Exam2pass
0 items Sign In or Register
  • Home
  • IT Exams
  • Guarantee
  • FAQs
  • Reviews
  • Contact Us
  • Demo
Exam2pass > EC-COUNCIL > EC-COUNCIL Certifications > 412-79V10 > 412-79V10 Online Practice Questions and Answers

412-79V10 Online Practice Questions and Answers

Questions 4

In a TCP packet filtering firewall, traffic is filtered based on specified session rules, such as when a session is initiated by a recognized computer.

Identify the level up to which the unknown traffic is allowed into the network stack.

A. Level 5 ?Application

B. Level 2 ?Data Link

C. Level 4 ?TCP

D. Level 3 ?Internet Protocol (IP)

Buy Now

Correct Answer: D

Reference: http://books.google.com.pk/books?id=KPjLAyA7HgoCandpg=PA208andlpg=PA208anddq=TCP+p acket+filtering +firewall+level+up+to+which+the+unknown+traffic+is+allowed+into+the+net work +stackandsource=blandots=zRrbchVYngandsig=q5G3T8lggTfAMNRkL7Kp0SRslHUandhl=enand sa=Xandei=5PUeVLSbC8TmaMzrgZgCandved=0CBsQ6AEwAA#v=onepageandq=TCP%20pack et%20filtering %20firewall%20level%20up%20to%20which%20the%20unknown%20traffic %20is%20allowed%20into% 20the%20network%20stackandf=false

Questions 5

Which of the following protocols cannot be used to filter VoIP traffic?

A. Media Gateway Control Protocol (MGCP)

B. Real-time Transport Control Protocol (RTCP)

C. Session Description Protocol (SDP)

D. Real-Time Publish Subscribe (RTPS)

Buy Now

Correct Answer: D

Questions 6

Which of the following is NOT generally included in a quote for penetration testing services?

A. Type of testing carried out

B. Type of testers involved

C. Budget required

D. Expected timescale required to finish the project

Buy Now

Correct Answer: B

Questions 7

John, the penetration testing manager in a pen testing firm, needs to prepare a pen testing pricing report for a client.

Which of the following factors does he need to consider while preparing the pen testing pricing report?

A. Number of employees in the client organization

B. Complete structure of the organization

C. Number of client computers to be tested and resources required to perform a pen test

D. Number of servers available in the client organization

Buy Now

Correct Answer: C

Questions 8

The Internet is a giant database where people store some of their most private information on the cloud, trusting that the service provider can keep it all safe. Trojans, Viruses, DoS attacks, website defacement, lost computers, accidental publishing, and more have all been sources of major leaks over the last 15 years.

What is the biggest source of data leaks in organizations today?

A. Weak passwords and lack of identity management

B. Insufficient IT security budget

C. Rogue employees and insider attacks

D. Vulnerabilities, risks, and threats facing Web sites

Buy Now

Correct Answer: C

Questions 9

Due to illegal inputs, various types of TCP stacks respond in a different manner. Some IDSs do not take into account the TCP protocol's urgency feature, which could allow testers to evade the IDS.

Penetration tester needs to try different combinations of TCP flags (e.g. none, SYN/FIN, SYN/RST, SYN/ FIN/ACK, SYN/RST/ACK, and All Flags) to test the IDS.

Which of the following TCP flag combinations combines the problem of initiation, midstream, and termination flags with the PSH and URG?

A. SYN/RST/ACK

B. SYN/FIN/ACK

C. SYN/FIN

D. All Flags

Buy Now

Correct Answer: D

Reference:

http://books.google.com.pk/books?id=tUCumJot0ocCandpg=PA63andlpg=PA63anddq=TCP+flag +combinations

+combines+the+problem+of+initiation,+midstream,+and+termination+flags+ with+the+PSH+and

+URGandsource=blandots=mIGSXBIi15andsig=WMnXlEChVSU4RhK65W_V

3tzNjnsandhl=enandsa=Xandei=H7AfVJCtLaufygO1v4DQDgandved=0CBsQ6AEwAA#v=onepageand q=TCP%

20flag%20combinations%20combines%20the%20problem%20of%20initiation%2 C%20midstream%2C%

20and%20termination%20flags%20with%20the%20PSH%20and% 20URGandf=false (see the highlighted

sentence in Table 3-1 at the end of the page)

Questions 10

You work as an IT security auditor hired by a law firm in Boston. You have been assigned the responsibility to audit the client for security risks. When assessing the risk to the clients network, what step should you take first?

A. Analyzing, categorizing and prioritizing resources

B. Evaluating the existing perimeter and internal security

C. Checking for a written security policy

D. Analyzing the use of existing management and control architecture

Buy Now

Correct Answer: C

Questions 11

Which one of the following commands is used to search one of more files for a specific pattern and it helps in organizing the firewall log files?

A. grpck

B. grep

C. gpgv

D. gprn

Buy Now

Correct Answer: B

Questions 12

One needs to run "Scan Server Configuration" tool to allow a remote connection to Nessus from the remote Nessus clients. This tool allows the port and bound interface of the Nessus daemon to be configured. By default, the Nessus daemon listens to connections on which one of the following?

A. Localhost (127.0.0.1) and port 1241

B. Localhost (127.0.0.1) and port 1240

C. Localhost (127.0.0.1) and port 1246

D. Localhost (127.0.0.0) and port 1243

Buy Now

Correct Answer: A

Questions 13

Snort, an open source network-based intrusion detection sensor, is the most widely installed NIDS in the world. It can be configured to run in the four modes. Which one of the following modes reads the packets off the network and displays them in a continuous stream on the console (screen)?

A. Packet Sniffer Mode

B. Packet Logger Mode

C. Network Intrusion Detection System Mode

D. Inline Mode

Buy Now

Correct Answer: A

Exam Code: 412-79V10
Exam Name: EC-Council Certified Security Analyst (ECSA) V10
Last Update: Jul 01, 2026
Questions: 201

PDF (Q&A)

$45.99
ADD TO CART

VCE

$49.99
ADD TO CART

PDF + VCE

$59.99
ADD TO CART

Exam2Pass----The Most Reliable Exam Preparation Assistance

There are tens of thousands of certification exam dumps provided on the internet. And how to choose the most reliable one among them is the first problem one certification candidate should face. Exam2Pass provide a shot cut to pass the exam and get the certification. If you need help on any questions or any Exam2Pass exam PDF and VCE simulators, customer support team is ready to help at any time when required.

Home | Guarantee & Policy |  Privacy & Policy |  Terms & Conditions |  How to buy |  FAQs |  About Us |  Contact Us |  Demo |  Reviews

2026 Copyright @ exam2pass.com All trademarks are the property of their respective vendors. We are not associated with any of them.