EC0-350 Exam Details

  • Exam Code
    :EC0-350
  • Exam Name
    :Ethical Hacking And Countermeasures (CEH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 15, 2026

EC-COUNCIL EC0-350 Online Questions & Answers

  • Question 741:

    Fake Anti-Virus, is one of the most frequently encountered and persistent threats on the web. This malware uses social engineering to lure users into infected websites with a technique called Search Engine Optimization.

    Once the Fake AV is downloaded into the user's computer, the software will scare them into believing their system is infected with threats that do not really exist, and then push users to purchase services to clean up the non-existent threats.

    The Fake AntiVirus will continue to send these annoying and intrusive alerts until a payment is made.

    What is the risk of installing Fake AntiVirus?

    A. Victim's Operating System versions, services running and applications installed will be published on Blogs and Forums
    B. Victim's personally identifiable information such as billing address and credit card details, may be extracted and exploited by the attacker
    C. Once infected, the computer will be unable to boot and the Trojan will attempt to format the hard disk
    D. Denial of Service attack will be launched against the infected computer crashing other machines on the connected network

  • Question 742:

    You work as security technician at XYZ.com. While doing web application testing, you might be required to look through multiple web pages online which can take a long time. Which of the processes listed below would be a more efficient way of doing this type of validation?

    A. Use mget to download all pages locally for further inspection.
    B. Use wget to download all pages locally for further inspection.
    C. Use get* to download all pages locally for further inspection.
    D. Use get() to download all pages locally for further inspection.

  • Question 743:

    What is a Trojan Horse?

    A. A malicious program that captures your username and password
    B. Malicious code masquerading as or replacing legitimate code
    C. An unauthorized user who gains access to your user database and adds themselves as a user
    D. A server that is to be sacrificed to all hacking attempts in order to log and monitor the hacking activity

  • Question 744:

    How can rainbow tables be defeated?

    A. Password salting
    B. Use of non-dictionary words
    C. All uppercase character passwords
    D. Lockout accounts under brute force password cracking attempts

  • Question 745:

    A consultant has been hired by the V.P. of a large financial organization to assess the company's security posture. During the security testing, the consultant comes across child pornography on the V.P.'s computer. What is the consultant's obligation to the financial organization?

    A. Say nothing and continue with the security testing.
    B. Stop work immediately and contact the authorities.
    C. Delete the pornography, say nothing, and continue security testing.
    D. Bring the discovery to the financial organization's human resource department.

  • Question 746:

    You are gathering competitive intelligence on XYZ.com. You notice that they have jobs listed on a few Internet job-hunting sites. There are two job postings for network and system administrators. How can this help you in footprint the organization?

    A. The IP range used by the target network
    B. An understanding of the number of employees in the company
    C. How strong the corporate security policy is
    D. The types of operating systems and applications being used.

  • Question 747:

    Blane is a network security analyst for his company. From an outside IP, Blane performs an XMAS scan using Nmap. Almost every port scanned does not illicit a response. What can he infer from this kind of response?

    A. These ports are open because they do not illicit a response.
    B. He can tell that these ports are in stealth mode.
    C. If a port does not respond to an XMAS scan using NMAP, that port is closed.
    D. The scan was not performed correctly using NMAP since all ports, no matter what their state, will illicit some sort of response from an XMAS scan.

  • Question 748:

    Which system consists of a publicly available set of databases that contain domain name registration contact information?

    A. WHOIS
    B. IANA
    C. CAPTCHA
    D. IETF

  • Question 749:

    An attacker sniffs encrypted traffic from the network and is subsequently able to decrypt it. The attacker can now use which cryptanalytic technique to attempt to discover the encryption key?

    A. Birthday attack
    B. Plaintext attack
    C. Meet in the middle attack
    D. Chosen ciphertext attack

  • Question 750:

    Which of the following command line switch would you use for OS detection in Nmap?

    A. -D
    B. -O
    C. -P
    D. -X

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC0-350 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.