CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. EC-Council
  5. EC0-350

Free EC0-350 Exam Braindumps (page: 73)

Page 72 of 191
PDF with 878 Questions

A file integrity program such as Tripwire protects against Trojan horse attacks by:

  1. Automatically deleting Trojan horse programs
  2. Rejecting packets generated by Trojan horse programs
  3. Using programming hooks to inform the kernel of Trojan horse behavior
  4. Helping you catch unexpected changes to a system utility file that might indicate it had been replaced by a Trojan horse

Answer(s): D

Explanation:

Tripwire generates a database of the most common files and directories on your system. Once it is generated, you can then check the current state of your system against the original database and get a report of all the files that have been modified, deleted or added. This comes in handy if you allow other people access to your machine and even if you don't, if someone else does get access, you'll know if they tried to modify files such as /bin/login etc.



What is the command used to create a binary log file using tcpdump?

  1. tcpdump -r log
  2. tcpdump -w ./log
  3. tcpdump -vde -r log
  4. tcpdump -l /var/log/

Answer(s): B

Explanation:

tcpdump [ -adeflnNOpqStvx ] [ -c count ] [ -F file ] [ -i interface ] [ -r file ] [ -s snaplen ] [ -T type ] [ -w file ] [ expression ]
-w Write the raw packets to file rather than parsing and printing them out.



In Buffer Overflow exploit, which of the following registers gets overwritten with return address of the exploit code?

  1. EIP
  2. ESP
  3. EAP
  4. EEP

Answer(s): A

Explanation:

EIP is the instruction pointer which is a register, it points to your next command.



What are the different between SSL and S-HTTP?

  1. SSL operates at the network layer and S-HTTP operates at the application layer
  2. SSL operates at the application layer and S-HTTP operates at the network layer
  3. SSL operates at transport layer and S-HTTP operates at the application layer
  4. SSL operates at the application layer and S-HTTP operates at the transport layer

Answer(s): C

Explanation:

Whereas SSL is designed to establish a secure connection between two computers, S-HTTP is designed to send individual messages securely. S-HTTP is defined in RFC 2660






Post your Comments and Discuss EC-Council EC0-350 exam with other Community members:

EC0-350 Exam Discussions & Posts