EC0-350 Exam Details

  • Exam Code
    :EC0-350
  • Exam Name
    :Ethical Hacking And Countermeasures (CEH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 15, 2026

EC-COUNCIL EC0-350 Online Questions & Answers

  • Question 751:

    An Nmap scan shows the following open ports, and nmap also reports that the OS guessing results to match too many signatures hence it cannot reliably be identified: 21 ftp 23 telnet 80 http 443 https What does this suggest?

    A. This is a Windows Domain Controller
    B. The host is not firewalled
    C. The host is not a Linux or Solaris system
    D. The host is not properly patched

  • Question 752:

    All the web servers in the DMZ respond to ACK scan on port 80. Why is this happening ?

    A. They are all Windows based webserver
    B. They are all Unix based webserver
    C. The company is not using IDS
    D. The company is not using a stateful firewall

  • Question 753:

    Which of the following techniques will identify if computer files have been changed?

    A. Network sniffing
    B. Permission sets
    C. Integrity checking hashes
    D. Firewall alerts

  • Question 754:

    After an attacker has successfully compromised a remote computer, what would be one of the last steps that would be taken to ensure that the compromise is not traced back to the source of the problem?

    A. Install pactehs
    B. Setup a backdoor
    C. Cover your tracks
    D. Install a zombie for DDOS

  • Question 755:

    What is the BEST alternative if you discover that a rootkit has been installed on one of your computers?

    A. Copy the system files from a known good system
    B. Perform a trap and trace
    C. Delete the files and try to determine the source
    D. Reload from a previous backup
    E. Reload from known good media

  • Question 756:

    Eric has discovered a fantastic package of tools named Dsniff on the Internet. He has learnt to use these tools in his lab and is now ready for real world exploitation. He was able to effectively intercept communications between the two entities and establish credentials with both sides of the connections. The two remote ends of the communication never notice that Eric is relaying the information between the two.

    What would you call this attack?

    A. Interceptor
    B. Man-in-the-middle
    C. ARP Proxy
    D. Poisoning Attack

  • Question 757:

    John is using a special tool on his Linux platform that has a signature database and is therefore able to detect hundred of vulnerabilities in UNIX, Windows, and commonly-used web CGI scripts. Additionally, the database detects DDoS zombies and Trojans. What would be the name of this multifunctional tool?

    A. nmap
    B. hping
    C. nessus
    D. make

  • Question 758:

    Which of the following is a client-server tool utilized to evade firewall inspection?

    A. tcp-over-dns
    B. kismet
    C. nikto
    D. hping

  • Question 759:

    What is the essential difference between an `Ethical Hacker' and a `Cracker'?

    A. The ethical hacker does not use the same techniques or skills as a cracker.
    B. The ethical hacker does it strictly for financial motives unlike a cracker.
    C. The ethical hacker has authorization from the owner of the target.
    D. The ethical hacker is just a cracker who is getting paid.

  • Question 760:

    As a securing consultant, what are some of the things you would recommend to a company to ensure DNS security? Select the best answers.

    A. Use the same machines for DNS and other applications
    B. Harden DNS servers
    C. Use split-horizon operation for DNS servers
    D. Restrict Zone transfers
    E. Have subnet diversity between DNS servers

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC0-350 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.