ECSS Exam Details

  • Exam Code
    :ECSS
  • Exam Name
    :EC-Council Certified Security Specialist (ECSS) v10
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :337 Q&As
  • Last Updated
    :Jul 08, 2026

EC-COUNCIL ECSS Online Questions & Answers

  • Question 161:

    TCP FIN scanning is a type of stealth scanning through which the attacker sends a FIN packet to the target port. If the port is closed, the victim assumes that this packet was sent mistakenly by the attacker and sends the RST packet to the attacker. If the port is open, the FIN packet will be ignored and the port will drop the packet. Which of the following operating systems can be easily identified with the help of TCP FIN scanning?

    A. Red Hat
    B. Windows
    C. Knoppix
    D. Solaris

  • Question 162:

    Which of the following statements are true about Public-key cryptography? Each correct answer represents a complete solution. Choose two.

    A. The secret key can encrypt a message, and anyone with the public key can decrypt it.
    B. Data encrypted with the secret key can only be decrypted by another secret key.
    C. The distinguishing technique used in public key-private key cryptography is the use of symmetric key algorithms.
    D. Data encrypted by the public key can only be decrypted by the secret key.

  • Question 163:

    Which of the following viruses/worms uses the buffer overflow attack?

    A. Code red worm
    B. Nimda virus
    C. Chernobyl (CIH) virus
    D. Klez worm

  • Question 164:

    Rick, the Network Administrator of the Fimbry Hardware Inc., wants to design the initial test model for Internet Access. He wants to fulfill the following goals:

    ꞏNo external traffic should be allowed into the network.

    ꞏAdministrators should be able to restrict the websites which can be accessed by the internal users.

    Which of the following technologies should he use to accomplish the above goals?

    (Click the Exhibit button on the toolbar to see the case study.)

    A. Firewall
    B. Network Address Translator (NAT)
    C. Proxy Server
    D. Internet Connection Sharing (ICS)
    E. Routing and Remote Access Service (RRAS)

  • Question 165:

    Which of the following is used over the Internet for better security?

    A. SOCKS
    B. IMAP Server
    C. Wingate
    D. S-HTTP

  • Question 166:

    Adam works as a Computer Hacking Forensic Investigator for a garment company in the United States. A project has been assigned to him to investigate a case of a disloyal employee who is suspected of stealing design of the garments, which belongs to the company and selling those garments of the same design under different brand name. Adam investigated that the company does not have any policy related to the copy of design of the garments. He also investigated that the trademark under which the employee is selling the garments is almost identical to the original trademark of the company. On the grounds of which of the following laws can the employee be prosecuted?

    A. Copyright law
    B. Cyber law
    C. Espionage law
    D. Trademark law

  • Question 167:

    Which of the following laws was formed by the legislative branch of the United States government?

    A. Study law
    B. Business law
    C. Statutory law
    D. Administrative law

  • Question 168:

    You have just set up a wireless network for customers at a coffee shop. Which of the following are good security measures to implement? Each correct answer represents a complete solution. Choose two.

    A. MAC filtering the router
    B. Using WPA encryption
    C. Not broadcasting SSID
    D. Using WEP encryption

  • Question 169:

    Which of the following is used in asymmetric encryption?

    A. Public key and user key
    B. SSL
    C. Public key and private key
    D. NTFS

  • Question 170:

    Firewalking is a technique that can be used to gather information about a remote network protected by a firewall. This technique can be used effectively to perform information gathering attacks. In this technique, an attacker sends a crafted packet with a TTL value that is set to expire one hop past the firewall. Which of the following are pre-requisites for an attacker to conduct firewalking?

    Each correct answer represents a complete solution. Choose all that apply.

    A. There should be a backdoor installed on the network.
    B. An attacker should know the IP address of a host located behind the firewall.
    C. An attacker should know the IP address of the last known gateway before the firewall.
    D. ICMP packets leaving the network should be allowed.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your ECSS exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.