Spring Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = getmirror

Pass the ECCouncil Certified Ethical Hacker EC0-350 Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.

Exam EC0-350 Premium Access

View all detail and faqs for the EC0-350 exam

Go to Exam

647 Students Passed

91% Average Score

97% Same Questions

Viewing page 12 out of 14 pages

Viewing questions 221-240 out of questions

Questions # 221:

Data hiding analysis can be useful in

Options:

determining the level of encryption used to encrypt the data.

detecting and recovering data that may indicate knowledge, ownership or intent.

identifying the amount of central processing unit (cpu) usage over time to process the data.

preventing a denial of service attack on a set of enterprise servers to prevent users from accessing the data.

Questions # 222:

Which of the following problems can be solved by using Wireshark?

Options:

Tracking version changes of source code

Checking creation dates on all webpages on a server

Resetting the administrator password on multiple systems

Troubleshooting communication resets between two systems

Questions # 223:

A consultant has been hired by the V.P. of a large financial organization to assess the company's security posture. During the security testing, the consultant comes across child pornography on the V.P.'s computer. What is the consultant's obligation to the financial organization?

Options:

Say nothing and continue with the security testing.

Stop work immediately and contact the authorities.

Delete the pornography, say nothing, and continue security testing.

Bring the discovery to the financial organization's human resource department.

Questions # 224:

While testing the company's web applications, a tester attempts to insert the following test script into the search area on the company's web sitE.

Afterwards, when the tester presses the search button, a pop-up box appears on the screen with the text: "Testing Testing Testing". Which vulnerability has been detected in the web application?

Options:

Buffer overflow

Cross-site request forgery

Distributed denial of service

Cross-site scripting

Questions # 225:

Which results will be returned with the following Google search query?

site:target.com -site:Marketing.target.com accounting

Options:

Results matching all words in the query

Results matching “accounting” in domain target.com but not on the site Marketing.target.com

Results from matches on the site marketing.target.com that are in the domain target.com but do not include the word accounting

Results for matches on target.com and Marketing.target.com that include the word “accounting”

Questions # 226:

Which of the following processes of PKI (Public Key Infrastructure) ensures that a trust relationship exists and that a certificate is still valid for specific operations?

Options:

Certificate issuance

Certificate validation

Certificate cryptography

Certificate revocation

Questions # 227:

How does an operating system protect the passwords used for account logins?

Options:

The operating system performs a one-way hash of the passwords.

The operating system stores the passwords in a secret file that users cannot find.

The operating system encrypts the passwords, and decrypts them when needed.

The operating system stores all passwords in a protected segment of non-volatile memory.

Questions # 228:

Which initial procedure should an ethical hacker perform after being brought into an organization?

Options:

Begin security testing.

Turn over deliverables.

Sign a formal contract with non-disclosure.

Assess what the organization is trying to protect.

Questions # 229:

In keeping with the best practices of layered security, where are the best places to place intrusion detection/intrusion prevention systems? (Choose two.)

Options:

HID/HIP (Host-based Intrusion Detection/Host-based Intrusion Prevention)

NID/NIP (Node-based Intrusion Detection/Node-based Intrusion Prevention)

NID/NIP (Network-based Intrusion Detection/Network-based Intrusion Prevention)

CID/CIP (Computer-based Intrusion Detection/Computer-based Intrusion Prevention)

Questions # 230:

Which command lets a tester enumerate alive systems in a class C network via ICMP using native Windows tools?

Options:

ping 192.168.2.

ping 192.168.2.255

for %V in (1 1 255) do PING 192.168.2.%V

for /L %V in (1 1 254) do PING -n 1 192.168.2.%V | FIND /I "Reply"

Questions # 231:

One advantage of an application-level firewall is the ability to

Options:

filter packets at the network level.

filter specific commands, such as http:post.

retain state information for each packet.

monitor tcp handshaking.

Questions # 232:

What results will the following command yielD. 'NMAP -sS -O -p 123-153 192.168.100.3'?

Options:

A stealth scan, opening port 123 and 153

A stealth scan, checking open ports 123 to 153

A stealth scan, checking all open ports excluding ports 123 to 153

A stealth scan, determine operating system, and scanning ports 123 to 153

Questions # 233:

What is the best defense against privilege escalation vulnerability?

Options:

Patch systems regularly and upgrade interactive login privileges at the system administrator level.

Run administrator and applications on least privileges and use a content registry for tracking.

Run services with least privileged accounts and implement multi-factor authentication and authorization.

Review user roles and administrator privileges for maximum utilization of automation services.

Questions # 234:

What is the name of the international standard that establishes a baseline level of confidence in the security functionality of IT products by providing a set of requirements for evaluation?

Options:

Blue Book

ISO 26029

Common Criteria

The Wassenaar Agreement

Questions # 235:

A consultant is hired to do physical penetration testing at a large financial company. In the first day of his assessment, the consultant goes to the company`s building dressed like an electrician and waits in the lobby for an employee to pass through the main access gate, then the consultant follows the employee behind to get into the restricted area. Which type of attack did the consultant perform?

Options:

Man trap

Tailgating

Shoulder surfing

Social engineering

Questions # 236:

A hacker is attempting to see which IP addresses are currently active on a network. Which NMAP switch would the hacker use?

Options:

-sO

-sP

-sS

-sU

Questions # 237:

Which of the following cryptography attack methods is usually performed without the use of a computer?

Options:

Ciphertext-only attack

Chosen key attack

Rubber hose attack

Rainbow table attack

Questions # 238:

A penetration tester is hired to do a risk assessment of a company's DMZ. The rules of engagement states that the penetration test be done from an external IP address with no prior knowledge of the internal IT systems. What kind of test is being performed?

Options:

white box

grey box

red box

black box

Questions # 239:

An NMAP scan of a server shows port 25 is open. What risk could this pose?

Options:

Open printer sharing

Web portal data leak

Clear text authentication

Active mail relay

Questions # 240:

While checking the settings on the internet browser, a technician finds that the proxy server settings have been checked and a computer is trying to use itself as a proxy server. What specific octet within the subnet does the technician see?