Enjoy 15% Discount With Coupon 15off

EC-Council ECSAv10 EC-Council Certified Security Analyst Online Training

EC-Council ECSAv10 EC-Council Certified Security Analyst Online Training

EC-Council ECSAv10 Online Training

The questions for ECSAv10 were last updated at Nov 23,2024.
  • Exam Code: ECSAv10
  • Exam Name: EC-Council Certified Security Analyst
  • Certification Provider: EC-Council
  • Latest update: Nov 23,2024
Question #51

What is the purpose of the Traceroute command?

  • A . For extracting information about the network topology, trusted routers, and firewall locations
  • B . For extracting information about closed ports
  • C . For extracting information about the server functioning
  • D . For extracting information about opened ports

Reveal Solution Hide Solution

Question #52

Which port does DHCP use for client connections?

  • A . UDP port 67
  • B . UDP port 68
  • C . UDP port 69
  • D . UDP port 66

Reveal Solution Hide Solution

Question #53

Rebecca, a security analyst, was auditing the network in her organization. During the scan, she found a service running on a remote host, which helped her to enumerate information related to user accounts, network interfaces, network routing and TCP connections.

Which among the following services allowed Rebecca to enumerate the information?

  • A . NTP
  • B . SNMP
  • C . SMPT
  • D . SMB

Reveal Solution Hide Solution

Question #54

In delivering penetration testing report, which of the following steps should NOT be followed?

  • A . Always send the report by email or CD-ROM
  • B . Always deliver the report to approved stakeholders in the company in person
  • C . Always ask for a signed acknowledgment after submitting the report
  • D . Report must be presented in a PDF format, unless requested otherwise

Reveal Solution Hide Solution

Question #55

AB Cloud services provide virtual platform services for the users in addition to storage. The company offers users with APIs, core connectivity and delivery, abstraction and hardware as part of the service.

What is the name of the service AB Cloud services offer?

  • A . Web Application Services
  • B . Platform as a service (PaaS)
  • C . Infrastructure as a service (IaaS)
  • D . Software as a service (SaaS)

Reveal Solution Hide Solution

Question #56

Jason is a penetration tester, and after completing the initial penetration test, he wanted to create a final penetration test report that consists of all activities performed throughout the penetration testing process.

Before creating the final penetration testing report, which of the following reports should Jason prepare in order to verify if any crucial information is missed from the report?

  • A . Activity report
  • B . Host report
  • C . User report
  • D . Draft report

Reveal Solution Hide Solution

Question #57

The penetration testers are required to follow predefined standard frameworks in making penetration testing reporting formats.

Which of the following standards does NOT follow the commonly used methodologies in penetration testing?

  • A . National Institute of Standards and Technology (NIST)
  • B . Information Systems Security Assessment Framework (ISSAF)
  • C . Open Web Application Security Project (OWASP)
  • D . American Society for Testing Materials (ASTM)

Reveal Solution Hide Solution

Question #58

You have implemented DNSSEC on your primary internal DNS server to protect it from various DNS attacks. Network users complained they are not able to resolve domain names to IP addresses at certain times.

What could be the probable reason?

  • A . DNSSEC does not provide protection against Denial of Service (DoS) attacks
  • B . DNSSEC does not guarantee authenticity of a DNS response during an attack
  • C . DNSSEC does not protect the integrity of a DNS response
  • D . DNSSEC does not guarantee the non-existence of a domain name or type

Reveal Solution Hide Solution

Question #59

Ross performs security test on his company’s network assets and creates a detailed report of all the findings. In his report, he clearly explains the methodological approach that he has followed in finding the loopholes in the network.

However, his report does not mention about the security gaps that can be exploited or the amount of damage that may result from the successful exploitation of the loopholes. The report does not even mention about the remediation steps that are to be taken to secure the network.

What is the type of test that Ross has performed?

  • A . Penetration testing
  • B . Vulnerability assessment
  • C . Risk assessment
  • D . Security audit

Reveal Solution Hide Solution

Question #60

JUA Networking Solutions is a group of certified ethical hacking professionals with a large client base. Stanley works as a penetrating tester at this firm. Future group approached JUA for an internal pen test. Stanley performs various penetration testing test sequences and gains information about the network resources and shares, routing tables, audit and service settings, SNMP and DNS details, machine names, users and groups, applications and banners. Identify the technique that gave Stanley this information.

  • A . Enumeration
  • B . Sniffing
  • C . Ping sweeps
  • D . Port scanning

Reveal Solution Hide Solution

Previous Questions Next Questions
Latest ECSAv10 Dumps Valid Version with 150 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download ECSAv10 PDF
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments

Related Posts

28Aug

EC-Council 312-38 Certified Network Defender Online Training

Question #1 Management decides to implement a risk management system to reduce and maintain the organization's risk at an acceptable level.... read more

07Oct

EC-Council 212-89 EC Council Certified Incident Handler (ECIH v2) Online Training

Question #1 Patrick is doing a cyber forensic investigation. He is in the process of collecting physical evidence at the crime... read more

11Oct

EC-Council 312-50v12 Certified Ethical Hacker Exam (CEHv12) Online Training

Question #1 Which of the following tools performs comprehensive tests against web servers, including dangerous files and CGIs? A . NiktoB .... read more

28Oct

EC-Council 312-39 Certified SOC Analyst (CSA) Online Training

Question #1 Jane, a security analyst, while analyzing IDS logs, detected an event matching Regex /((%3C)|<)((%69)|i|(% 49))((%6D)|m|(%4D))((%67)|g|(%47))[^n]+((%3E)|>)/|. What does this event... read more

14Sep

EC-Council 112-51 Network Defense Essentials Exam (NDE) Online Training

Question #1 Amber is working as a team lead in an organization. She was instructed to share a policy document with... read more

26Sep

EC-Council 312-40 Certified Cloud Security Engineer (CCSE) Online Training

Question #1 Ray Nicholson works as a senior cloud security engineer in TerraCloud Sec Pvt. Ltd. His organization deployed all applications... read more

20Oct

EC-Council 212-81 EC-Council Certified Encryption Specialist (ECES) Online Training

Question #1 What size block does AES work on? A . 64B . 128C . 192D . 256 Reveal... read more

03Oct

EC-Council 312-49v9 ECCouncil Computer Hacking Forensic Investigator (V9) Online Training

Question #1 What does mactime, an essential part of the coroner's toolkit do? A . It traverses the file system and produces... read more

28Sep

EC-Council ICS-SCADA ICS/SCADA Cyber Security Online Training

Question #1 What type of communication protocol does Modbus RTU use? A . UDPB . ICMPC . SerialD . SSTP read more

19Oct

EC-Council 412-79V10 EC-Council Certified Security Analyst (ECSA) V10 Online Training

Question #1 A WHERE clause in SQL specifies that a SQL Data Manipulation Language (DML) statement should only affect rows that... read more