Eccouncil ECSAv10 ECSA v10 Exam Practice Test Instant Access

Question 1

Information gathering is performed to:

i) Collect basic information about the target company and its network

ii) Determine the operating system used, platforms running, web server versions, etc.

iii) Find vulnerabilities and exploits

Which of the following pen testing tests yields information about a company's technology infrastructure?

ASearching for web page posting patterns

BAnalyzing the link popularity of the company's website

CSearching for trade association directories

DSearching for a company's job postings

Answer : D

Question 2

Which of the following shields Internet users from artificial DNS data, such as a deceptive or mischievous address instead of the genuine address that was requested?

ADNSSEC

BFirewall

CPacket filtering

DIPSec

Answer : A

Question 3

Attackers create secret accounts and gain illegal access to resources using backdoor while bypassing the authentication procedures. Creating a backdoor is a where an attacker obtains remote access to a computer on a network.

Which of the following techniques do attackers use to create backdoors to covertly gather critical information about a target machine?

AInternal network mapping to map the internal network of the target machine

BPort scanning to determine what ports are open or in use on the target machine

CSniffing to monitor all the incoming and outgoing network traffic

DSocial engineering and spear phishing attacks to install malicious programs on the target machine

Answer : D

Question 4

Which of the following is the range for assigned ports managed by the Internet Assigned Numbers Authority (IANA)?

A3001-3100

B5000-5099

C6666-6674

D0 -- 1023

Answer : D

Question 5

You are a security analyst performing a penetration tests for a company in the Midwest. After some initial reconnaissance, you discover the IP addresses of some Cisco routers used by the company. You type in the following URL that includes the IP address of one of the routers:

http://172.168.4.131/level/99/exec/show/config

After typing in this URL, you are presented with the entire configuration file for that router. What have you discovered?

AURL Obfuscation Arbitrary Administrative Access Vulnerability

BCisco IOS Arbitrary Administrative Access Online Vulnerability

CHTTP Configuration Arbitrary Administrative Access Vulnerability

DHTML Configuration Arbitrary Administrative Access Vulnerability

Answer : C

Question 6

One needs to run ''Scan Server Configuration'' tool to allow a remote connection to Nessus from the remote Nessus clients. This tool allows the port and bound interface of the Nessus daemon to be configured.

By default, the Nessus daemon listens to connections on which one of the following?

ALocalhost (127.0.0.1) and port 1241

BLocalhost (127.0.0.1) and port 1240

CLocalhost (127.0.0.1) and port 1246

DLocalhost (127.0.0.0) and port 1243

Answer : A

Question 7

Which one of the following 802.11 types uses either FHSS or DSSS for modulation?

A802.11b

B802.11a

C802.11n

D802.11-Legacy

Answer : D

Eccouncil ECSAv10 Certified Security Analyst (ECSA) v10 ECSA v10 Exam Practice Test