EC-COUNCIL ECSAV10 Online Practice Questions and Exam Preparation

EC-COUNCIL ECSAV10 Online Questions & Answers

• Question 231:

  Firewall is an IP packet filter that enforces the filtering and security policies to the flowing network traffic. Using firewalls in IPv6 is still the best way of protection from low level attacks at the network and transport layers. Which one of the following cannot handle routing protocols properly?

  A. "Internet-router-firewall-net architecture"
  B. "Internet-firewall-router-net architecture"
  C. "Internet-firewall/router(edge device)-net architecture"
  D. "Internet-firewall -net architecture"
  B. "Internet-firewall-router-net architecture"

• Question 232:

  You have just completed a database security audit and writing the draft pen testing report.

  Which of the following will you include in the recommendation section to enhance the security of the database server?

  A. Allow direct catalog updates
  B. Install SQL Server on a domain controller
  C. Install a certificate to enable SSL connections
  D. Grant permissions to the public database role
  C. Install a certificate to enable SSL connections

• Question 233:

  Sam is a penetration tester and network admin at McLaren and McLaren, based out of Washington. The company has recently deployed IPv6 in their network. Sam found problems with the protocol implementation and tried to redeploy IPv6

  over IPv4. This time, he used the tunneling mechanism while deploying the IPv6 network.

  How does the tunneling mechanism work?

  A. It encapsulates IPv6 packets in IPv4 packets
  B. It transfers IPv4 first and the IPv6
  C. It splits the IPv4 packets and provides a way to IPv6
  D. It replaces IPv4 with IPv6
  A. It encapsulates IPv6 packets in IPv4 packets

• Question 234:

  John is a penetration tester who wants to perform port scan on the DNS Server (IP address: 192.168.0.124) deployed in the perimeter. In his primary research, he identified that the DNS server is configured with default settings. Since he is employing Nmap tool to perform port scanning, which of the following Nmap commands should John execute to port scan the DNS Server?

  A. nmap -sS -sU –p 80 192.168.0.124
  B. nmap -sS -sU –p 69 192.168.0.124
  C. nmap -sS -sU –p 123 192.168.0.124
  D. nmap -sS -sU –p 53 192.168.0.124
  D. nmap -sS -sU –p 53 192.168.0.124

• Question 235:

  An external intrusion test and analysis identify security weaknesses and strengths of the client's systems and networks as they appear from outside the client's security perimeter, usually from the Internet. The goal of an external intrusion test and analysis is to demonstrate the existence of known vulnerabilities that could be exploited by an external attacker.

  

  During external penetration testing, which of the following scanning techniques allow you to determine a port's state without making a full connection to the host?

  A. XMAS Scan
  B. SYN scan
  C. FIN Scan
  D. NULL Scan
  B. SYN scan

• Question 236:

  Henderson has completed the pen testing tasks. He is now compiling the final report for the client. Henderson needs to include the result of scanning that revealed a SQL injection vulnerability and different SQL queries that he used to bypass

  web application authentication.

  In which section of the pen testing report, should Henderson include this information?

  A. General opinion section
  B. Methodology section
  C. Comprehensive technical report section
  D. Executive summary section
  C. Comprehensive technical report section

• Question 237:

  Tecty Motors Pvt. Ltd. has recently deployed RFID technology in the vehicles which allows the car owner to unlock the car with the exchange of a valid RFID signal between a reader and a tag. Jamie, on the other hand, is a hacker who

  decided to exploit this technology with the aim of stealing the target vehicle. To perform this attack on the target vehicle, he first used an automated tool to intercept the signals between the reader and the tag to capture a valid RFID signal and

  then later used the same signal to unlock and steal the victim's car.

  Which of the following RFID attacks Jamie has performed in the above scenario?

  A. RFID cloning
  B. Replay attack
  C. DoS attack
  D. Power analysis attack
  A. RFID cloning

• Question 238:

  Adam is an IT administrator for Syncan Ltd. He is designated to perform various IT tasks like setting up new user accounts, managing backup/restores, security authentications and passwords, etc. Whilst performing his tasks, he was asked to

  employ the latest and most secure authentication protocol to encrypt the passwords of users that are stored in the Microsoft Windows OS-based systems.

  Which of the following authentication protocols should Adam employ in order to achieve the objective?

  A. LANMAN
  B. Kerberos
  C. NTLM
  D. NTLMv2
  C. NTLM

• Question 239:

  As a security analyst you setup a false survey website that will require users to create a username and a strong password. You send the link to all the employees of the company. What information will you be able to gather?

  A. The employees network usernames and passwords
  B. The MAC address of the employees' computers
  C. The IP address of the employees computers
  D. Bank account numbers and the corresponding routing numbers
  C. The IP address of the employees computers

• Question 240:

  In the TCP/IP model, the transport layer is responsible for reliability and flow control from source to the destination. TCP provides the mechanism for flow control by allowing the sending and receiving hosts to communicate. A flow control mechanism avoids the problem with a transmitting host overflowing the buffers in the receiving host.

  

  A. Sliding Windows
  B. Windowing
  C. Positive Acknowledgment with Retransmission (PAR)
  D. Synchronization
  C. Positive Acknowledgment with Retransmission (PAR)