EC0-350 Exam Questions

Which of the following activities will NOT be considered as passive footprinting?

Which one of the following is defined as the process of distributing incorrect Internet Protocol (IP) addresses/names with the intent of diverting traffic?

A XYZ security System Administrator is reviewing the network system log files. He notes the following: Network log files are at 5 MB at 12:00 noon. At 14:00 hours, the log files at...

To what does "message repudiation" refer to what concept in the realm of email security?

Snort has been used to capture packets on the network. On studying the packets, the penetration tester finds it to be abnormal. If you were the penetration tester, why would you fi...

Your XYZ trainee Sandra asks you which are the four existing Regional Internet Registry (RIR's)?

A very useful resource for passively gathering information about a target company is:

You receive an email with the following message: Hello Steve, We are having technical difficulty in restoring user database record after the recent blackout. Your account data is c...

Which of the following tools are used for footprinting? (Choose four)

According to the CEH methodology, what is the next step to be performed after footprinting?

NSLookup is a good tool to use to gain additional information about a target network. What does the following command accomplish? nslookup > server <ipaddress> > set type =any > ls...

While footprinting a network, what port/service should you look for to attempt a zone transfer?

Your lab partner is trying to find out more information about a competitors web site. The site has a .com extension. She has decided to use some online whois tools and look in one...

Network Administrator Patricia is doing an audit of the network. Below are some of her findings concerning DNS. Which of these would be a cause for alarm? Select the best answer.

Doug is conducting a port scan of a target network. He knows that his client target network has a web server and that there is a mail server also which is up and running. Doug has...

Joe Hacker runs the hping2 hacking tool to predict the target host's sequence numbers in one of the hacking session. What does the first and second column mean? Select two.

While performing a ping sweep of a subnet you receive an ICMP reply of Code 3/Type 13 for all the pings sent out. What is the most likely cause behind this response?

The following excerpt is taken from a honeyput log. The log captures activities across three days. There are several intrusion attempts; however, a few are successful. Study the lo...

Bob has been hired to perform a penetration test on XYZ.com. He begins by looking at IP address ranges owned by the company and details of domain name registration. He then goes to...

Which of the following would be the best reason for sending a single SMTP message to an address that does not exist within the target company?

You are conducting a port scan on a subnet that has ICMP blocked. You have discovered 23 live systems and after scanning each of them you notice that they all show port 21 in close...

Ann would like to perform a reliable scan against a remote target. She is not concerned about being stealth at this point. Which of the following type of scans would be the most ac...

What type of port scan is shown below?

War dialing is a very old attack and depicted in movies that were made years ago. Why would a modem security tester consider using such an old technique?

You are scanning into the target network for the first time. You find very few conventional ports open. When you attempt to perform traditional service identification by connecting...

What are two types of ICMP code used when using the ping command?

You are having problems while retrieving results after performing port scanning during internal testing. You verify that there are no security devices between you and the target sy...

John has scanned the web server with NMAP. However, he could not gather enough information to help him identify the operating system running on the remote host accurately. What wou...

An Nmap scan shows the following open ports, and nmap also reports that the OS guessing results to match too many signatures hence it cannot reliably be identified: 21 ftp 23 telne...

What port scanning method involves sending spoofed packets to a target system and then looking for adjustments to the IPID on a zombie system?

What port scanning method is the most reliable but also the most detectable?

What does an ICMP (Code 13) message normally indicates?

Because UDP is a connectionless protocol: (Select 2)

What ICMP message types are used by the ping command?

Which of the following systems would not respond correctly to an nmap XMAS scan?

Use the traceroute results shown above to answer the following Question: The perimeter security at targetcorp.com does not permit ICMP TTL-expired packets out.

While attempting to discover the remote operating system on the target computer, you receive the following results from an nmap scan: Remote operating system guess: Too many signat...

When Nmap performs a ping sweep, which of the following sets of requests does it send to the target device?

_________ is one of the programs used to wardial.

What are the default passwords used by SNMP? (Choose two.)

Which of the following ICMP message types are used for destinations unreachables?

What is the proper response for a FIN scan if the port is closed?

What is the proper response for a X-MAS scan if the port is closed?

What flags are set in a X-MAS scan?(Choose all that apply.

Which of the following is an automated vulnerability assessment tool?

John is using a special tool on his Linux platform that has a signature database and is therefore able to detect hundred of vulnerabilities in UNIX, Windows, and commonly-used web...

What is the disadvantage of an automated vulnerability assessment tool?

What are two things that are possible when scanning UDP ports? (Choose two.

What does a type 3 code 13 represent?(Choose two.

Destination unreachable administratively prohibited messages can inform the hacker to what?