최신 412-79 무료덤프 - EC-COUNCIL EC-Council Certified Security Analyst (ECSA)

문제1

When you are running a vulnerability scan on a network and the IDS cuts off your connection, what type of IDS is being used?

A. Progressive IDS

B. Passive IDS

C. NIPS

D. Active IDS

정답: D

문제2

Assessing a network from a hacker's point of view to discover the exploits and vulnerabilities that are accessible to the outside world is which sort of vulnerability assessment?

A. Wireless Network Assessments

B. Network Assessments

C. Application Assessments

D. External Assessment

정답: D

문제3

Port numbers are used to keep track of different conversations crossing the network at the same time. Both TCP and UDP use port (socket) numbers to pass information to the upper layers. Port numbers have the assigned ranges. The port numbers above 1024 are considered as which one of the following? (Select all that apply)

A. Unregistered port numbers

B. Well-known port numbers

C. Statically assigned port numbers

D. Dynamically assigned port numbers

정답: D

문제4

John, a penetration tester, was asked for a document that defines the project, specifies goals, objectives, deadlines, the resources required, and the approach of the project. Which of the following includes all of these requirements?

A. Penetration testing schedule plan

B. Penetration testing project scope report

C. Penetration testing software project management plan

D. Penetration testing project plan

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제5

Which of the following statements is true about Multi-Layer Intrusion Detection Systems (mIDSs)?

A. Increases response time

B. Both a and c

C. Increases detection and reaction time

D. Decreases consumed employee time and increases system uptime

정답: D

문제6

Identify the type of authentication mechanism represented below:

A. LAN Manager Hash

B. NTLMv1

C. Kerberos

D. NTLMv2

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제7

Which of the following is an ARP cache poisoning technique aimed at network switches?

A. Mac Flooding

B. DNS Poisoning

C. Man-in-the Middle Attack

D. Replay Attack

정답: A

문제8

Which of the following acts related to information security in the US establish that the management of an organization is responsible for establishing and maintaining an adequate internal control structure and procedures for financial reporting?

A. California SB 1386

B. USA Patriot Act 2001

C. Gramm-Leach-Bliley Act (GLBA)

D. Sarbanes-Oxley 2002

정답: B

문제9

Amazon, an IT based company, conducts a survey on the usage of the Internet. They found that company employees spend most of the time at work surfing the web for their personal use and for inappropriate web site viewing. Management decide to block all such web sites using URL filtering software.

How can employees continue to see the blocked websites?

A. Using authentication

B. Using encryption

C. Using session hijacking

D. Using proxy servers

정답: D

문제10

Which of the following is a framework of open standards developed by the Internet Engineering Task Force (IETF) that provides secure transmission of the sensitive data over an unprotected medium, such as the Internet?

A. IKE

B. Netsec

C. IPsec

D. DNSSEC

정답: C

최신 412-79 무료덤프 - EC-COUNCIL EC-Council Certified Security Analyst (ECSA)

우리와 연락하기

유용한 링크

최신 업데이트