EC-COUNCIL EC-Council Certified Security Analyst (ECSA) v9 (412-79v9) Free Practice Test
Question 1
Which of the following are the default ports used by NetBIOS service?
Correct Answer: A
Question 2
Nessus can test a server or a network for DoS vulnerabilities. Which one of the following script tries to kill a service?
Correct Answer: B
Question 3
Identify the policy that defines the standards for the organizational network connectivity and security standards for computers that are connected in the organizational network.
Correct Answer: C
Question 4
The amount of data stored in organizational databases has increased rapidly in recent years due to the rapid advancement of information technologies. A high percentage of these data is sensitive, private and critical to the organizations, their clients and partners.
Therefore, databases are usually installed behind internal firewalls, protected with intrusion detection mechanisms and accessed only by applications. To access a database, users have to connect to one of these applications and submit queries through them to the database. The threat to databases arises when these applications do not behave properly and construct these queries without sanitizing user inputs first.
Identify the injection attack represented in the diagram below:
Therefore, databases are usually installed behind internal firewalls, protected with intrusion detection mechanisms and accessed only by applications. To access a database, users have to connect to one of these applications and submit queries through them to the database. The threat to databases arises when these applications do not behave properly and construct these queries without sanitizing user inputs first.
Identify the injection attack represented in the diagram below:
Correct Answer: B
Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).
Question 5
What are the scanning techniques that are used to bypass firewall rules and logging mechanisms and disguise themselves as usual network traffic?
Correct Answer: A
Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).
Question 6
Which of the following policies helps secure data and protects the privacy of organizational information?
Correct Answer: D
Question 7
TCP/IP provides a broad range of communication protocols for the various applications on the network. The TCP/IP model has four layers with major protocols included within each layer. Which one of the following protocols is used to collect information from all the network devices?
Correct Answer: B
Question 8
To locate the firewall, SYN packet is crafted using Hping or any other packet crafter and sent to the firewall. If ICMP unreachable type 13 message (which is an admin prohibited packet) with a source IP address of the access control device is received, then it means which of the following type of firewall is in place?
Correct Answer: A
Question 9
Which one of the following components of standard Solaris Syslog is a UNIX command that is used to add single-line entries to the system log?
Correct Answer: C
Question 10
Network scanning is used to identify the available network resources. Which one of the following is also known as a half-open scan, because a full TCP connection is never completed and it is used to determine which ports are open and listening on a target device?
Correct Answer: C