ECSS Exam Details

  • Exam Code
    :ECSS
  • Exam Name
    :EC-Council Certified Security Specialist (ECSS) v10
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :337 Q&As
  • Last Updated
    :Jul 08, 2026

EC-COUNCIL ECSS Online Questions & Answers

  • Question 301:

    Which of the following is provided by Digital signatures?

    A. Security and Integrity.
    B. Integrity and Validation.
    C. Authentication and Identification.
    D. Identification and Validation.

  • Question 302:

    John works as a Desktop Technician for NetPerfect Inc. The company has a Windows-based network. For the last few days, the network of the company has become prone to the Man-in-the- Middle attack. John wants to send a confidential MS-Word file to his Manager through e-mail attachment. He wants to ensure that no one is able to open and understand the file's message except the Manager. Which of the following should John use to accomplish the task?

    Each correct answer represents a part of the solution. Choose all that apply.

    A. Format the file
    B. Apply password to the file
    C. Encryption
    D. File Compression

  • Question 303:

    You have made a program secure.c to display which ports are open and what types of services are running on these ports. You want to write the program's output to standard output and simultaneously copy it into a specified file. Which of the following commands will you use to accomplish the task?

    A. cat
    B. less
    C. more
    D. tee

  • Question 304:

    Peter works as a Technical Representative in a CSIRT for SecureEnet Inc. His team is called to investigate the computer of an employee, who is suspected for classified data theft. Suspect's computer runs on Windows operating system. Peter wants to collect data and evidences for further analysis. He knows that in Windows operating system, the data is searched in pre-defined steps for proper and efficient analysis. Which of the following is the correct order for searching data on a Windows based system?

    A. Volatile data, file slack, registry, system state backup, internet traces, file system, memory dumps
    B. Volatile data, file slack, registry, memory dumps, file system, system state backup, interne t traces
    C. Volatile data, file slack, file system, registry, memory dumps, system state backup, interne t traces
    D. Volatile data, file slack, internet traces, registry, memory dumps, system state backup, file system

  • Question 305:

    RRD Job World wants to upgrade its network. The company decides to implement a TCP/IP- based network. According to the case study, RRD Job World is concerned about security. Which of the following methods should the on-site employees use to communicate securely with the headquarters?

    (Click the Exhibit button on the toolbar to see the case study.)

    A. Windows NT Challenge/Response (NTLM) authentication
    B. L2TP over IPSec
    C. Basic (Clear Text) authentication using SSL
    D. DNS security and group policies

  • Question 306:

    You are using the dsniff tool to intercept communications between two entities and establish credentials with both sides of the connections. These entities do not notice that you were retrieving the information between these two. Which of the following attacks are you performing?

    A. Session hijacking
    B. DoS
    C. ARP poisoning
    D. Man-in-the-middle

  • Question 307:

    Which of the following are the two primary U.S. laws that address cybercrime?

    A. 1030 and 1362
    B. 1029 and 2510
    C. 1030 and 2510
    D. 1029 and 1030

  • Question 308:

    Which of the following security protocols are based on the 802.11i standard? Each correct answer represents a complete solution. Choose all that apply.

    A. WEP
    B. WPA2
    C. WPA
    D. WEP2

  • Question 309:

    Which of the following statements are TRUE about Demilitarized zone (DMZ)? Each correct answer represents a complete solution. Choose all that apply.

    A. The purpose of a DMZ is to add an additional layer of security to the Local Area Network of an organization.
    B. In a DMZ configuration, most computers on the LAN run behind a firewall connected to a public network like the Internet.
    C. Hosts in the DMZ have full connectivity to specific hosts in the internal network.
    D. Demilitarized zone is a physical or logical sub-network that contains and exposes external services of an organization to a larger un-trusted network.

  • Question 310:

    On March 6, 2003, The SCO Group asserted that there are legal uncertainties regarding the use of the Linux operating system due to alleged violations of IBM's Unix licenses in the development of Linux code at IBM. What were the claims made by SCO on IBM regarding the use of the Linux operating system?

    Each correct answer represents a complete solution. Choose all that apply.

    A. Interference with contract
    B. Breach of the GNU General Public License (GPL)
    C. Lanham Act violation
    D. Misappropriation of trade secrets
    E. Breach of IBM software agreement

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your ECSS exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.