412-79V10 Exam Details

  • Exam Code
    :412-79V10
  • Exam Name
    :EC-Council Certified Security Analyst (ECSA) V10
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :201 Q&As
  • Last Updated
    :Jul 03, 2026

EC-COUNCIL 412-79V10 Online Questions & Answers

  • Question 151:

    Which one of the following tools of trade is a commercial shellcode and payload generator written in Python by Dave Aitel?

    A. Microsoft Baseline Security Analyzer (MBSA)
    B. CORE Impact
    C. Canvas
    D. Network Security Analysis Tool (NSAT)

  • Question 152:

    Internet Control Message Protocol (ICMP) messages occur in many situations, such as whenever a datagram cannot reach the destination or the gateway does not have the buffering capacity to forward a datagram. Each ICMP message contains three fields: type, code, and checksum. Different types of Internet Control Message Protocols (ICMPs) are identified by a type and code field.

    Which of the following ICMP messages will be generated if the destination port is not reachable?

    A. ICMP Type 11 code 1
    B. ICMP Type 5 code 3
    C. ICMP Type 3 code 2
    D. ICMP Type 3 code 3

  • Question 153:

    Which of the following documents helps in creating a confidential relationship between the pen tester and client to protect critical and confidential information or trade secrets?

    A. Penetration Testing Agreement
    B. Rules of Behavior Agreement
    C. Liability Insurance
    D. Non-Disclosure Agreement

  • Question 154:

    Which one of the following scans starts, but does not complete the TCP handshake sequence for each port selected, and it works well for direct scanning and often works well through firewalls?

    A. SYN Scan
    B. Connect() scan
    C. XMAS Scan
    D. Null Scan

  • Question 155:

    What is the maximum value of a "tinyint" field in most database systems?

    A. 222
    B. 224 or more
    C. 240 or less
    D. 225 or more

  • Question 156:

    Which of the following statement holds true for TCP Operation?

    A. Port numbers are used to know which application the receiving host should pass the data to
    B. Sequence numbers are used to track the number of packets lost in transmission
    C. Flow control shows the trend of a transmitting host overflowing the buffers in the receiving host
    D. Data transfer begins even before the connection is established

  • Question 157:

    Hackers today have an ever-increasing list of weaknesses in the web application structure at their disposal, which they can exploit to accomplish a wide variety of malicious tasks.

    New flaws in web application security measures are constantly being researched, both by hackers and by security professionals. Most of these flaws affect all dynamic web applications whilst others are dependent on specific application technologies. In both cases, one may observe how the evolution and refinement of web technologies also brings about new exploits which compromise sensitive databases, provide access to theoretically secure networks, and pose a threat to the daily operation of online businesses.

    What is the biggest threat to Web 2.0 technologies?

    A. SQL Injection Attacks
    B. Service Level Configuration Attacks
    C. Inside Attacks
    D. URL Tampering Attacks

  • Question 158:

    Black-box testing is a method of software testing that examines the functionality of an application (e.g. what the software does) without peering into its internal structures or workings. Black-box testing is used to detect issues in SQL statements and to detect SQL injection vulnerabilities.

    Most commonly, SQL injection vulnerabilities are a result of coding vulnerabilities during the Implementation/Development phase and will likely require code changes.

    Pen testers need to perform this testing during the development phase to find and fix the SQL injection vulnerability.

    What can a pen tester do to detect input sanitization issues?

    A. Send single quotes as the input data to catch instances where the user input is not sanitized
    B. Send double quotes as the input data to catch instances where the user input is not sanitized
    C. Send long strings of junk data, just as you would send strings to detect buffer overruns
    D. Use a right square bracket (the "]" character) as the input data to catch instances where the user input is used as part of a SQL identifier without any input sanitization

  • Question 159:

    Which Wireshark filter displays all the packets where the IP address of the source host is 10.0.0.7?

    A. ip.dst==10.0.0.7
    B. ip.port==10.0.0.7
    C. ip.src==10.0.0.7
    D. ip.dstport==10.0.0.7

  • Question 160:

    Application security assessment is one of the activity that a pen tester performs in the attack phase. It is designed to identify and assess threats to the organization through bespoke, proprietary applications or systems. It checks the application so that a malicious user cannot access, modify, or destroy data or services within the system.

    Identify the type of application security assessment which analyzes the application-based code to confirm that it does not contain any sensitive information that an attacker might use to exploit an application.

    A. Web Penetration Testing
    B. Functionality Testing
    C. Authorization Testing
    D. Source Code Review

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 412-79V10 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.