EC-COUNCIL EC-COUNCIL Certifications ECSAV10 Questions & Answers

• Question 101:

  To locate the firewall, SYN packet is crafted using Hping or any other packet crafter and sent to the firewall. If ICMP unreachable type 13 message (which is an admin prohibited packet) with a source IP address of the access control device is received, then it means which of the following type of firewall is in place?

  A. Circuit level gateway

  B. Stateful multilayer inspection firewall

  C. Packet filter

  D. Application level gateway

  Correct Answer: C

• Question 102:

  A penetration test consists of three phases: pre-attack phase, attack phase, and post-attack phase.

  

  Active reconnaissance which includes activities such as network mapping, web profiling, and perimeter mapping is a part which phase(s)?

  A. Post-attack phase

  B. Pre-attack phase and attack phase

  C. Attack phase

  D. Pre-attack phase

  Correct Answer: D

• Question 103:

  You are running known exploits against your network to test for possible vulnerabilities. To test the strength of your virus software, you load a test network to mimic your production network. Your software successfully blocks some simple macro and encrypted viruses. You decide to really test the software by using virus code where the code rewrites itself entirely and the signatures change from child to child, but the functionality stays the same. What type of virus is this that you are testing?

  A. Metamorphic

  B. Oligomorhic

  C. Polymorphic

  D. Transmorphic

  Correct Answer: A

• Question 104:

  What does ICMP Type 3/Code 13 mean?

  A. Host Unreachable

  B. Port Unreachable

  C. Protocol Unreachable

  D. Administratively Blocked

  Correct Answer: D

• Question 105:

  Identify the attack represented in the diagram below:

  

  A. Input Validation

  B. Session Hijacking

  C. SQL Injection

  D. Denial-of-Service

  Correct Answer: B

• Question 106:

  Which of the following defines the details of services to be provided for the client's organization and the list of services required for performing the test in the organization?

  A. Draft

  B. Report

  C. Requirement list

  D. Quotation

  Correct Answer: D

• Question 107:

  An antenna is a device that is designed to transmit and receive the electromagnetic waves that are generally called radio waves. Which one of the following types of antenna is developed from waveguide

  technology?

  A. Leaky Wave Antennas

  B. Aperture Antennas

  C. Reflector Antenna

  D. Directional Antenna

  Correct Answer: B

• Question 108:

  Firewall and DMZ architectures are characterized according to its design. Which one of the following architectures is used when routers have better high-bandwidth data stream handling capacity?

  A. Weak Screened Subnet Architecture

  B. "Inside Versus Outside" Architecture

  C. "Three-Homed Firewall" DMZ Architecture

  D. Strong Screened-Subnet Architecture

  Correct Answer: A

• Question 109:

  Which of the following documents helps in creating a confidential relationship between the pen tester and client to protect critical and confidential information or trade secrets?

  A. Penetration Testing Agreement

  B. Rules of Behavior Agreement

  C. Liability Insurance

  D. Non-Disclosure Agreement

  Correct Answer: D

• Question 110:

  Identify the type of testing that is carried out without giving any information to the employees or administrative head of the organization.

  A. Unannounced Testing

  B. Double Blind Testing

  C. Announced Testing

  D. Blind Testing

  Correct Answer: B