ECSAv10 実際試験問題と解答 - 模擬練習 - 受験自信を増やす

Question No : 1
Frank is a senior security analyst at Roger Data Systems Inc. The company asked him to perform a database penetration test on its client network to determine whether the database is vulnerable to attacks or not. The client did not reveal any information about the database they are using. As a pen tester Frank knows that each database runs on its own default port. So he started database port scanning using the Nmap tool and tried different commands using default port numbers and succeeded with the following command. nmap -sU Cp 1521 <client ip-address> Identify the database used by the company?

A.MySQL
B.Microsoft SQL Server
C.SQLite
D.Oracle

正解:

Question No : 2
JUA Networking Solutions is a group of certified ethical hacking professionals with a large client base. Stanley works as a penetrating tester at this firm. Future group approached JUA for an internal pen test. Stanley performs various penetration testing test sequences and gains information about the network resources and shares, routing tables, audit and service settings, SNMP and DNS details, machine names, users and groups, applications and banners. Identify the technique that gave Stanley this information.

A.Enumeration
B.Sniffing
C.Ping sweeps
D.Port scanning

正解:

Question No : 3
Ross performs security test on his company’s network assets and creates a detailed report of all the findings. In his report, he clearly explains the methodological approach that he has followed in finding the loopholes in the network.
However, his report does not mention about the security gaps that can be exploited or the amount of damage that may result from the successful exploitation of the loopholes. The report does not even mention about the remediation steps that are to be taken to secure the network.
What is the type of test that Ross has performed?

A.Penetration testing
B.Vulnerability assessment
C.Risk assessment
D.Security audit

正解:

Question No : 4
You have implemented DNSSEC on your primary internal DNS server to protect it from various DNS attacks. Network users complained they are not able to resolve domain names to IP addresses at certain times.
What could be the probable reason?

A.DNSSEC does not provide protection against Denial of Service (DoS) attacks
B.DNSSEC does not guarantee authenticity of a DNS response during an attack
C.DNSSEC does not protect the integrity of a DNS response
D.DNSSEC does not guarantee the non-existence of a domain name or type

正解:

Question No : 5
The penetration testers are required to follow predefined standard frameworks in making penetration testing reporting formats.
Which of the following standards does NOT follow the commonly used methodologies in penetration testing?

A.National Institute of Standards and Technology (NIST)
B.Information Systems Security Assessment Framework (ISSAF)
C.Open Web Application Security Project (OWASP)
D.American Society for Testing Materials (ASTM)

正解:

Question No : 6
Jason is a penetration tester, and after completing the initial penetration test, he wanted to create a final penetration test report that consists of all activities performed throughout the penetration testing process.
Before creating the final penetration testing report, which of the following reports should Jason prepare in order to verify if any crucial information is missed from the report?

A.Activity report
B.Host report
C.User report
D.Draft report

正解:

Question No : 7
AB Cloud services provide virtual platform services for the users in addition to storage. The company offers users with APIs, core connectivity and delivery, abstraction and hardware as part of the service.
What is the name of the service AB Cloud services offer?

A.Web Application Services
B.Platform as a service (PaaS)
C.Infrastructure as a service (IaaS)
D.Software as a service (SaaS)

正解:

Question No : 8
In delivering penetration testing report, which of the following steps should NOT be followed?

A.Always send the report by email or CD-ROM
B.Always deliver the report to approved stakeholders in the company in person
C.Always ask for a signed acknowledgment after submitting the report
D.Report must be presented in a PDF format, unless requested otherwise

正解:

Question No : 9
Rebecca, a security analyst, was auditing the network in her organization. During the scan, she found a service running on a remote host, which helped her to enumerate information related to user accounts, network interfaces, network routing and TCP connections.
Which among the following services allowed Rebecca to enumerate the information?

A.NTP
B.SNMP
C.SMPT
D.SMB

正解:

Question No : 10
Which port does DHCP use for client connections?

A.UDP port 67
B.UDP port 68
C.UDP port 69
D.UDP port 66

正解:

Question No : 11
What is the purpose of the Traceroute command?

A.For extracting information about the network topology, trusted routers, and firewall locations
B.For extracting information about closed ports
C.For extracting information about the server functioning
D.For extracting information about opened ports

正解:

Question No : 12
Moses, a professional hacker, attempts to overwhelm the target victim computer by transmitting TCP connection requests faster than the computer can process them. He started sending multiple SYN packets of size between 800 and 900 bytes with spoofed source addresses and port numbers. The main intention of Moses behind this attack is to exhaust the server resources and saturate the network of the target organization.
Identify the type of attack being performed by Moses?

A.VTP attack
B.DoS attack
C.ARP attack
D.HSRP attack

正解:

Question No : 13
Frank is performing a wireless pen testing for an organization. Using different wireless attack techniques, he successfully cracked the WPA-PSK key. He is trying to connect to the wireless network using the WPAPSK key.
However, he is unable to connect to the WLAN as the target is using MAC filtering.
What would be the easiest way for Frank to circumvent this and connect to the WLAN?

A.Attempt to crack the WEP key
B.Crack the Wi-Fi router login credentials and disable the ACL
C.Sniff traffic off the WLAN and spoof his MAC address to the one that he has captured
D.Use deauth command from aircrack-ng to deauthenticate a connected user and hijack the session

正解:

Question No : 14
Fred, who owns a company called Skyfeit Ltd., wants to test the enterprise network for presence of any vulnerabilities and loopholes. He employed a third-party penetration testing team and asked them to perform the penetration testing over his organizational infrastructure. Fred briefed the team about his network infrastructure and provided them with a set of IP addresses on which they can perform tests. He gave them strict instruction not to perform DDoS attacks or access the domain servers in the company. He also instructed them that they can carry out the penetration tests even when the regular employees are on duty since they lack the clue about the happenings.
However, he asked the team to take care that no interruption in business continuity should be caused. He also informed the penetration testing team that they get only 1 month to carry out the test and submit the report.
What kind of penetration test did Fred ask the third-party penetration testing team to perform?

A.Announced testing
B.Blind testing
C.Grey-Box testing
D.Unannounced testing

正解:

Question No : 15
Christen is a renowned SQL penetration testing specialist in the US. A multinational ecommerce company hired him to check for vulnerabilities in the SQL database. Christen wanted to perform SQL penetration testing on the database by entering a massive amount of data to crash the web application of the company and discover coding errors that may lead to a SQL injection attack.
Which of the following testing techniques is Christen using?

A.Fuzz Testing
B.Stored Procedure Injection
C.Union Exploitation
D.Automated Exploitation

正解:

EC-Council ECSAv10 問題練習