EC-COUNCIL ECSAV10 Online Practice Questions and Exam Preparation

EC-COUNCIL ECSAV10 Online Questions & Answers

• Question 221:

  Harry, a penetration tester in SqSac Solutions Ltd., is trying to check if his company's SQL server database is vulnerable. He also wants to check if there are any loopholes present that can enable the perpetrators to exploit and gain access to

  the user account login details from the database. After performing various test attempts, finally Harry executes an SQL query that enabled him to extract all the available Windows Login Account details.

  Which of the following SQL queries did Harry execute to obtain the information?

  A. SELECT name FROM sys.server_principals WHERE TYPE = 'R'
  B. SELECT name FROM sys.server_principals WHERE TYPE = 'U'
  C. SELECT name FROM sys.server_principals WHERE TYPE = 'G'
  D. SELECT name FROM sys.server_principals WHERE TYPE = 'S'
  B. SELECT name FROM sys.server_principals WHERE TYPE = 'U'

• Question 222:

  You are carrying out the last round of testing for your new website before it goes live. The website has many dynamic pages and connects to a SQL backend that accesses your product inventory in a database. You come across a web

  security site that recommends inputting the following code into a search field on web pages to check for vulnerabilities:

  When you type this and click on search, you receive a pop-up window that says:

  "This is a test."

  What is the result of this test?

  A. Your website is vulnerable to web bugs
  B. Your website is vulnerable to XSS
  C. Your website is not vulnerable
  D. Your website is vulnerable to SQL injection
  B. Your website is vulnerable to XSS

• Question 223:

  Which of the following documents helps in creating a confidential relationship between the pen tester and client to protect critical and confidential information or trade secrets?

  A. Penetration Testing Agreement
  B. Rules of Behavior Agreement
  C. Liability Insurance
  D. Non-Disclosure Agreement
  D. Non-Disclosure Agreement

• Question 224:

  James, a penetration tester, found a SQL injection vulnerability in the website http://www.xsecurity.com. He used sqlmap and extracted the website's databases from the sql server, one of them being "offices." Which among the following sqlmap queries does James issue in order to extract the tables related to the database "offices"?

  A. sqlmap -u "www.xsecurity.com" --dbs offices -T
  B. sqlmap -u "www.xsecurity.com" --dbs offices --T
  C. sqlmap -u "www.xsecurity.com" --dbs offices -tables
  D. sqlmap -u "www.xsecurity.com" --dbs offices --tables
  D. sqlmap -u "www.xsecurity.com" --dbs offices --tables

• Question 225:

  You have compromised a lower-level administrator account on an Active Directory network of a small company in Dallas, Texas. You discover Domain Controllers through enumeration. You connect to one of the Domain Controllers on port

  389 using Idp.exe.

  What are you trying to accomplish here?

  A. Poison the DNS records with false records
  B. Enumerate MX and A records from DNS
  C. Establish a remote connection to the Domain Controller
  D. Enumerate domain user accounts and built-in groups
  D. Enumerate domain user accounts and built-in groups

• Question 226:

  Rule of Engagement (ROE) is the formal permission to conduct a pen-test. It provides top-level guidance for conducting the penetration testing. Various factors are considered while preparing the scope of ROE which clearly explain the limits associated with the security test.

  

  Which of the following factors is NOT considered while preparing the scope of the Rules of Engagment (ROE)?

  A. A list of employees in the client organization
  B. A list of acceptable testing techniques
  C. Specific IP addresses/ranges to be tested
  D. Points of contact for the penetration testing team
  A. A list of employees in the client organization

• Question 227:

  David is a penetration tester and he is attempting to extract password hashes from the Oracle database.

  Which of the following utilities should Dave employ in order to brute-force password hashes from Oracle databases?

  A. TNS
  B. Orabf
  C. Opwg
  D. OAT
  B. Orabf

• Question 228:

  Rebecca works as a Penetration Tester in a security service firm named Xsecurity. Rebecca placed a sniffer on a subnet residing deep inside the client's network. She used the Firewalk tool to test the security of the company's network

  firewall. After the test, when Rebecca checked the sniffer logs, she was unable to see any traffic produced by the Firewalk tool.

  What is the reason for this?

  A. Rebecca does not see any of the Firewalk traffic because it sets all packets with a TTL of one.
  B. Network sniffers cannot detect Firewalk so that is why none of the traffic appears.
  C. Firewalk cannot pass through firewalls.
  D. She cannot see the traffic because Firewalk sets all packets with a TTL of zero.
  A. Rebecca does not see any of the Firewalk traffic because it sets all packets with a TTL of one.

• Question 229:

  What are the security risks of running a "repair" installation for Windows XP?

  A. There are no security risks when running the "repair" installation for Windows XP
  B. Pressing Shift+F1 gives the user administrative rights
  C. Pressing Ctrl+F10 gives the user administrative rights
  D. Pressing Shift+F10 gives the user administrative rights
  D. Pressing Shift+F10 gives the user administrative rights

• Question 230:

  WallSec Inc. has faced several network security issues in the past and hired Williamson, a professional pentester, to audit its information systems. Before starting his work, Williamson, with the help of his legal advisor, signed an agreement

  with his client. This agreement states that confidential information of the client should not be revealed outside of the engagement.

  What is the name of the agreement that Williamson and his client signed?

  A. Non-disclosure agreement
  B. TPOC agreement
  C. Engagement letter
  D. Authorization letter
  A. Non-disclosure agreement