come across a sheepdip machine at your client's site, what should you do?

    A. A sheepdip computer is used only for virus-checking.
    B. A sheepdip computer is another name for a honeypot
    C. A sheepdip coordinates several honeypots.
    D. A sheepdip computers defers a denial of service attack.

  • Question 53:

    Which of the following Registry location does a Trojan add entries to make it persistent on Windows 7? (Select 2 answers)

    A. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
    B. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\System32\CurrentVersion\ Run
    C. HKEY_CURRENT_USER\Software\Microsoft\Windows\System32\CurrentVersion\Run
    D. HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run

  • Question 54:

    Which definition among those given below best describes a covert channel?

    A. A server program using a port that is not well known.
    B. Making use of a protocol in a way it is not intended to be used.
    C. It is the multiplexing taking place on a communication link.
    D. It is one of the weak channels used by WEP which makes it insecure.

  • Question 55:

    This attack technique is used when a Web application is vulnerable to an SQL Injection but the results of the Injection are not visible to the attacker.

    A. Unique SQL Injection
    B. Blind SQL Injection
    C. Generic SQL Injection
    D. Double SQL Injection

  • Question 56:

    Which Steganography technique uses Whitespace to hide secret messages?

    A. snow
    B. beetle
    C. magnet
    D. cat

  • Question 57:

    Which of the following best describes session key creation in SSL?

    A. It is created by the server after verifying theuser's identity
    B. It is created by the server upon connection by the client
    C. It is created by the client from the server's public key
    D. It is created by the client after verifying the server's identity

  • Question 58:

    Let's imagine three companies (A, B and C), all competing in a challenging global environment. Company A and B are working together in developing a product that will generate a major competitive advantage for them. Company A has a secure DNS server while company B has a DNS server vulnerable to spoofing. With a spoofing attack on the DNS server of company B, company C gains access to outgoing e-mails from company

    B. How do you prevent DNS spoofing? (Select the Best Answer.)

    A. Install DNS logger and track vulnerable packets
    B. Disable DNS timeouts
    C. Install DNS Anti-spoofing
    D. Disable DNS Zone Transfer

  • Question 59:

    Global deployment of RFC 2827 would help mitigate what classification of attack?

    A. Sniffing attack
    B. Denial of service attack
    C. Spoofing attack
    D. Reconnaissance attack
    E. Prot Scan attack

  • Question 60:

    Sandra is conducting a penetration test for XYZ.com. She knows that XYZ.com is using wireless networking for some of the offices in the building right down the street. Through social engineering she discovers that they are using 802.11g.

    Sandra knows that 802.11g uses the same 2.4GHz frequency range as 802.11b. Using NetStumbler and her 802.11b wireless NIC, Sandra drives over to the building to map the wireless networks. However, even though she repositions

    herself around the building several times, Sandra is not able to detect a single AP.

    What do you think is the reason behind this?

    A. Netstumbler does not work against 802.11g.
    B. You can only pick up 802.11g signals with 802.11a wireless cards.
    C. The access points probably have WEP enabled so they cannot be detected.
    D. The access points probably have disabled broadcasting of the SSID so they cannot be detected.
    E. 802.11g uses OFDM while 802.11b uses DSSS so despite the same frequency and 802.11b card cannot see an 802.11g signal.
    F. Sandra must be doing something wrong, as there is no reason for her to not see the signals.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC0-350 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.