EC-COUNCIL EC-COUNCIL Certifications ECSAV10 Questions & Answers

• Question 11:

  A penetration test will show you the vulnerabilities in the target system and the risks associated with it. An educated valuation of the risk will be performed so that the vulnerabilities can be reported as High/Medium/ Low risk issues.

  

  What are the two types of `white-box' penetration testing?

  A. Announced testing and blind testing

  B. Blind testing and double blind testing C. Blind testing and unannounced testing

  D. Announced testing and unannounced testing

  Correct Answer: D

• Question 12:

  Jessica works as systems administrator for a large electronics firm. She wants to scan her network quickly to detect live hosts by using ICMP ECHO Requests. What type of scan is Jessica going to perform?

  A. Smurf scan

  B. Tracert

  C. Ping trace

  D. ICMP ping sweep

  Correct Answer: D

• Question 13:

  Which one of the following acts related to the information security in the US fix the responsibility of management for establishing and maintaining an adequate internal control structure and procedures for financial reporting?

  A. California SB 1386

  B. Sarbanes-Oxley 2002

  C. Gramm-Leach-Bliley Act (GLBA)

  D. USA Patriot Act 2001

  Correct Answer: B

• Question 14:

  Which of the following shields Internet users from artificial DNS data, such as a deceptive or mischievous address instead of the genuine address that was requested?

  A. DNSSEC

  B. Firewall

  C. Packet filtering

  D. IPSec

  Correct Answer: A

• Question 15:

  A Demilitarized Zone (DMZ) is a computer host or small network inserted as a "neutral zone" between a company's private network and the outside public network. Usage of a protocol within a DMZ environment is highly variable based on the specific needs of an organization. Privilege escalation, system is compromised when the code runs under root credentials, and DoS attacks are the basic weakness of which one of the following Protocol?

  A. Lightweight Directory Access Protocol (LDAP)

  B. Simple Network Management Protocol (SNMP)

  C. Telnet

  D. Secure Shell (SSH)

  Correct Answer: D

• Question 16:

  What are placeholders (or markers) in an HTML document that the web server will dynamically replace with data just before sending the requested documents to a browser?

  A. Server Side Includes

  B. Sort Server Includes

  C. Server Sort Includes

  D. Slide Server Includes

  Correct Answer: A

• Question 17:

  External penetration testing is a traditional approach to penetration testing and is more focused on the servers, infrastructure and the underlying software comprising the target. It involves a comprehensive analysis of publicly available information about the target, such as Web servers, Mail servers, Firewalls, and Routers.

  

  Which of the following types of penetration testing is performed with no prior knowledge of the site?

  A. Blue box testing

  B. White box testing

  C. Grey box testing

  D. Black box testing

  Correct Answer: D

• Question 18:

  Rule of Engagement (ROE) is the formal permission to conduct a pen-test. It provides top-level guidance for conducting the penetration testing. Various factors are considered while preparing the scope of ROE which clearly explain the limits associated with the security test.

  

  Which of the following factors is NOT considered while preparing the scope of the Rules of Engagment (ROE)?

  A. A list of employees in the client organization

  B. A list of acceptable testing techniques

  C. Specific IP addresses/ranges to be tested

  D. Points of contact for the penetration testing team

  Correct Answer: A

• Question 19:

  Black-box testing is a method of software testing that examines the functionality of an application (e.g. what the software does) without peering into its internal structures or workings. Black-box testing is used to detect issues in SQL statements and to detect SQL injection vulnerabilities.

  

  Most commonly, SQL injection vulnerabilities are a result of coding vulnerabilities during the

  Implementation/Development phase and will likely require code changes. Pen testers need to perform this

  testing during the development phase to find and fix the SQL injection vulnerability.

  What can a pen tester do to detect input sanitization issues?

  A. Send single quotes as the input data to catch instances where the user input is not sanitized

  B. Send double quotes as the input data to catch instances where the user input is not sanitized

  C. Send long strings of junk data, just as you would send strings to detect buffer overruns

  D. Use a right square bracket (the "]" character) as the input data to catch instances where the user input is used as part of a SQL identifier without any input sanitization

  Correct Answer: D

• Question 20:

  What is the following command trying to accomplish?

  

  A. Verify that NETBIOS is running for the 192.168.0.0 network

  B. Verify that TCP port 445 is open for the 192.168.0.0 network

  C. Verify that UDP port 445 is open for the 192.168.0.0 network

  D. Verify that UDP port 445 is closed for the 192.168.0.0 networks

  Correct Answer: C