412-79試験無料問題集（205題）「EC-COUNCIL EC-Council Certified Security Analyst (ECSA) 認定」

出題：1

Attackers create secret accounts and gain illegal access to resources using backdoor while bypassing the authentication procedures. Creating a backdoor is a where an attacker obtains remote access to a computer on a network.

Which of the following techniques do attackers use to create backdoors to covertly gather critical information about a target machine?

A. Port scanning to determine what ports are open or in use on the target machine

B. Sniffing to monitor all the incoming and outgoing network traffic

C. Social engineering and spear phishing attacks to install malicious programs on the target machine

D. Internal network mapping to map the internal network of the target machine

正解：C 解答を投票する

出題：2

Which one of the following components of standard Solaris Syslog is a UNIX command that is used to add single-line entries to the system log?

A. "Syslogd.conf"

B. "/etc/syslog.conf"

C. "Syslogd"

D. "Logger"

正解：D 解答を投票する

出題：3

Identify the data security measure which defines a principle or state that ensures that an action or transaction cannot be denied.

A. Non-Repudiation

B. Authorization

C. Integrity

D. Availability

正解：A 解答を投票する

出題：4

Why is a legal agreement important to have before launching a penetration test?

A. Guarantees your consultant fees

B. Allows you to perform a penetration test without the knowledge and consent of the organization's upper management

C. It establishes the legality of the penetration test by documenting the scope of the project and the consent of the company.

D. It is important to ensure that the target organization has implemented mandatory security policies

正解：C 解答を投票する

出題：5

Which of the following policies states that the relevant application owner must authorize requests for additional access to specific business applications in writing to the IT Department/resource?

A. User-Account Policy

B. Personal Computer Acceptable Use Policy

C. User Identification and Password Policy

D. Special-Access Policy

正解：C 解答を投票する

出題：6

Vulnerability assessment is an examination of the ability of a system or application, including current security procedures and controls, to withstand assault. It recognizes, measures, and classifies security vulnerabilities in a computer system, network, and communication channels.
A vulnerability assessment is used to identify weaknesses that could be exploited and predict the effectiveness of additional security measures in protecting information resources from attack.

Which of the following vulnerability assessment technique is used to test the web server infrastructure for any misconfiguration and outdated content?

A. Host-based Assessment

B. Passive Assessment

C. Application Assessment

D. External Assessment

正解：C 解答を投票する

出題：7

Identify the correct formula for Return on Investment (ROI).

A. ROI = (Expected Returns + Cost of Investment) / Cost of Investment

B. ROI = ((Expected Returns - Cost of Investment) / Cost of Investment) * 100

C. ROI = (Expected Returns Cost of Investment) / Cost of Investment

D. ROI = ((Expected Returns + Cost of Investment) / Cost of Investment) * 100

正解：C 解答を投票する

出題：8

Information gathering is performed to:
i) Collect basic information about the target company and its network
ii) Determine the operating system used, platforms running, web server versions, etc.
iii) Find vulnerabilities and exploits

Which of the following pen testing tests yields information about a company's technology infrastructure?

A. Searching for trade association directories

B. Searching for a company's job postings

C. Searching for web page posting patterns

D. Analyzing the link popularity of the company's website

正解：B 解答を投票する

出題：9

Which Wireshark filter displays all the packets where the IP address of the source host is 10.0.0.7?

A. ip.src==10.0.0.7

B. ip.port==10.0.0.7

C. ip.dst==10.0.0.7

D. ip.dstport==10.0.0.7

正解：A 解答を投票する

出題：10

The Web parameter tampering attack is based on the manipulation of parameters exchanged between client and server in order to modify application data, such as user credentials and permissions, price and quantity of products, etc. Usually, this information is stored in cookies, hidden form fields, or URL Query Strings, and is used to increase application functionality and control.
This attack takes advantage of the fact that many programmers rely on hidden or fixed fields (such as a hidden tag in a form or a parameter in a URL) as the only security measure for certain operations. Attackers can easily modify these parameters to bypass the security mechanisms that rely on them.

What is the best way to protect web applications from parameter tampering attacks?

A. Applying effective input field filtering parameters

B. Minimizing the allowable length of parameters

C. Using an easily guessable hashing algorithm

D. Validating some parameters of the web application

正解：A 解答を投票する

412-79試験無料問題集「EC-COUNCIL EC-Council Certified Security Analyst (ECSA) 認定」