EC-COUNCIL ECSAV10 Online Practice Questions and Exam Preparation

EC-COUNCIL ECSAV10 Online Questions & Answers

• Question 241:

  Rock is a disgruntled employee of XYZ Inc. He wanted to take revenge. For that purpose, he created a malicious software that automatically visits every page on the company's website, checks pages for important links to other content

  recursively, and indexes them in a logical flow. By using this malicious software, he gathered a lot of crucial information that is required to exploit the organization.

  What is the type of software that Rock developed?

  A. Web spider
  B. Web fuzzer
  C. Web scanner
  D. Web proxy
  A. Web spider

• Question 242:

  Identify the injection attack represented in the diagram below:

  

  A. XPath Injection Attack
  B. XML Request Attack
  C. XML Injection Attack
  D. Frame Injection Attack
  C. XML Injection Attack

• Question 243:

  Which one of the following is a command line tool used for capturing data from the live network and copying those packets to a file?

  A. Wireshark: Capinfos
  B. Wireshark: Tcpdump
  C. Wireshark: Text2pcap
  D. Wireshark: Dumpcap
  D. Wireshark: Dumpcap

• Question 244:

  Mason is footprinting an organization to gather competitive intelligence. He visits the company's website for contact information and telephone numbers but does not find any. He knows the entire staff directory was listed on their website 12 months. How can he find the directory?

  A. Visit Google's search engine and view the cached copy
  B. Crawl and download the entire website using the Surfoffline tool and save them to his computer
  C. Visit the company's partners' and customers' website for this information
  D. Use Way Back Machine in Archive.org web site to retrieve the Internet archive
  D. Use Way Back Machine in Archive.org web site to retrieve the Internet archive

• Question 245:

  What is a difference between host-based intrusion detection systems (HIDS) and network-based intrusion detection systems (NIDS)?

  

  A. NIDS are usually a more expensive solution to implement compared to HIDS.
  B. Attempts to install Trojans or backdoors cannot be monitored by a HIDS whereas NIDS can monitor and stop such intrusion events.
  C. NIDS are standalone hardware appliances that include network intrusion detection capabilities whereas HIDS consist of software agents installed on individual computers within the system.
  D. HIDS requires less administration and training compared to NIDS.
  C. NIDS are standalone hardware appliances that include network intrusion detection capabilities whereas HIDS consist of software agents installed on individual computers within the system.

• Question 246:

  After attending a CEH security seminar, you make a list of changes you would like to perform on your network to increase its security. One of the first things you change is to switch the Restrict Anonymous setting from 0 to 1 on your servers. This, as you were told, would prevent anonymous users from establishing a null session on the server. Using User info tool mentioned at the seminar, you succeed in establishing a null session with one of the servers. Why is that?

  A. Restrict Anonymous must be set to "2" for complete security
  B. Restrict Anonymous must be set to "3" for complete security
  C. There is no way to always prevent an anonymous null session from establishing
  D. Restrict Anonymous must be set to "10" for complete security
  A. Restrict Anonymous must be set to "2" for complete security

• Question 247:

  A month ago, Jason, a software developer at a reputed IT firm was surfing through his company's website. He was visiting random pages of the company's website and came to find confidential information about the company was posted on

  one of the web pages. Jason forgot to report the issue. Jason contacted John, another member of the Security Team, and discussed the issue. John visited the page but found nothing wrong.

  What should John do to see past versions and pages of a website that Jason saw one month back?

  A. John should use SmartWhois to recover the old pages of the website
  B. John should recover cashed pages of the website from Google search engine cache
  C. John should run the Web Data Extractor tool to recover the old data
  D. John can go to Archive.org to see past versions of the company website
  D. John can go to Archive.org to see past versions of the company website

• Question 248:

  What does ICMP Type 3/Code 13 mean?

  A. Host Unreachable
  B. Port Unreachable
  C. Protocol Unreachable
  D. Administratively Blocked
  D. Administratively Blocked

• Question 249:

  Nancy Jones is a network admin at Society Technology Ltd. When she is trying to send data packets from one network (Token-ring) to another network (Ethernet), she receives an error message stating:

  'Destination unreachable'

  What is the reason behind this?

  A. Packet is lost
  B. Packet fragmentation is required
  C. Packet contains image data
  D. Packet transmission is not done properly
  D. Packet transmission is not done properly

• Question 250:

  Frank is working on a vulnerability assessment for a company on the West coast. The company hired Frank to assess its network security through scanning, pen tests, and vulnerability assessments. After discovering numerous known

  vulnerabilities detected by a temporary IDS he set up, he notices a number of items that show up as unknown but questionable in the logs.

  He looks up the behavior on the Internet, but cannot find anything related. What organization should Frank submit the log to find out if it is a new vulnerability or not?

  A. CVE
  B. IANA
  C. RIPE
  D. APIPA
  A. CVE