ECSAv10 EC-Council Exam Questions and Free Practice Test

Question 13

Identify the policy that defines the standards for the organizational network connectivity and security standards for computers that are connected in the organizational network.

A. Information-Protection Policy

B. Special-Access Policy

C. Remote-Access Policy

D. Acceptable-Use Policy

Correct Answer:C

Question 14

You are assisting a Department of Defense contract company to become compliant with the stringent
security policies set by the DoD. One such strict rule is that firewalls must only allow incoming connections that were first initiated by internal computers.
What type of firewall must you implement to abide by this policy?

A. Circuit-level proxy firewall

B. Packet filtering firewall

C. Application-level proxy firewall

D. Statefull firewall

Correct Answer:D

Question 15

You have compromised a lower-level administrator account on an Active Directory network of a small company in Dallas, Texas. You discover Domain Controllers through enumeration. You connect to one of the Domain Controllers on port 389 using Idp.exe.
What are you trying to accomplish here?

A. Poison the DNS records with false records

B. Enumerate MX and A records from DNS

C. Establish a remote connection to the Domain Controller

D. Enumerate domain user accounts and built-in groups

Correct Answer:D

Question 16

Why is a legal agreement important to have before launching a penetration test?
ECSAv10 dumps exhibit

A. Guarantees your consultant fees

B. Allows you to perform a penetration test without the knowledge and consent of the organization's upper management

C. It establishes the legality of the penetration test by documenting the scope of the project and the consent of the company.

D. It is important to ensure that the target organization has implemented mandatory security policies

Correct Answer:C

Question 17

One needs to run “Scan Server Configuration” tool to allow a remote connection to Nessus from the remote Nessus clients. This tool allows the port and bound interface of the Nessus daemon to be configured.
By default, the Nessus daemon listens to connections on which one of the following?

A. Localhost (127.0.0.1) and port 1241

B. Localhost (127.0.0.1) and port 1240

C. Localhost (127.0.0.1) and port 1246

D. Localhost (127.0.0.0) and port 1243

Correct Answer:A

Question 18

Identify the framework that comprises of five levels to guide agency assessment of their security programs and assist in prioritizing efforts for improvement:

A. Information System Security Assessment Framework (ISSAF)

B. Microsoft Internet Security Framework

C. Nortells Unified Security Framework

D. Federal Information Technology Security Assessment Framework

Correct Answer:D

START ECSAv10 EXAM