EC0-350 Exam Details

  • Exam Code
    :EC0-350
  • Exam Name
    :Ethical Hacking And Countermeasures (CEH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 15, 2026

EC-COUNCIL EC0-350 Online Questions & Answers

  • Question 761:

    Every company needs a formal written document which spells out to employees precisely what they are allowed to use the company's systems for, what is prohibited, and what will happen to them if they break the rules. Two printed copies of the policy should be given to every employee as soon as possible after they join the organization. The employee should be asked to sign one copy, which should be safely filed by the company. No one should be allowed to use the company's computer systems until they have signed the policy in acceptance of its terms. What is this document called?

    A. Information Audit Policy (IAP)
    B. Information Security Policy (ISP)
    C. Penetration Testing Policy (PTP)
    D. Company Compliance Policy (CCP)

  • Question 762:

    You wish to determine the operating system and type of web server being used. At the same time you wish to arouse no suspicion within the target organization. While some of the methods listed below work, which holds the least risk of detection?

    A. Make some phone calls and attempt to retrieve the information using social engineering.
    B. Use nmap in paranoid mode and scan the web server.
    C. Telnet to the web server and issue commands to illicit a response.
    D. Use the netcraft web site look for the target organization's web site.

  • Question 763:

    After a client sends a connection request (SYN) packet to the server, the server will respond (SYN-ACK) with a sequence number of its choosing, which then must be acknowledged (ACK) by the client. This sequence number is predictable; the attack connects to a service first with its own IP address, records the sequence number chosen, and then opens a second connection from a forged IP address. The attack doesn't see the SYN-ACK (or any other packet) from the server, but can guess the correct responses. If the source IP address is used for authentication, then the attacker can use the one-sided communication to break into the server. What attacks can you successfully launch against a server using the above technique?

    A. Denial of Service attacks
    B. Session Hijacking attacks
    C. Web page defacement attacks
    D. IP spoofing attacks

  • Question 764:

    Company A and Company B have just merged and each has its own Public Key Infrastructure (PKI). What must the Certificate Authorities (CAs) establish so that the private PKIs for Company A and Company B trust one another and each private PKI can validate digital certificates from the other company?

    A. Poly key exchange
    B. Cross certification
    C. Poly key reference
    D. Cross-site exchange

  • Question 765:

    Stephanie works as a records clerk in a large office building in downtown Chicago. On Monday, she went to a mandatory security awareness class (Security5) put on by her company's IT department. During the class, the IT department informed all employees that everyone's Internet activity was thenceforth going to be monitored.

    Stephanie is worried that her Internet activity might give her supervisor reason to write her up, or worse get her fired. Stephanie's daily work duties only consume about four hours of her time, so she usually spends the rest of the day surfing the web. Stephanie really enjoys surfing the Internet but definitely does not want to get fired for it.

    What should Stephanie use so that she does not get in trouble for surfing the Internet?

    A. Stealth IE
    B. Stealth Anonymizer
    C. Stealth Firefox
    D. Cookie Disabler

  • Question 766:

    Kevin is an IT security analyst working for Emerson Time Makers, a watch manufacturing company in Miami. Kevin and his girlfriend Katy recently broke up after a big fight. Kevin believes that she was seeing another person. Kevin, who has

    an online email account that he uses for most of his mail, knows that Katy has an account with that same company. Kevin logs into his email account online and gets the following URL after successfully logged in: http://

    www.youremailhere.com/mail.asp?mailbox=KevinandSmith=121%22 Kevin changes the URL to:

    http://www.youremailhere.com/mail.asp?mailbox=KatyandSanchez=121%22 Kevin is trying to access her email account to see if he can find out any information. What is Kevin attempting here to gain access to Katy's mailbox?

    A. This type of attempt is called URL obfuscation when someone manually changes a URL to try and gain unauthorized access
    B. By changing the mailbox's name in the URL, Kevin is attempting directory transversal
    C. Kevin is trying to utilize query string manipulation to gain access to her email account
    D. He is attempting a path-string attack to gain access to her mailbox

  • Question 767:

    Which of the following is one of the key features found in a worm but not seen in a virus?

    A. The payload is very small, usually below 800 bytes.
    B. It is self replicating without need for user intervention.
    C. It does not have the ability to propagate on its own.
    D. All of them cannot be detected by virus scanners.

  • Question 768:

    A POP3 client contacts the POP3 server:

    A. To send mail
    B. To receive mail
    C. to send and receive mail
    D. to get the address to send mail to
    E. initiate a UDP SMTP connection to read mail

  • Question 769:

    What type of port scan is shown below?

    A. Idle Scan
    B. Windows Scan
    C. XMAS Scan
    D. SYN Stealth Scan

  • Question 770:

    Peter is a Linux network admin. As a knowledgeable security consultant, he turns to you to look for help on a firewall. He wants to use Linux as his firewall and use the latest freely available version that is offered. What do you recommend? Select the best answer.

    A. Ipchains
    B. Iptables
    C. Checkpoint FW for Linux
    D. Ipfwadm

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC0-350 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.