412-79V10 Exam Details

  • Exam Code
    :412-79V10
  • Exam Name
    :EC-Council Certified Security Analyst (ECSA) V10
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :201 Q&As
  • Last Updated
    :Jul 03, 2026

EC-COUNCIL 412-79V10 Online Questions & Answers

  • Question 61:

    Amazon Consulting Corporation provides penetration testing and managed security services to companies. Legality and regulatory compliance is one of the important components in conducting a successful security audit. Before starting a test, one of the agreements both the parties need to sign relates to limitations, constraints, liabilities, code of conduct, and indemnification considerations between the parties.

    Which agreement requires a signature from both the parties (the penetration tester and the company)?

    A. Non-disclosure agreement
    B. Client fees agreement
    C. Rules of engagement agreement
    D. Confidentiality agreement

  • Question 62:

    Which one of the following is a useful formatting token that takes an int * as an argument, and writes the number of bytes already written, to that location?

    A. "%n"
    B. "%s"
    C. "%p"
    D. "%w"

  • Question 63:

    Logs are the record of the system and network activities. Syslog protocol is used for delivering log information across an IP network. Syslog messages can be sent via which one of the following?

    A. UDP and TCP
    B. TCP and SMTP
    C. SMTP
    D. UDP and SMTP

  • Question 64:

    Variables are used to define parameters for detection, specifically those of your local network and/or specific servers or ports for inclusion or exclusion in rules. These are simple substitution variables set with the var keyword. Which one of the following operator is used to define meta-variables?

    A. "$"
    B. "#"
    C. "*"
    D. "?"

  • Question 65:

    Wireless communication allows networks to extend to places that might otherwise go untouched by the wired networks. When most people say `Wireless' these days, they are referring to one of the 802.11 standards. There are three main

    802.11 standards: B, A, and

    A. Which one of the following 802.11 types uses DSSS Modulation, splitting the 2.4ghz band into channels?
    B. 802.11b
    C. 802.11g
    D. 802.11-Legacy
    E. 802.11n

  • Question 66:

    Which of the following is not the SQL injection attack character?

    A. $
    B. PRINT
    C. #
    D. @@variable

  • Question 67:

    Rules of Engagement (ROE) document provides certain rights and restriction to the test team for performing the test and helps testers to overcome legal, federal, and policy-related restrictions to use different penetration testing tools and techniques.

    What is the last step in preparing a Rules of Engagement (ROE) document?

    A. Conduct a brainstorming session with top management and technical teams
    B. Decide the desired depth for penetration testing
    C. Conduct a brainstorming session with top management and technical teams
    D. Have pre-contract discussions with different pen-testers

  • Question 68:

    John, a penetration tester, was asked for a document that defines the project, specifies goals, objectives, deadlines, the resources required, and the approach of the project. Which of the following includes all of these requirements?

    A. Penetration testing project plan
    B. Penetration testing software project management plan
    C. Penetration testing project scope report
    D. Penetration testing schedule plan

  • Question 69:

    During external penetration testing, which of the following techniques uses tools like Nmap to predict the sequence numbers generated by the targeted server and use this information to perform session hijacking techniques?

    A. TCP Sequence Number Prediction
    B. IPID State Number Prediction
    C. TCP State Number Prediction
    D. IPID Sequence Number Prediction

  • Question 70:

    Attackers create secret accounts and gain illegal access to resources using backdoor while bypassing the authentication procedures. Creating a backdoor is a where an attacker obtains remote access to a computer on a network.

    Which of the following techniques do attackers use to create backdoors to covertly gather critical information about a target machine?

    A. Internal network mapping to map the internal network of the target machine
    B. Port scanning to determine what ports are open or in use on the target machine
    C. Sniffing to monitor all the incoming and outgoing network traffic
    D. Social engineering and spear phishing attacks to install malicious programs on the target machine

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 412-79V10 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.