Free Certified Security Analyst (ECSA) v10 Exam ECSAv10 Exam Practice Test

During the process of fingerprinting a web application environment, what do you need to do in order to analyze HTTP and HTTPS request headers and the HTML source code?

• Examine Source of the Available Pages
• Perform Web Spidering
• Perform Banner Grabbing
• Check the HTTP and HTML Processing by the Browser

An antenna is a device that is designed to transmit and receive the electromagnetic waves that are generally called radio waves. Which one of the following types of antenna is developed from waveguide technology?

• Leaky Wave Antennas
• Aperture Antennas
• Reflector Antenna
• Directional Antenna

What are the scanning techniques that are used to bypass firewall rules and logging mechanisms and disguise themselves as usual network traffic?

• Connect Scanning Techniques
• SYN Scanning Techniques
• Stealth Scanning Techniques
• Port Scanning Techniques

Which of the following policies states that the relevant application owner must authorize requests for additional access to specific business applications in writing to the IT Department/resource?

• Special-Access Policy
• User Identification and Password Policy
• Personal Computer Acceptable Use Policy
• User-Account Policy

You setup SNMP in multiple offices of your company. Your SNMP software manager is not receiving data from other offices like it is for your main office. You suspect that firewall changes are to blame. What ports should you open for SNMP to work through Firewalls.(Select 2)

• 162
• 160
• 161
• 163

After attending a CEH security seminar, you make a list of changes you would like to perform on your network to increase its security. One of the first things you change is to switch the Restrict Anonymous setting from 0 to 1 on your servers. This, as you were told, would prevent anonymous users from establishing a null session on the server.Using User info tool mentioned at the seminar, you succeed in establishing a null session with one of the servers. Why is that?

• Restrict Anonymous must be set to "2" for complete security
• Restrict Anonymous must be set to "3" for complete security
• There is no way to always prevent an anonymous null session from establishing
• Restrict Anonymous must be set to "10" for complete security

To locate the firewall, SYN packet is crafted using Hping or any other packet crafter and sent to the firewall. If ICMP unreachable type 13 message (which is an admin prohibited packet) with a source IP address of the access control device is received, then it means which of the following type of firewall is in place?

• Circuit level gateway
• Stateful multilayer inspection firewall
• Packet filter
• Application level gateway

Which of the following attributes has a LM and NTLMv1 value as 64bit + 64bit + 64bit and NTLMv2 value as 128 bits?

• Hash Key Length
• C/R Value Length
• C/R Key Length
• Hash Value Length

Firewall is an IP packet filter that enforces the filtering and security policies to the flowing network traffic. Using firewalls in IPv6 is still the best way of protection from low level attacks at the network and transport layers.Which one of the following cannot handle routing protocols properly?

• “Internet-router-firewall-net architecture”
• “Internet-firewall-router-net architecture”
• “Internet-firewall/router(edge device)-net architecture”
• “Internet-firewall -net architecture”

You work as a penetration tester for Hammond Security Consultants. You are currently working on a contract for the state government of California. Your next step is to initiate a DoS attack on their network. Why would you want to initiate a DoS attack on a system you are testing?

• Use attack as a launching point to penetrate deeper into the network
• Demonstrate that no system can be protected against DoS attacks
• List weak points on their network
• Show outdated equipment so it can be replaced