412-79V10 Exam Details

  • Exam Code
    :412-79V10
  • Exam Name
    :EC-Council Certified Security Analyst (ECSA) V10
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :201 Q&As
  • Last Updated
    :Jul 03, 2026

EC-COUNCIL 412-79V10 Online Questions & Answers

  • Question 41:

    Which one of the following log analysis tools is a Cisco Router Log Format log analyzer and it parses logs, imports them into a SQL database (or its own built-in database), aggregates them, and generates the dynamically filtered reports, all through a web interface?

    A. Event Log Tracker
    B. Sawmill
    C. Syslog Manager
    D. Event Log Explorer

  • Question 42:

    A security policy is a document or set of documents that describes, at a high level, the security controls that will be implemented by the company. Which one of the following policies forbids everything and restricts usage of company computers, whether it is system usage or network usage?

    A. Paranoid Policy
    B. Prudent Policy
    C. Promiscuous Policy
    D. Information-Protection Policy

  • Question 43:

    An antenna is a device that is designed to transmit and receive the electromagnetic waves that are generally called radio waves. Which one of the following types of antenna is developed from waveguide technology?

    A. Leaky Wave Antennas
    B. Aperture Antennas
    C. Reflector Antenna
    D. Directional Antenna

  • Question 44:

    You work as an IT security auditor hired by a law firm in Boston. You have been assigned the responsibility to audit the client for security risks. When assessing the risk to the clients network, what step should you take first?

    A. Analyzing, categorizing and prioritizing resources
    B. Evaluating the existing perimeter and internal security
    C. Checking for a written security policy
    D. Analyzing the use of existing management and control architecture

  • Question 45:

    Which of the following password cracking techniques is used when the attacker has some information about the password?

    A. Hybrid Attack
    B. Dictionary Attack
    C. Syllable Attack
    D. Rule-based Attack

  • Question 46:

    Vulnerability assessment is an examination of the ability of a system or application, including current security procedures and controls, to withstand assault. It recognizes, measures, and classifies security vulnerabilities in a computer system, network, and communication channels.

    A vulnerability assessment is used to identify weaknesses that could be exploited and predict the effectiveness of additional security measures in protecting information resources from attack.

    Which of the following vulnerability assessment technique is used to test the web server infrastructure for any misconfiguration and outdated content?

    A. Passive Assessment
    B. Host-based Assessment
    C. External Assessment
    D. Application Assessment

  • Question 47:

    An attacker injects malicious query strings in user input fields to bypass web service authentication mechanisms and to access back-end databases. Which of the following attacks is this?

    A. Frame Injection Attack
    B. LDAP Injection Attack
    C. XPath Injection Attack
    D. SOAP Injection Attack

  • Question 48:

    A framework for security analysis is composed of a set of instructions, assumptions, and limitations to analyze and solve security concerns and develop threat free applications. Which of the following frameworks helps an organization in the evaluation of the company's information security with that of the industrial standards?

    A. Microsoft Internet Security Framework
    B. Information System Security Assessment Framework
    C. The IBM Security Framework
    D. Nortell's Unified Security Framework

  • Question 49:

    Metasploit framework in an open source platform for vulnerability research, development, and penetration testing. Which one of the following metasploit options is used to exploit multiple systems at once?

    A. NinjaDontKill
    B. NinjaHost
    C. RandomNops
    D. EnablePython

  • Question 50:

    Security auditors determine the use of WAPs on their networks with Nessus vulnerability scanner which identifies the commonly used WAPs. One of the plug-ins that the Nessus Vulnerability Scanner uses is ID #11026 and is named "Access Point Detection". This plug- in uses four techniques to identify the presence of a WAP. Which one of the following techniques is mostly used for uploading new firmware images while upgrading the WAP device?

    A. NMAP TCP/IP fingerprinting
    B. HTTP fingerprinting
    C. FTP fingerprinting
    D. SNMP fingerprinting

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 412-79V10 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.