CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. EC-Council
  5. EC0-350

Free EC0-350 Exam Braindumps (page: 58)

Page 57 of 191
PDF with 878 Questions

One of your team members has asked you to analyze the following SOA record. What is the version?
Rutgers.edu.SOA NS1.Rutgers.edu ipad.college.edu (200302028 3600
3600 604800 2400.

  1. 200303028
  2. 3600
  3. 604800
  4. 2400
  5. 60
  6. 4800

Answer(s): A

Explanation:

The SOA starts with the format of YYYYMMDDVV where VV is the version.



Which of the following is the primary objective of a rootkit?

  1. It opens a port to provide an unauthorized service
  2. It creates a buffer overflow
  3. It replaces legitimate programs
  4. It provides an undocumented opening in a program

Answer(s): C

Explanation:

Actually the objective of the rootkit is more to hide the fact that a system has been compromised and the normal way to do this is by exchanging, for example, ls to a version that doesn’t show the files and process implanted by the attacker.



A very useful resource for passively gathering information about a target company is:

  1. Host scanning
  2. Whois search
  3. Traceroute
  4. Ping sweep

Answer(s): B

Explanation:

A, C & D are "Active" scans, the question says: "Passively"



An attacker is attempting to telnet into a corporation’s system in the DMZ. The attacker doesn’t want to get caught and is spoofing his IP address. After numerous tries he remains unsuccessful in connecting to the system. The attacker rechecks that the target system is actually listening on Port 23 and he verifies it with both nmap and hping2. He is still unable to connect to the target system.
What is the most probable reason?

  1. The firewall is blocking port 23 to that system.
  2. He cannot spoof his IP and successfully use TCP.
  3. He needs to use an automated tool to telnet in.
  4. He is attacking an operating system that does not reply to telnet even when open.

Answer(s): B

Explanation:

Spoofing your IP will only work if you don’t need to get an answer from the target system. In this case the answer (login prompt) from the telnet session will be sent to the “real” location of the IP address that you are showing as the connection initiator.






Post your Comments and Discuss EC-Council EC0-350 exam with other Community members:

EC0-350 Exam Discussions & Posts