ECSA Test Questions

Free ecsa sample questions to pass ecsa v9 questions. For ecsa prep you must go through real exam. For that we provide ecsa practice questions real test. We discuss in these ecsa test prep from different topics like ecsa certification, ecsa preparation multiple choice questions and answers .

free ecsa practice test

In this test you have to answer ecsa questions and answers. To get pass ecsa sample test you must answers correct. So Enjoy these ecsa mock test to get enough knowledge for ecsa free practice test attempt. You will get mock test answers after click submit button at bottom. If any question wrong just click on go back button to correct it. Easy Na!




Disclaimer:-
EC-Council Certified Security Analyst® (ECSA®) trademarks and/or service marks of EC-Council. EC-Council does not endorse and is not affiliated in any way with Test-Questions.com or its products and services.

ECSA Exam Preparation

ecsa v9 questions ecsa test prep


Q:1-Which one of the following tools of trade is an automated, comprehensive penetration testing product for assessing the specific information security threats to an organization?
Mark one answer:

Sunbelt Network Security Inspector (SNSI)
CORE Impact
Canvas
Microsoft Baseline Security Analyzer (MBSA)



Q:2-Attackers create secret accounts and gain illegal access to resources using backdoor while bypassing the authentication procedures. Creating a backdoor is a where an attacker obtains remote access to a computer on a network.
01-02 ec-council ecsa
Which of the following techniques do attackers use to create backdoors to covertly gather critical information about a target machine?

Mark one answer:

Internal network mapping to map the internal network of the target machine
Port scanning to determine what ports are open or in use on the target machine
Sniffing to monitor all the incoming and outgoing network traffic
Social engineering and spear phishing attacks to install malicious programs on the target machine


Q:3-Which of the following reports provides a summary of the complete pen testing process, its outcomes, and recommendations?
Mark one answer:

Vulnerability Report
Executive Report
Client-side test Report
Host Report


Q:4-Which of the following statements is true about the LM hash?
Mark one answer:

Disabled in Windows Vista and 7 OSs
Separated into two 8-character strings
Letters are converted to the lowercase
Padded with NULL to 16 characters


Q:5-A man enters a PIN number at an ATM machine, being unaware that the person next to him was watching. Which of the following social engineering techniques refers to this type of information theft?
Mark one answer:

Shoulder surfing
Phishing
Insider Accomplice
Vishing


test-questions.com

Q:6-During the process of fingerprinting a web application environment, what do you need to do in order to analyze HTTP and HTTPS request headers and the HTML source code?
Mark one answer:

Examine Source of the Available Pages
Perform Web Spidering
Perform Banner Grabbing
Check the HTTP and HTML Processing by the Browser


Q:7-Which of the following is the range for assigned ports managed by the Internet Assigned Numbers Authority (IANA)?
Mark one answer:

3001-3100
5000-5099
6666-6674
0 – 1023


Q:8-Which of the following attacks does a hacker perform in order to obtain UDDI information such as businessEntity, businesService, bindingTemplate, and tModel?
Mark one answer:

Web Services Footprinting Attack
Service Level Configuration Attacks
URL Tampering Attacks
Inside Attacks


Q:9-Which of the following statements is true about Multi-Layer Intrusion Detection Systems (mIDSs)?
Mark one answer:

Decreases consumed employee time and increases system uptime
Increases detection and reaction time
Increases response time
Both a and c


Q:10-Which of the following statement holds true for TCP Operation?
01-02 ec-council ecsa
Mark one answer:

Port numbers are used to know which application the receiving host should pass the data to
Sequence numbers are used to track the number of packets lost in transmission
Flow control shows the trend of a transmitting host overflowing the buffers in the receiving host
Data transfer begins even before the connection is established



Free        Premium    


ecsa sample questions ecsa v9 question bank