Ace Your ECSAv10 ECSA Exam

EC-Council Certified Security Analyst (ECSA) v10 : Penetration Testing Questions and Answers

Question 25

Which of the following is a framework of open standards developed by the Internet Engineering Task Force (IETF) that provides secure transmission of the sensitive data over an unprotected medium, such as the Internet?

Options:

DNSSEC

Netsec

IKE

IPsec

Question 26

You work as a penetration tester for Hammond Security Consultants. You are currently working on a contract for the state government of California. Your next step is to initiate a DoS attack on their network. Why would you want to initiate a DoS attack on a system you are testing?

Options:

Use attack as a launching point to penetrate deeper into the network

Demonstrate that no system can be protected against DoS attacks

List weak points on their network

Show outdated equipment so it can be replaced

Question 27

Which one of the following acts related to the information security in the US fix the responsibility of management for establishing and maintaining an adequate internal control structure and procedures for financial reporting?

Options:

California SB 1386

Sarbanes-Oxley 2002

Gramm-Leach-Bliley Act (GLBA)

USA Patriot Act 2001

Question 28

DNS information records provide important data about:

Options:

Phone and Fax Numbers

Location and Type of Servers

Agents Providing Service to Company Staff

New Customer

Black Friday Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

EC-Council Certified Security Analyst (ECSA) v10 : Penetration Testing Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

CompTIA

Fortinet

Microsoft

Salesforce