1. Home
  2. EC-COUNCIL
  3. 412-79V10

EC-Council Certified Security Analyst (ECSA) V10

Exam Details

  • Exam Code
    :412-79V10
  • Exam Name
    :EC-Council Certified Security Analyst (ECSA) V10
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :201 Q&As
  • Last Updated
    :Mar 31, 2025

EC-COUNCIL EC-COUNCIL Certifications 412-79V10 Questions & Answers

  • Question 91:

    Which one of the following is a command line tool used for capturing data from the live network and copying those packets to a file?

    A. Wireshark: Capinfos

    B. Wireshark: Tcpdump

    C. Wireshark: Text2pcap

    D. Wireshark: Dumpcap

  • Question 92:

    You are conducting a penetration test against a company and you would like to know a personal email address of John, a crucial employee. What is the fastest, cheapest way to find out John's email address.

    A. Call his wife and ask for his personal email account

    B. Call a receptionist and ask for John Stevens' personal email account

    C. Search in Google for his personal email ID

    D. Send an email to John stating that you cannot send him an important spreadsheet attachment file to his business email account and ask him if he has any other email accounts

  • Question 93:

    Which of the following scan option is able to identify the SSL services?

    A. -sS

    B. -sV

    C. -sU

    D. -sT

  • Question 94:

    By default, the TFTP server listens on UDP port 69. Which of the following utility reports the port status of target TCP and UDP ports on a local or a remote computer and is used to troubleshoot TCP/IP connectivity issues?

    A. PortQry

    B. Netstat

    C. Telnet

    D. Tracert

  • Question 95:

    Which of the following is an ARP cache poisoning technique aimed at network switches?

    A. Replay Attack

    B. Mac Flooding

    C. Man-in-the Middle Attack

    D. DNS Poisoning

  • Question 96:

    Which of the following will not handle routing protocols properly?

    A. "Internet-router-firewall-net architecture"

    B. "Internet-firewall-router-net architecture"

    C. "Internet-firewall -net architecture"

    D. "Internet-firewall/router(edge device)-net architecture"

  • Question 97:

    A penetration test will show you the vulnerabilities in the target system and the risks associated with it. An educated valuation of the risk will be performed so that the vulnerabilities can be reported as High/ Medium/Low risk issues.

    What are the two types of `white-box' penetration testing?

    A. Announced testing and blind testing

    B. Blind testing and double blind testing

    C. Blind testing and unannounced testing

    D. Announced testing and unannounced testing

  • Question 98:

    Which Wireshark filter displays all the packets where the IP address of the source host is 10.0.0.7?

    A. ip.dst==10.0.0.7

    B. ip.port==10.0.0.7

    C. ip.src==10.0.0.7

    D. ip.dstport==10.0.0.7

  • Question 99:

    A pen tester has extracted a database name by using a blind SQL injection. Now he begins to test the table inside the database using the below query and finds the table:

    http://juggyboy.com/page.aspx?id=1; IF (LEN(SELECT TOP 1 NAME from sysobjects where xtype='U')=3) WAITFOR DELAY '00:00:10'-

    http://juggyboy.com/page.aspx?id=1; IF (ASCII(lower(substring((SELECT TOP 1 NAME from sysobjects where xtype=char(85)),1,1)))=101) WAITFOR DELAY '00:00:10'-

    http://juggyboy.com/page.aspx?id=1; IF (ASCII(lower(substring((SELECT TOP 1 NAME from sysobjects where xtype=char(85)),2,1)))=109) WAITFOR DELAY '00:00:10'-

    http://juggyboy.com/page.aspx?id=1; IF (ASCII(lower(substring((SELECT TOP 1 NAME from sysobjects where xtype=char(85)),3,1)))=112) WAITFOR DELAY '00:00:10'-

    What is the table name?

    A. CTS

    B. QRT

    C. EMP

    D. ABC

  • Question 100:

    Which of the following is a framework of open standards developed by the Internet Engineering Task Force (IETF) that provides secure transmission of the sensitive data over an unprotected medium, such as the Internet?

    A. DNSSEC

    B. Netsec

    C. IKE

    D. IPsec

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 412-79V10 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.