CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. EC-Council
  5. EC0-350

Free EC0-350 Exam Braindumps (page: 6)

Page 6 of 191
PDF with 878 Questions

Assuring two systems that are using IPSec to protect traffic over the internet, what type of general attack could compromise the data?

  1. Spoof Attack
  2. Smurf Attack
  3. Man in the Middle Attack
  4. Trojan Horse Attack
  5. Back Orifice Attack

Answer(s): D,E

Explanation:

To compromise the data, the attack would need to be executed before the encryption takes place at either end of the tunnel. Trojan Horse and Back Orifice attacks both allow for potential data manipulation on host computers. In both cases, the data would be compromised either before encryption or after decryption, so IPsec is not preventing the attack.



The evil hacker, is purposely sending fragmented ICMP packets to a remote target. The total size of this ICMP packet once reconstructed is over 65, 536 bytes. From the information given, what type of attack is attempting to perform?

  1. Syn flood
  2. Smurf
  3. Ping of death
  4. Fraggle

Answer(s): C


Reference:

http://insecure.org/sploits/ping-o-death.html



Exhibit:
ettercap –NCLzs --quiet
What does the command in the exhibit do in “Ettercap”?

  1. This command will provide you the entire list of hosts in the LAN
  2. This command will check if someone is poisoning you and will report its IP.
  3. This command will detach from console and log all the collected passwords from the network to a file.
  4. This command broadcasts ping to scan the LAN instead of ARP request of all the subnet IPs.

Answer(s): C

Explanation:

-N = NON interactive mode (without ncurses)
-C = collect all users and passwords
-L = if used with -C (collector) it creates a file with all the password sniffed in the session in the form "YYYYMMDD-collected-pass.log"
-z = start in silent mode (no arp storm on start up)
-s = IP BASED sniffing
--quiet = "demonize" ettercap. Useful if you want to log all data in background.



You have been using the msadc.pl attack script to execute arbitrary commands on an NT4 web server. While it is effective, you find it tedious to perform extended functions. On further research you come across a perl script that runs the following msadc functions:

What kind of exploit is indicated by this script?

  1. A buffer overflow exploit.
  2. A SUID exploit.
  3. A SQL injection exploit.
  4. A chained exploit.
  5. A buffer under run exploit.

Answer(s): D



Page 6 of 191



Post your Comments and Discuss EC-Council EC0-350 exam with other Community members:

Ashwani commented on December 20, 2024
Nice questions
UNITED KINGDOM
upvote

hardik commented on December 20, 2024
Very good content
UNITED STATES
upvote

Test commented on December 20, 2024
its helpful
Anonymous
upvote

haardik commented on December 20, 2024
Good so far
UNITED STATES
upvote

priya commented on December 20, 2024
good to prepare for the exam
Anonymous
upvote

Nagaraj commented on December 20, 2024
The questions help me to review
Anonymous
upvote

Reagan commented on December 20, 2024
Very Useful
Anonymous
upvote

Anonymous commented on December 20, 2024
definitely a perfect set of questions
Anonymous
upvote

DD commented on December 20, 2024
Preparing for exam
Anonymous
upvote

Anonymous1 commented on December 20, 2024
Nice questions
Anonymous
upvote

PrepGoku commented on December 20, 2024
Great list of questions, with full explaination
Anonymous
upvote

Hemlata commented on December 20, 2024
Great content
INDIA
upvote

Nicholos J Frates commented on December 20, 2024
I just passed the Salesforce-AI-Associate exam recently! my Result Card: https://docs.google.com/document/d/1CicoY5IGQwyyanVV_cCEUE2jFT86tyl3FZ_hA6Q_BiM
Anonymous
upvote

Hemlata commented on December 20, 2024
It is useful.
INDIA
upvote

Koomi commented on December 20, 2024
Great Content
Anonymous
upvote

Aamamm commented on December 20, 2024
useful for certfication
UNITED STATES
upvote

Preeti commented on December 20, 2024
How many questions in exam was from dump who give exam recently?
INDIA
upvote

Preeti commented on December 20, 2024
Have any of you taken the exam recently and passed just by using this dump?
INDIA
upvote

gill commented on December 20, 2024
nice nice nice
Anonymous
upvote

Hitesh commented on December 20, 2024
good practice questions available here
UNITED STATES
upvote

KT commented on December 20, 2024
I passed using this dumps.
Anonymous
upvote

Hassan commented on December 19, 2024
Quite challenging and interesting
Anonymous
upvote

mke commented on December 19, 2024
so far so good
UNITED STATES
upvote

JP commented on December 19, 2024
Good so far
UNITED STATES
upvote

Anyah Vincent Ndubuisi commented on December 19, 2024
Microsoft SC 200 SOC, is awesomely good enough for every cybersecurity specialist. Well detailed for freshers also. From Anyah Vincent.Nigeria.
Anonymous
upvote

Shehan commented on December 19, 2024
Superb stuff
Anonymous
upvote

gege commented on December 19, 2024
The questions looks promising and well formatted. But has anyone passed this exam recently? I have heard the exam is very very hard.
Anonymous
upvote

Tejaswini commented on December 19, 2024
For my understanding
Anonymous
upvote

Tejaswini commented on December 19, 2024
Going throught questions for practice
Anonymous
upvote

David commented on December 18, 2024
Nice questions
Anonymous
upvote

Raju commented on December 18, 2024
gave my exam today and many questions were similar though slightly different...I passed with 90%, thanks Braindumps
INDIA
upvote

Bhuppi commented on December 18, 2024
my exam is on 22nd of DEC.
Anonymous
upvote

Mark commented on December 18, 2024
Can someone confirm if these questions are still valid??? After 200-301 v 1.1 has been released? Is the free version enough or were there more of them in the part that is paywalled?
Anonymous
upvote

BT commented on December 18, 2024
test PCEP-30-02 exam
VIET NAM
upvote