Ethical hacking and countermeasures - EC0-350 Exam Practice Test

Question 1

In Linux, the three most common commands that hackers usually attempt to Trojan are:

A. vmware, sed, less

B. xterm, ps, nc

C. car, xterm, grep

D. netstat, ps, top

Correct Answer: D

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 2

A bank stores and processes sensitive privacy information related to home loans. However, auditing has never been enabled on the system. What is the first step that the bank should take before enabling the audit feature?

A. Allocate funds for staffing of audit log review.

B. Perform a vulnerability scan of the system.

C. Determine the impact of enabling the audit feature.

D. Perform a cost/benefit analysis of the audit feature.

Correct Answer: C

Question 3

Henry is an attacker and wants to gain control of a system and use it to flood a target system with requests, so as to prevent legitimate users from gaining access. What type of attack is Henry using?

A. Henry uses poorly designed input validation routines to create or alter commands to gain access to unintended data or execute commands

B. Henry is executing commands or viewing data outside the intended target path

C. Henry is taking advantage of an incorrect configuration that leads to access with higher-than-expected privilege

D. Henry is using a denial of service attack which is a valid threat used by an attacker

Correct Answer: D

Explanation: Only visible for Actualtests4sure members. You can sign-up / login (it's free).

Question 4

Joel and her team have been going through tons of garbage, recycled paper, and other rubbish in order to find some information about the target they are attempting to penetrate. How would you call this type of activity?

A. Dumpster Diving

B. Garbage Scooping

C. CI Gathering

D. Scanning

Correct Answer: A

Question 5

You are trying to package a RAT Trojan so that Anti-Virus software will not detect it. Which of the listed technique will NOT be effective in evading Anti-Virus scanner?

A. Break the Trojan into multiple smaller files and zip the individual pieces

B. Change the content of the Trojan using hex editor and modify the checksum

C. Convert the Trojan.exe file extension to Trojan.txt disguising as text file

D. Encrypt the Trojan using multiple hashing algorithms like MD5 and SHA-1

Correct Answer: C

Question 6

To reduce the attack surface of a system, administrators should perform which of the following processes to remove unnecessary software, services, and insecure configuration settings?

A. Hardening

B. Windowing

C. Stealthing

D. Harvesting

Correct Answer: A

Question 7

Which of the following is NOT part of CEH Scanning Methodology?

A. Check for Live systems

B. Check for Open Ports

C. Draw Network Diagrams

D. Prepare Proxies

E. Social Engineering attacks

F. Banner Grabbing

G. Scan for Vulnerabilities

Correct Answer: E

Question 8

During a penetration test, a tester finds that the web application being analyzed is vulnerable to Cross Site Scripting (XSS). Which of the following conditions must be met to exploit this vulnerability?

A. The victim's browser must have ActiveX technology enabled.

B. The web application does not have the secure flag set.

C. The victim user should not have an endpoint security solution.

D. The session cookies do not have the HttpOnly flag set.

Correct Answer: D

Question 9

Jess the hacker runs L0phtCrack's built-in sniffer utility that grabs SMB password hashes and stores them for offline cracking. Once cracked, these passwords can provide easy access to whatever network resources the user account has access to. But Jess is not picking up hashes from the network. Why?

A. L0phtCrack SMB sniffing only works through Switches and not Hubs

B. The network protocol is configured to use SMB Signing

C. The physical network wire is on fibre optic cable

D. The network protocol is configured to use IPSEC

Correct Answer: B

Question 10

How can rainbow tables be defeated?

A. All uppercase character passwords

B. Password salting

C. Use of non-dictionary words

D. Lockout accounts under brute force password cracking attempts

Correct Answer: B

Question 11

A tester has been using the msadc.pl attack script to execute arbitrary commands on a Windows NT4 web server. While it is effective, the tester finds it tedious to perform extended functions.
On further research, the tester come across a perl script that runs the following msadc functions:system("perl msadc.pl -h $host -C \"echo open $your >testfile\"");

Which exploit is indicated by this script?

A. A chained exploit

B. A SQL injection exploit

C. A denial of service exploit

D. A buffer overflow exploit

Correct Answer: A

Question 12

You generate MD5 128-bit hash on all files and folders on your computer to keep a baseline check for security reasons?

What is the length of the MD5 hash?

A. 32 character

B. 64 byte

C. 128 kb

D. 48 char

Correct Answer: A

EC-COUNCIL Ethical hacking and countermeasures - EC0-350 Exam Practice Test

Latest Update

Useful Links

Contact Us