CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. EC-Council
  5. EC0-350

Free EC0-350 Exam Braindumps (page: 80)

Page 79 of 191
PDF with 878 Questions

What do Trinoo, TFN2k, WinTrinoo, T-Sight, and Stracheldraht have in common?

  1. All are hacking tools developed by the legion of doom
  2. All are tools that can be used not only by hackers, but also security personnel
  3. All are DDOS tools
  4. All are tools that are only effective against Windows
  5. All are tools that are only effective against Linux

Answer(s): C

Explanation:

All are DDOS tools.



Dave has been assigned to test the network security of Acme Corp. The test was announced to the employees. He created a webpage to discuss the progress of the tests with employees who were interested in following the test. Visitors were allowed to click on a sand clock to mark the progress of the test. Dave successfully embeds a keylogger. He also added some statistics on the webpage. The firewall protects the network well and allows strict Internet access. How was security compromised and how did the firewall respond?

  1. The attack did not fall through as the firewall blocked the traffic
  2. The attack was social engineering and the firewall did not detect it
  3. The attack was deception and security was not directly compromised
  4. Security was not compromised as the webpage was hosted internally

Answer(s): B

Explanation:

This was just another way to trick the information out of the users without the need to hack into any systems. All traffic is outgoing and initiated by the user so the firewall will not react.



Say that "abigcompany.com" had a security vulnerability in the javascript on their website in the past. They recently fixed the security vulnerability, but it had been there for many months. Is there some way to 4go back and see the code for that error?
Select the best answer.

  1. archive.org
  2. There is no way to get the changed webpage unless you contact someone at the company
  3. Usenet
  4. Javascript would not be in their html so a service like usenet or archive wouldn't help you

Answer(s): A

Explanation:

Archive.org is a website that periodically archives internet content. They have archives of websites over many years. It could be used to go back and look at the javascript as javascript would be in the HTML code.



If you send a SYN to an open port, what is the correct response?(Choose all correct answers.

  1. SYN
  2. ACK
  3. FIN
  4. PSH

Answer(s): A,B

Explanation:

The proper response is a SYN / ACK. This technique is also known as half-open scanning.






Post your Comments and Discuss EC-Council EC0-350 exam with other Community members:

EC0-350 Exam Discussions & Posts