ECSA UPDATED Exam Questions and
CORRECT Answers
A - Correct Answer- Your company's network just finished going through a SAS 70 audit.
This audit reported that
overall, your network is secure, but there are some areas that needs improvement. The major
area
was SNMP security. The audit comp...
A - Correct Answer- Your company's network just finished going through a SAS 70 audit.
This audit reported that
overall, your network is secure, but there are some areas that needs improvement. The major
area
was SNMP security. The audit company recommended turning off SNMP, but that is not an
option
since you have so many remote nodes to keep track of. What step could you take to help
secure
SNMP on your network?
A. Change the default community string names
B. Block all internal MAC address from using SNMP
C. Block access to UDP port 171
D. Block access to TCP port 171
A - Correct Answer- At what layer of the OSI model do routers function on?
A. 3
B. 4
C. 5
D. 1
A - Correct Answer- An "idle" system is also referred to as what?
A. Zombie
B. PC not being used
C. Bot
D. PC not connected to the Internet
D - Correct Answer- What operating system would respond to the following command?
,C:\ nmap -sW <ip>
A. Mac OS X
B. Windows XP
C. Windows 95
D. FreeBSD
D - Correct Answer- Why are Linux/Unix based computers better to use than Windows
computers for idle scanning?
A. Windows computers will not respond to idle scans
B. Linux/Unix computers are constantly talking
C. Linux/Unix computers are easier to compromise
D. Windows computers are constantly talking
D - Correct Answer- How many bits is Source Port Number in TCP Header packet?
A. 48
B. 32
C. 64
D. 16
A - Correct Answer- Why are Linux/Unix based computers better to use than Windows
computers for idle scanning?
A. Windows computers are constantly talking
B. Linux/Unix computers are constantly talking
C. Linux/Unix computers are easier to compromise
D. Windows computers will not respond to idle scans
D - Correct Answer- Simon is a former employee of Trinitron XML Inc. He feels he was
wrongly terminated and wants
to hack into his former company's network. Since Simon remembers some of the server
names,
,he attempts to run the axfr and ixfr commands using DIG. What is Simon trying to
accomplish
here?
A. Enumerate all the users in the domain
B. Perform DNS poisoning
C. Send DOS commands to crash the DNS servers
D. Perform a zone transfer
B - Correct Answer- You are carrying out the last round of testing for your new website
before it goes live. The website
has many dynamic pages and connects to a SQL backend that accesses your product
inventory in
a database. You come across a web security site that recommends inputting the following
code
into a search field on web pages to check for vulnerabilities:
<script>alert("This is a test.")</script>
When you type this and click on search, you receive a pop-up window that says:
"This is a test."
What is the result of this test?
A. Your website is vulnerable to web bugs
B. Your website is vulnerable to CSS
C. Your website is not vulnerable
D. Your website is vulnerable to SQL injection
A - Correct Answer- After attending a CEH security seminar, you make a list of changes you
would like to perform on
your network to increase its security. One of the first things you change is to switch the
RestrictAnonymous setting from 0 to 1 on your servers. This, as you were told, would
prevent
anonymous users from establishing a null session on the server. Using Userinfo tool
mentioned at the seminar, you succeed in establishing a null session with one of the servers.
Why is that?
A. RestrictAnonymous must be set to "2" for complete security
, B. RestrictAnonymous must be set to "3" for complete security
C. There is no way to always prevent an anonymous null session from establishing
D. RestrictAnonymous must be set to "10" for complete security
A - Correct Answer- What will the following command accomplish?
A. Test ability of a router to handle over-sized packets
B. Test the ability of a router to handle fragmented packets
C. Test the ability of a WLAN to handle fragmented packets
D. Test the ability of a router to handle under-sized packets
D - Correct Answer- What are the security risks of running a "repair" installation for
Windows XP?
A. There are no security risks when running the "repair" installation for Windows XP
B. Pressing Shift+F1gives the user administrative rights
C. Pressing Ctrl+F10 gives the user administrative rights
D. Pressing Shift+F10 gives the user administrative rights
C - Correct Answer- You are the security analyst working for a private company out of
France. Your current assignment
is to obtain credit card information from a Swiss bank owned by that company. After initial
reconnaissance, you discover that the bank security defenses are very strong and would take
too
long to penetrate. You decide to get the information by monitoring the traffic between the
bank and
one of its subsidiaries in London. After monitoring some of the traffic, you see a lot of FTP
packets
traveling back and forth. You want to sniff the traffic and extract usernames and passwords.
What
tool could you use to get this information?
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller MGRADES. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $10.49. You're not tied to anything after your purchase.
