EC-COUNCIL EC-Council Certified Security Analyst (ECSA) v10 : Penetration Testing (ECSAv10) Free Practice Test
Question 1
John, a penetration tester from a pen test firm, was asked to collect information about the host file in a Windows system directory. Which of the following is the location of the host file in Window system directory?
Correct Answer: D
Question 2
The Internet is a giant database where people store some of their most private information on the cloud, trusting that the service provider can keep it all safe. Trojans, Viruses, DoS attacks, website defacement, lost computers, accidental publishing, and more have all been sources of major leaks over the last 15 years.
What is the biggest source of data leaks in organizations today?
What is the biggest source of data leaks in organizations today?
Correct Answer: D
Question 3
A firewall protects networked computers from intentional hostile intrusion that could compromise confidentiality or result in data corruption or denial of service. It examines all traffic routed between the two networks to see if it meets certain criteria. If it does, it is routed between the networks, otherwise it is stopped.
Why is an appliance-based firewall is more secure than those implemented on top of the commercial operating system (Software based)?
Why is an appliance-based firewall is more secure than those implemented on top of the commercial operating system (Software based)?
Correct Answer: C
Question 4
Which of the following is the objective of Gramm-Leach-Bliley Act?
Correct Answer: A
Question 5
Which of the following policies states that the relevant application owner must authorize requests for additional access to specific business applications in writing to the IT Department/resource?
Correct Answer: A
Question 6
A firewall's decision to forward or reject traffic in network filtering is dependent upon which of the following?
Correct Answer: A
Question 7
After passively scanning the network of Department of Defense (DoD), you switch over to active scanning to identify live hosts on their network. DoD is a large organization and should respond to any number of scans. You start an ICMP ping sweep by sending an IP packet to the broadcast address.
Only five hosts responds to your ICMP pings; definitely not the number of hosts you were expecting. Why did this ping sweep only produce a few responses?
Only five hosts responds to your ICMP pings; definitely not the number of hosts you were expecting. Why did this ping sweep only produce a few responses?
Correct Answer: B
Question 8
You are working on a thesis for your doctorate degree in Computer Science. Your thesis is based on HTML, DHTML, and other web-based languages and how they have evolved over the years. You navigate to archive.org and view the HTML code of news.com. You then navigate to the current news.com website and copy over the source code.
While searching through the code, you come across something abnormal:
<img
src=http://coolwebsearch.com/ads/pixel.news.com width=1 height=1 border=0
>
What have you found?
While searching through the code, you come across something abnormal:
<img
src=http://coolwebsearch.com/ads/pixel.news.com width=1 height=1 border=0
>
What have you found?
Correct Answer: B
Question 9
Identify the policy that defines the standards for the organizational network connectivity and security standards for computers that are connected in the organizational network.
Correct Answer: C