ECSAV10 Exam Details

  • Exam Code
    :ECSAV10
  • Exam Name
    :EC-Council Certified Security Analyst (ECSA) v10
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :354 Q&As
  • Last Updated
    :Jul 13, 2026

EC-COUNCIL ECSAV10 Online Questions & Answers

  • Question 301:

    An "idle" system is also referred to as what?

    A. Zombie
    B. PC not being used
    C. Bot
    D. PC not connected to the Internet

  • Question 302:

    Which of the following shields Internet users from artificial DNS data, such as a deceptive or mischievous address instead of the genuine address that was requested?

    A. DNSSEC
    B. Firewall
    C. Packet filtering
    D. IPSec

  • Question 303:

    Which one of the following tools of trade is a commercial shellcode and payload generator written in Python by Dave Aitel?

    A. Microsoft Baseline Security Analyzer (MBSA)
    B. CORE Impact
    C. Canvas
    D. Network Security Analysis Tool (NSAT)

  • Question 304:

    Besides the policy implications of chat rooms, Internet Relay Chat (IRC) is frequented by attackers and used as a command and control mechanism. IRC normally uses which one of the following TCP ports?

    A. 6566 TCP port
    B. 6771 TCP port
    C. 6667 TCP port
    D. 6257 TCP port

  • Question 305:

    HTTP protocol specifies that arbitrary binary characters can be passed within the URL by using %xx notation, where 'xx' is the

    A. ASCII value of the character
    B. Binary value of the character
    C. Decimal value of the character
    D. Hex value of the character

  • Question 306:

    Jason is working on a pen testing assignment. He is sending customized ICMP packets to a host in the target network. However, the ping requests to the target failed with "ICMP Time Exceeded Type = 11" error messages. What can Jason do to overcome this error?

    A. Set a Fragment Offset
    B. Increase the Window size in the packets
    C. Increase the TTL value in the packets
    D. Increase the ICMP header length

  • Question 307:

    ESTION NO: 92

    In Linux, /etc/shadow file stores the real password in encrypted format for user's account with added properties associated with the user's password.

    In the example of a /etc/shadow file below, what does the bold letter string indicate? Vivek: $1$fnffc$GteyHdicpGOfffXX40w#5:13064:0:99999:7

    A. Number of days the user is warned before the expiration date
    B. Minimum number of days required between password changes
    C. Maximum number of days the password is valid
    D. Last password changed

  • Question 308:

    When you are running a vulnerability scan on a network and the IDS cuts off your connection, what type of IDS is being used?

    A. Passive IDS
    B. Active IDS
    C. Progressive IDS
    D. NIPS

  • Question 309:

    The IP protocol was designed for use on a wide variety of transmission links. Although the maximum length of an IP datagram is 64K, most transmission links enforce a smaller maximum packet length limit, called a MTU. The value of the MTU depends on the type of the transmission link. The design of IP accommodates MTU differences by allowing routers to fragment IP datagrams as necessary. The receiving station is responsible for reassembling the fragments back into the original full size IP datagram. IP fragmentation involves breaking a datagram into a number of pieces that can be reassembled later. The IP source, destination, identification, total length, and fragment offset fields in the IP header, are used for IP fragmentation and reassembly.

    The fragment offset is 13 bits and indicates where a fragment belongs in the original IP datagram. This value is a:

    A. Multiple of four bytes
    B. Multiple of two bytes
    C. Multiple of eight bytes
    D. Multiple of six bytes

  • Question 310:

    Which of the following will not handle routing protocols properly?

    A. "Internet-router-firewall-net architecture"
    B. "Internet-firewall-router-net architecture"
    C. "Internet-firewall -net architecture"
    D. "Internet-firewall/router(edge device)-net architecture"

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your ECSAV10 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.