EC0-350 Exam Details

  • Exam Code
    :EC0-350
  • Exam Name
    :Ethical Hacking And Countermeasures (CEH)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :878 Q&As
  • Last Updated
    :Jul 07, 2026

EC-COUNCIL EC0-350 Online Questions & Answers

  • Question 801:

    Jack Hacker wants to break into Brown Co.'s computers and obtain their secret double fudge cookie recipe. Jack calls Jane, an accountant at Brown Co., pretending to be an administrator from Brown Co. Jack tells Jane that there has been a

    problem with some accounts and asks her to verify her password with him ''just to double check our records.'' Jane does not suspect anything amiss, and parts with her password. Jack can now access Brown Co.'s computers with a valid user

    name and password, to steal the cookie recipe.

    What kind of attack is being illustrated here?

    A. Reverse Psychology
    B. Reverse Engineering
    C. Social Engineering
    D. Spoofing Identity
    E. Faking Identity

  • Question 802:

    While testing the company's web applications, a tester attempts to insert the following test script into the search area on the company's web sitE.

    Afterwards, when the tester presses the search button, a pop-up box appears on the screen with the text: "Testing Testing Testing". Which vulnerability has been detected in the web application?

    A. Buffer overflow
    B. Cross-site request forgery
    C. Distributed denial of service
    D. Cross-site scripting

  • Question 803:

    An organization hires a tester to do a wireless penetration test. Previous reports indicate that the last test did not contain management or control packets in the submitted traces. Which of the following is the most likely reason for lack of management or control packets?

    A. The wireless card was not turned on.
    B. The wrong network card drivers were in use by Wireshark.
    C. On Linux and Mac OS X, only 802.11 headers are received in promiscuous mode.
    D. Certain operating systems and adapters do not collect the management or control packets.

  • Question 804:

    The following is part of a log file taken from the machine on the network with the IP address of 192.168.1.106: Time:Mar 13 17:30:15 Port:20 Source:192.168.1.103 Destination:192.168.1.106 Protocol:TCP Time:Mar 13 17:30:17 Port:21 Source:192.168.1.103 Destination:192.168.1.106 Protocol:TCP Time:Mar 13 17:30:19 Port:22 Source:192.168.1.103 Destination:192.168.1.106 Protocol:TCP Time:Mar 13 17:30:21 Port:23 Source:192.168.1.103 Destination:192.168.1.106 Protocol:TCP Time:Mar 13 17:30:22 Port:25 Source:192.168.1.103 Destination:192.168.1.106 Protocol:TCP Time:Mar 13 17:30:23 Port:80 Source:192.168.1.103 Destination:192.168.1.106 Protocol:TCP Time:Mar 13 17:30:30 Port:443 Source:192.168.1.103 Destination:192.168.1.106 Protocol:TCP What type of activity has been logged?

    A. Port scan targeting 192.168.1.103
    B. Teardrop attack targeting 192.168.1.106
    C. Denial of service attack targeting 192.168.1.103
    D. Port scan targeting 192.168.1.106

  • Question 805:

    A certified ethical hacker (CEH) is approached by a friend who believes her husband is cheating. She offers to pay to break into her husband's email account in order to find proof so she can take him to court. What is the ethical response?

    A. Say no; the friend is not the owner of the account.
    B. Say yes; the friend needs help to gather evidence.
    C. Say yes; do the job for free.
    D. Say no; make sure that the friend knows the risk she's asking the CEH to take.

  • Question 806:

    Which of the following is not considered to be a part of active sniffing?

    A. MAC Flooding
    B. ARP Spoofing
    C. SMAC Fueling
    D. MAC Duplicating

  • Question 807:

    On a default installation of Microsoft IIS web server, under which privilege does the web server software execute?

    A. Everyone
    B. Guest
    C. System
    D. Administrator

  • Question 808:

    _________ is one of the programs used to wardial.

    A. DialIT
    B. Netstumbler
    C. TooPac
    D. Kismet
    E. ToneLoc

  • Question 809:

    What ICMP message types are used by the ping command?

    A. Timestamp request (13) and timestamp reply (14)
    B. Echo request (8) and Echo reply (0)
    C. Echo request (0) and Echo reply (1)
    D. Ping request (1) and Ping reply (2)

  • Question 810:

    The following exploit code is extracted from what kind of attack?

    A. Remote password cracking attack
    B. SQL Injection
    C. Distributed Denial of Service
    D. Cross Site Scripting
    E. Buffer Overflow

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC0-350 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.