EC-COUNCIL 412-79v10 Actual Free Exam Questions & Community Discussion

  • Exam Code/Number: 412-79v10
  • Exam Name/Title: EC-Council Certified Security Analyst (ECSA) V10
  • Certification Provider: EC-COUNCIL
  • Corresponding Certification: ECSA
  • Exam Questions: 205
  • Updated On: Jul 10, 2026
You are working on a thesis for your doctorate degree in Computer Science. Your thesis is based on HTML, DHTML, and other web-based languages and how they have evolved over the years. You navigate to archive.org and view the HTML code of news.com. You then navigate to the current news.com website and copy over the source code.
While searching through the code, you come across something abnormal:
<img
src=http://coolwebsearch.com/ads/pixel.news.com width=1 height=1 border=0
>
What have you found?
Correct Answer: D Vote an answer
Vulnerability assessment is an examination of the ability of a system or application, including the current security procedures and controls, to withstand assault.

What does a vulnerability assessment identify?
Correct Answer: A Vote an answer
An external intrusion test and analysis identify security weaknesses and strengths of the client's systems and networks as they appear from outside the client's security perimeter, usually from the Internet.
The goal of an external intrusion test and analysis is to demonstrate the existence of known vulnerabilities that could be exploited by an external attacker.

During external penetration testing, which of the following scanning techniques allow you to determine a port's state without making a full connection to the host?
Correct Answer: C Vote an answer
In the process of hacking a web application, attackers manipulate the HTTP requests to subvert the application authorization schemes by modifying input fields that relate to the user ID, username, access group, cost, file names, file identifiers, etc.
They first access the web application using a low privileged account and then escalate privileges to access protected resources. What attack has been carried out?
Correct Answer: D Vote an answer
George is the network administrator of a large Internet company on the west coast. Per corporate policy, none of the employees in the company are allowed to use FTP or SFTP programs without obtaining approval from the IT department. Few managers are using SFTP program on their computers.
Before talking to his boss, George wants to have some proof of their activity. George wants to use Ethereal to monitor network traffic, but only SFTP traffic to and from his network. What filter should George use in Ethereal?
Correct Answer: B Vote an answer
You work as a penetration tester for Hammond Security Consultants. You are currently working on a contract for the state government of California. Your next step is to initiate a DoS attack on their network.
Why would you want to initiate a DoS attack on a system you are testing?
Correct Answer: D Vote an answer
TCP/IP provides a broad range of communication protocols for the various applications on the network. The TCP/IP model has four layers with major protocols included within each layer. Which one of the following protocols is used to collect information from all the network devices?
Correct Answer: D Vote an answer
Which one of the following Snort logger mode commands is associated to run a binary log file through Snort in sniffer mode to dump the packets to the screen?
Correct Answer: B Vote an answer
Which of the following is the range for assigned ports managed by the Internet Assigned Numbers Authority (IANA)?
Correct Answer: B Vote an answer
The objective of this act was to protect consumers personal financial information held by financial institutions and their service providers.
Correct Answer: A Vote an answer
You are a security analyst performing a penetration tests for a company in the Midwest. After some initial reconnaissance, you discover the IP addresses of some Cisco routers used by the company. You type in the following URL that includes the IP address of one of the routers:
http://172.168.4.131/level/99/exec/show/config
After typing in this URL, you are presented with the entire configuration file for that router. What have you discovered?
Correct Answer: B Vote an answer
What is a good security method to prevent unauthorized users from "tailgating"?
Correct Answer: C Vote an answer
0
0
0
10