IT certifications Exams,Study Guide IT certifications Exams,Study Guide,Practice Test,Training Materials

TestInside EC0-479 PDF Exams Free Download

EC-COUNCIL EC0-479 Exam Introduction:
EC-COUNCIL EC0-479 Braindumps

E-Commerce Architect

EC-Council Certified Security Analyst(ECSA)

• Exam Number/Code : EC0-479
• Exam Name : EC-Council Certified Security Analyst(ECSA)
• Questions and Answers : 100 Q&As

Pdf Down: EC-COUNCIL EC0-479 pdf download

some free questions and answers:
　
　
Exam : EC-Council EC0-479
Title : EC-Council Certified Security Analyst (ECSA)

1. You are assisting a Department of Defense contract company to become compliant with the stringent security policies set by the DoD. One such strict rule is that firewalls must only allow incoming connections that were first initiated by internal computers. What type of firewall must you implement to abide by this policy?
A. Packet filtering firewall
B. Circuit-level proxy firewall
C. Application-level proxy firewall
D. Statefull firewall
Answer: D

2. When you are running a vulnerability scan on a network and the IDS cuts off your connection, what type of IDS is being used?
A. Passive IDS
B. Active IDS
C. Progressive IDS
D. NIPS
Answer: B

3. You setup SNMP in multiple offices of your company. Your SNMP software manager is not receiving data from other offices like it is for your main office. You suspect that firewall changes are to blame. What ports should you open for SNMP to work through Firewalls (Select 2)
A. 162
B. 161
C. 163
D. 160
Answer: AB

4. You are carrying out the last round of testing for your new website before it goes live. The website has many dynamic pages and connects to a SQL backend that accesses your product inventory in a database. You come across a web security site that recommends inputting the following code into a search field on web pages to check for vulnerabilities:
<script>alert("This is a test.")</script>
When you type this and click on search, you receive a pop-up window that says:
"This is a test."
What is the result of this test?
A. Your website is vulnerable to CSS
B. Your website is not vulnerable
C. Your website is vulnerable to SQL injection
D. Your website is vulnerable to web bugs
Answer: A

5. What will the following command produce on a website login page?
SELECT email, passwd, login_id, full_name
FROM members
WHERE email = ’someone@somehwere.com’; DROP TABLE members; –’
A. Deletes the entire members table
B. Inserts the Error! Reference source not found. email address into the members table
C. Retrieves the password for the first user in the members table
D. This command will not produce anything since the syntax is incorrect
Answer: A

6. Michael works for Kimball Construction Company as senior security analyst. As part of yearly security audit, Michael scans his network for vulnerabilities. Using Nmap, Michael conducts XMAS scan and most of the ports scanned do not give a response. In what state are these ports?
A. Closed
B. Open
C. Stealth
D. Filtered
Answer: B

7. If an attacker’s computer sends an IPID of 31400 to a zombie computer on an open port in IDLE scanning, what will be the response?
A. The zombie will not send a response
B. 31402
C. 31399
D. 31401
Answer: D

8. Simon is a former employee of Trinitron XML Inc. He feels he was wrongly terminated and wants to hack into his former company’s network. Since Simon remembers some of the server names, he attempts to run the axfr and ixfr commands using DIG. What is Simon trying to accomplish here?
A. Send DOS commands to crash the DNS servers
B. Perform DNS poisoning
C. Perform a zone transfer
D. Enumerate all the users in the domain
Answer: C

More
EC-COUNCIL EC0-479 Exam

TestInside offers free demos for each EC-COUNCIL certification exam, including all IT vendors. You can check out the testing engine software, or EC-COUNCIL EC0-479 pdf exam question quality and usability of our practice exams before you decide to buy it. If you want to try TestInside exam practice engine demo. Pls visit: http://www.testinside.com
TestInside provides high-quality test materials, for example, EC-COUNCIL CCNA CCNP CCIE, Comptia A + NETWORK + Security +, Juniper jncia, jncis, Vmware VCP-410,EC0-479 Dumps, certification practice exams and so on.We are committed to give full refund to candidates if they fail the exam with use of our products.And we are confident to make such a guarantee. Buy Best Practice Exam,high-quality ,100% Guarantee.

Our EC0-479 practice test and EC0-479 study Guide are composed by current and active Information Technology experts, who use their experience in preparing you for your future in IT.

EC0-479 Exam Features:

Comprehensive questions with complete details, answers and references

Exhibits and graphical representations (if available)

Verified Answers Researched by Industry Experts

Questions updated on regular basis

Like actual certification exams our product is in multiple-choice questions (MCQs).

Our questions and answers are backed by our GUARANTEE.