Spring Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = getmirror

Home
ECCouncil
ECSA
412-79
EC-Council Certified Security Analyst (ECSA) Questions and Answers

Pass the ECCouncil ECSA 412-79 Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.

Exam 412-79 Premium Access

View all detail and faqs for the 412-79 exam

Go to Exam

709 Students Passed

86% Average Score

96% Same Questions

Viewing page 3 out of 7 pages

Viewing questions 21-30 out of questions

Questions # 21:

Frank is working on a vulnerability assessment for a company on the West coast. The company hired Frank to assess its network security through scanning, pen tests, and vulnerability assessments. After discovering numerous known vulnerabilities detected by a temporary IDS he set up, he notices a number of items that show up as unknown but questionable in the logs. He looks up the behavior on the Internet, but cannot find anything related. What organization should Frank submit the log to find out if it is a new vulnerability or not?

Options:

RIPE

CVE

IANA

APIPA

Answer

Questions # 22:

Software firewalls work at which layer of the OSI model?

Options:

Data Link

Network

Transport

Application

Answer

Questions # 23:

What does ICMP Type 3/Code 13 mean?

Options:

Host Unreachable

Port Unreachable

Protocol Unreachable

Administratively Blocked

Answer

Questions # 24:

When you are running a vulnerability scan on a network and the IDS cuts off your connection, what type of IDS is being used?

Options:

NIPS

Passive IDS

Progressive IDS

Active IDS

Answer

Questions # 25:

What is kept in the following directory? HKLM\SECURITY\Policy\Secrets

Options:

Service account passwords in plain text

Cached password hashes for the past 20 users

IAS account names and passwords

Local store PKI Kerberos certificates

Answer

Questions # 26:

Options:

CVE

IANA

RIPE

APIPA

Answer

Questions # 27:

After passing her CEH exam, Carol wants to ensure that her network is completely secure. She implements a DMZ, statefull firewall, NAT, IPSEC, and a packet filtering firewall. Since all security measures were taken, none of the hosts on her network can reach the Internet. Why is that?

Options:

Statefull firewalls do not work with packet filtering firewalls

NAT does not work with statefull firewalls

NAT does not work with IPSEC

IPSEC does not work with packet filtering firewalls

Answer

Questions # 28:

You are trying to locate Microsoft Outlook Web Access Default Portal using Google search on the Internet. What search string will you use to locate them?

Options:

outlook:"search"

allinurl:"exchange/logon.asp"

locate:"logon page"

intitle:"exchange server"

Answer

Questions # 29:

An Expert witness give an opinion if:

Options:

The Opinion, inferences or conclusions depend on special knowledge, skill or training not within the ordinary experience of lay jurors

To define the issues of the case for determination by the finder of fact

To stimulate discussion between the consulting expert and the expert witness

To deter the witness form expanding the scope of his or her investigation beyond the requirements of the case

Answer

Questions # 30:

You have completed a forensic investigation case. You would like to destroy the data contained in various disks at the forensics lab due to sensitivity of the case. How would you permanently erase the data on the hard disk?