EC0-350 Exam Details

  • Exam Code
    :EC0-350
  • Exam Name
    :Ethical Hacking And Countermeasures (CEH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 07, 2026

EC-COUNCIL EC0-350 Online Questions & Answers

  • Question 791:

    What would best be defined as a security test on services against a known vulnerability database using an automated tool?

    A. A penetration test
    B. A privacy review
    C. A server audit
    D. A vulnerability assessment

  • Question 792:

    What is the algorithm used by LM for Windows2000 SAM?

    A. MD4
    B. DES
    C. SHA
    D. SSL

  • Question 793:

    Which command lets a tester enumerate alive systems in a class C network via ICMP using native Windows tools?

    A. ping 192.168.2.
    B. ping 192.168.2.255
    C. for %V in (1 1 255) do PING 192.168.2.%V
    D. for /L %V in (1 1 254) do PING -n 1 192.168.2.%V | FIND /I "Reply"

  • Question 794:

    Vulnerability scanners are automated tools that are used to identify vulnerabilities and misconfigurations of hosts. They also provide information regarding mitigating discovered vulnerabilities.

    Which of the following statements is incorrect?

    A. Vulnerability scanners attempt to identify vulnerabilities in the hosts scanned.
    B. Vulnerability scanners can help identify out-of-date software versions, missing patches, or system upgrades
    C. They can validate compliance with or deviations from the organization's security policy
    D. Vulnerability scanners can identify weakness and automatically fix and patch the vulnerabilities without user intervention

  • Question 795:

    William has received a Chess game from someone in his computer programming class through email. William does not really know the person who sent the game very well, but decides to install the game anyway because he really likes Chess.

    After William installs the game, he plays it for a couple of hours. The next day, William plays the Chess game again and notices that his machine has begun to slow down. He brings up his Task Manager and sees the following programs running:

    What has William just installed?

    A. Zombie Zapper (ZoZ)
    B. Remote Access Trojan (RAT)
    C. Bot IRC Tunnel (BIT)
    D. Root Digger (RD)

  • Question 796:

    Which of the following commands runs snort in packet logger mode?

    A. ./snort -dev -h ./log
    B. ./snort -dev -l ./log
    C. ./snort -dev -o ./log
    D. ./snort -dev -p ./log

  • Question 797:

    International Organization for Standardization (ISO) standard 27002 provides guidance for compliance by outlining

    A. guidelines and practices for security controls.
    B. financial soundness and business viability metrics.
    C. standard best practice for configuration management.
    D. contract agreement writing standards.

  • Question 798:

    In an attempt to secure his wireless network, Bob implements a VPN to cover the wireless communications. Immediately after the implementation, users begin complaining about how slow the wireless network is. After benchmarking the network's speed. Bob discovers that throughput has dropped by almost half even though the number of users has remained the same.

    Why does this happen in the VPN over wireless implementation?

    A. The stronger encryption used by the VPN slows down the network.
    B. Using a VPN with wireless doubles the overhead on an access point for all direct client to access point communications.
    C. VPNs use larger packets then wireless networks normally do.
    D. Using a VPN on wireless automatically enables WEP, which causes additional overhead.

  • Question 799:

    Which of the following descriptions is true about a static NAT?

    A. A static NAT uses a many-to-many mapping.
    B. A static NAT uses a one-to-many mapping.
    C. A static NAT uses a many-to-one mapping.
    D. A static NAT uses a one-to-one mapping.

  • Question 800:

    Snort has been used to capture packets on the network. On studying the packets, the penetration tester finds it to be abnormal. If you were the penetration tester, why would you find this abnormal? What is odd about this attack? (Choose the most appropriate statement)

    A. This is not a spoofed packet as the IP stack has increasing numbers for the three flags.
    B. This is back orifice activity as the scan comes from port 31337.
    C. The attacker wants to avoid creating a sub-carrier connection that is not normally valid.
    D. There packets were created by a tool; they were not created by a standard IP stack.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC0-350 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.