Free EC-COUNCIL EC0-350 Exam Dumps Questions & Answers

An attacker has successfully compromised a remote computer. Which of the following comes as one of the last steps that should be taken to ensure that the compromise cannot be traced back to the source of the problem?

• A.  Install patches
• B.  Install a zombie for DDOS
• C.  Setup a backdoor
• D.  Cover your tracks

Which of the following algorithms can be used to guarantee the integrity of messages being sent, in transit, or stored? (Choose the best answer)

• A.  asymmetric algorithms
• B.  hashing algorithms
• C.  symmetric algorithms
• D.  integrity algorithms

A company has five different subnets: 192.168.1.0, 192.168.2.0, 192.168.3.0, 192.168.4.0 and 192.168.5.0. How can NMAP be used to scan these adjacent Class C networks?

• A.  NMAP -P 192.168.1/17
• B.  NMAP -P 192.168.1-5.
• C.  NMAP -P 192.168.0.0/16
• D.  NMAP -P 192.168.1.0, 2.0, 3.0, 4.0, 5.0

In which of the following should be performed first in any penetration test?

• A.  Firewall testing
• B.  Passive information gathering
• C.  System identification
• D.  Intrusion Detection System testing

Lee is using Wireshark to log traffic on his network. He notices a number of packets being directed to an internal IP from an outside IP where the packets are ICMP and their size is around 65, 536 bytes. What is Lee seeing here?

• A.  This is not unusual traffic, ICMP packets can be of any size.
• B.  Most likely, the ICMP packets are being sent in this manner to attempt IP spoofing.
• C.  Lee is seeing a Ping of death attack.
• D.  Lee is seeing activity indicative of a Smurf attack.