최신 EC0-479 무료덤프 - EC-COUNCIL EC-Council Certified Security Analyst(ECSA)

문제1

You are trying to locate Microsoft Outlook Web Access Default Portal using Google search on the Internet. What search string will you use to locate them?

A. intitle:"exchange server"

B. outlook:"search"

C. allinurl:"exchange/logon.asp"

D. locate:"logon page"

정답: C

문제2

During the course of an investigation, you locate evidence that may prove the innocence of the suspect of the investigation. You must maintain an unbiased opinion and be objective in your entire fact finding process. Therefore you report this evidence. This type of evidence is known as:

A. exculpatory evidence

B. Inculpatory evidence

C. mandatory evidence

D. Terrible evidence

정답: A

문제3

After undergoing an external IT audit, George realizes his network is vulnerable to DDoS attacks. What countermeasures could he take to prevent DDoS attacks?

A. Disable direct broadcasts

B. Disable BGP

C. Enable BGP

D. Enable direct broadcasts

정답: A

문제4

How many possible sequence number combinations are there in TCP/IP protocol?

A. 4 billion

B. 32 million

C. 320 billion

D. 1 billion

정답: A

문제5

What header field in the TCP/IP protocol stack involves the hacker exploit known as the Ping of Death?

A. TCP header field

B. ICMP header field

C. UDP header field

D. IP header field

정답: A

문제6

Which of the following should a computer forensics lab used for investigations have?

A. open access

B. an entry log

C. isolation

D. restricted access

정답: D

문제7

When setting up a wireless network with multiple access points, why is it important to set each access point on a different channel?

A. Multiple access points can be set up on the same channel without any issues

B. Avoid cross talk

C. Avoid over-saturation of wireless signals

D. So that the access points will work on different frequencies

정답: B

문제8

Which of the following is NOT a graphics file?

A. Picture1.tga

B. Picture3.nfo

C. Picture4.psd

D. Picture2.bmp

정답: B

문제9

Software firewalls work at which layer of the OSI model?

A. Network

B. Application

C. Data Link

D. Transport

정답: C

문제10

From the following spam mail header, identify the host IP that sent this spam? From [email protected] [email protected] Tue Nov 27 17:27:11 2001 Received: from viruswall.ie.cuhk.edu.hk (viruswall [137.189.96.52]) by eng.ie.cuhk.edu.hk (8.11.6/8.11.6) with ESMTP id fAR9RAP23061 for ; Tue, 27 Nov 2001 17:27:10 +0800 (HKT) Received: from mydomain.com (pcd249020.netvigator.com [203.218.39.20]) by viruswall.ie.cuhk.edu.hk (8.12.1/8.12.1) with SMTP id fAR9QXwZ018431 for ; Tue, 27 Nov 2001 17:26:36 +0800 (HKT) Message-Id: >[email protected]
From: "china hotel web"
To: "Shlam"
Subject: SHANGHAI (HILTON HOTEL) PACKAGE Date: Tue, 27 Nov 2001 17:25:58 +0800 MIME-Version: 1.0 X-Priority: 3 X-MSMail- Priority: Normal Reply-
To: "china hotel web"

A. 203.218.39.50

B. 203.218.39.20

C. 8.12.1.0

D. 137.189.96.52

정답: B

문제11

Michael works for Kimball Construction Company as senior security analyst. As part of yearly security audit, Michael scans his network for vulnerabilities. Using Nmap, Michael conducts XMAS scan and most of the ports scanned do not give a response. In what state are these ports?

A. Filtered

B. Open

C. Stealth

D. Closed

정답: B

문제12

In a computer forensics investigation, what describes the route that evidence takes from the time you find it until the case is closed or goes to court?

A. rules of evidence

B. law of probability

C. policy of separation

D. chain of custody

정답: D

문제13

Click on the Exhibit Button
Paulette works for an IT security consulting company that is currently performing an audit for the firm ACE Unlimited. Paulette's duties include logging on to all the company's network equipment to ensure IOS versions are up-to-date and all the other security settings are as stringent as possible. Paulette presents the following screenshot to her boss so he can inform the client about necessary changes need to be made. From the screenshot, what changes should the client company make?
Exhibit:

A. The banner should include the Cisco tech support contact information as well

B. The banner should have more detail on the version numbers for the network equipment

C. The banner should not state "only authorized IT personnel may proceed"

D. Remove any identifying numbers, names, or version information

정답: D

문제14

You are working for a large clothing manufacturer as a computer forensics investigator and are called in to investigate an unusual case of an employee possibly stealing clothing designs from the company and selling them under a different brand name for a different company. What you discover during the course of the investigation is that the clothing designs are actually original products of the employee and the company has no policy against an employee selling his own designs on his own time. The only thing that you can find that the employee is doing wrong is that his clothing design incorporates the same graphic symbol as that of the company with only the wording in the graphic being different. What area of the law is the employee violating?

A. copyright law

B. brandmark law

C. printright law

D. trademark law

정답: D

문제15

An "idle" system is also referred to as what?

A. Zombie

B. Bot

C. PC not connected to the Internet

D. PC not being used

정답: A

문제16

Why are Linux/Unix based computers better to use than Windows computers for idle scanning?

A. Windows computers are constantly talking

B. Windows computers will not respond to idle scans

C. Linux/Unix computers are constantly talking

D. Linux/Unix computers are easier to compromise

정답: A

문제17

You should make at least how many bit-stream copies of a suspect drive?

A. 4

B. 1

C. 3

D. 2

정답: D

문제18

At what layer of the OSI model do routers function on?

A. 4

B. 1

C. 3

D. 5

정답: C

최신 EC0-479 무료덤프 - EC-COUNCIL EC-Council Certified Security Analyst(ECSA)

우리와 연락하기

유용한 링크

최신 업데이트