412-79V8 Exam Details

  • Exam Code
    :412-79V8
  • Exam Name
    :EC-Council Certified Security Analyst (ECSA)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :200 Q&As
  • Last Updated
    :Jul 08, 2026

EC-COUNCIL 412-79V8 Online Questions & Answers

  • Question 51:

    Firewall and DMZ architectures are characterized according to its design. Which one of the following architectures is used when routers have better high-bandwidth data stream handling capacity?

    A. Weak Screened Subnet Architecture
    B. "Inside Versus Outside" Architecture
    C. "Three-Homed Firewall" DMZ Architecture
    D. Strong Screened-Subnet Architecture

  • Question 52:

    Which of the following shields Internet users from artificial DNS data, such as a deceptive or mischievous address instead of the genuine address that was requested?

    A. DNSSEC
    B. Firewall
    C. Packet filtering
    D. IPSec

  • Question 53:

    SQL injection attacks are becoming significantly more popular amongst hackers and there has been an estimated 69 percent increase of this attack type. This exploit is used to great effect by the hacking community since it is the primary way to steal sensitive data from web applications. It takes advantage of non-validated input vulnerabilities to pass SQL commands through a web application for execution by a back-end database. The below diagram shows how attackers launched SQL injection attacks on web applications.

    Which of the following can the attacker use to launch an SQL injection attack?

    A. Blah' "2=2 "
    B. Blah' and 2=2 -
    C. Blah' and 1=1 -
    D. Blah' or 1=1 -

  • Question 54:

    James is testing the ability of his routers to withstand DoS attacks. James sends ICMP ECHO requests to the broadcast address of his network. What type of DoS attack is James testing against his network?

    A. Smurf
    B. Trinoo
    C. Fraggle
    D. SYN flood

  • Question 55:

    Which of the following external pen testing tests reveals information on price, usernames and passwords, sessions, URL characters, special instructors, encryption used, and web page behaviors?

    A. Check for Directory Consistency and Page Naming Syntax of the Web Pages
    B. Examine Server Side Includes (SSI)
    C. Examine Hidden Fields
    D. Examine E-commerce and Payment Gateways Handled by the Web Server

  • Question 56:

    Rules of Engagement (ROE) document provides certain rights and restriction to the test team for performing the test and helps testers to overcome legal, federal, and policy-related restrictions to use different penetration testing tools and techniques.

    What is the last step in preparing a Rules of Engagement (ROE) document?

    A. Conduct a brainstorming session with top management and technical teams
    B. Decide the desired depth for penetration testing
    C. Conduct a brainstorming session with top management and technical teams
    D. Have pre-contract discussions with different pen-testers

  • Question 57:

    Which of the following is a framework of open standards developed by the Internet Engineering Task Force (IETF) that provides secure transmission of the sensitive data over an unprotected medium, such as the Internet?

    A. DNSSEC
    B. Netsec
    C. IKE
    D. IPsec

  • Question 58:

    To locate the firewall, SYN packet is crafted using Hping or any other packet crafter and sent to the firewall. If ICMP unreachable type 13 message (which is an admin prohibited packet) with a source IP address of the access control device is received, then it means which of the following type of firewall is in place?

    A. Circuit level gateway
    B. Stateful multilayer inspection firewall
    C. Packet filter
    D. Application level gateway

  • Question 59:

    A framework for security analysis is composed of a set of instructions, assumptions, and limitations to analyze and solve security concerns and develop threat free applications. Which of the following frameworks helps an organization in the evaluation of the company's information security with that of the industrial standards?

    A. Microsoft Internet Security Framework
    B. Information System Security Assessment Framework
    C. The IBM Security Framework
    D. Nortell's Unified Security Framework

  • Question 60:

    Which of the following statements is true about the LM hash?

    A. Disabled in Windows Vista and 7 OSs
    B. Separated into two 8-character strings
    C. Letters are converted to the lowercase
    D. Padded with NULL to 16 characters

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 412-79V8 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.