[2024年10月21日] 最新のECSS試験の的確なEC-Council Certified Security Specialist (ECSSv10)のPDF問題 [Q40-Q56]

Share

[2024年10月21日] 最新のECSS試験の的確なEC-Council Certified Security Specialist (ECSSv10)のPDF問題

ECSS試験問題を練習するならFast2test顕著なEC-Council Certified Security Specialist (ECSSv10)試験練習問題集

質問 # 40
Which of the following tools provides a great solution for auditing and testing the recognition and response capabilities of the corporate security defenses?

  • A. IPSentry
  • B. F-Secure
  • C. Burp Suite
  • D. Traffic IQ Professional

正解:D


質問 # 41
Which of the following is used to authenticate asymmetric keys?

  • A. Demilitarized zone (DMZ)
  • B. MAC Address
  • C. Password
  • D. Digital signature

正解:D


質問 # 42
Which of the following statements are true about Public-key cryptography?
Each correct answer represents a complete solution. Choose two.

  • A. The secret key can encrypt a message, and anyone with the public key can decrypt it.
  • B. Data encrypted by the public key can only be decrypted by the secret key.
  • C. Data encrypted with the secret key can only be decrypted by another secret key.
  • D. The distinguishing technique used in public key-private key cryptography is the use of symmetric key algorithms.

正解:A、B


質問 # 43
By gaining full control of router, hackers often acquire full control of the network. Which of the following methods are commonly used to attack Routers?
Each correct answer represents a complete solution. Choose all that apply.

  • A. By launching Social Engineering attack
  • B. Route table poisoning
  • C. By launching Sequence++ attack
  • D. By launching Max Age attack

正解:B、C、D


質問 # 44
Which of the following honeypots is a low-interaction honeypot and is used by companies or corporations for capturing limited information about malicious hackers?

  • A. Research honeypot
  • B. Production honeypot
  • C. Honeynet
  • D. Honeyfarm

正解:B


質問 # 45
Which of the following protocols allows a service to authenticate the identity of a user without needing to see a password?

  • A. SMTP
  • B. Kerberos
  • C. ICMP
  • D. TCP/IP

正解:B


質問 # 46
Sarah was accessing confidential office files from a remote location via her personal computer connected to the public Internet. Accidentally, a malicious file was downloaded onto Sarah's computer without her knowledge. This download might be due to the free Internet access and the absence of network defense solutions.
Identify the Internet access policy demonstrated in the above scenario.

  • A. Prudent policy
  • B. Permissive policy
  • C. Promiscuous policy
  • D. Paranoid policy

正解:B

解説:
In the given scenario, Sarah's personal computer connected to the public Internet allowed a malicious file to be downloaded without her knowledge. This situation reflects a permissive policy, where unrestricted access to the Internet is allowed, potentially leading to security risks. References: EC-Council Certified Security Specialist (E|CSS) documents and study guide .


質問 # 47
Which of the following proxy servers is also referred to as transparent proxies or forced proxies?

  • A. Reverse proxy server
  • B. Anonymous proxy server
  • C. Intercepting proxy server
  • D. Tunneling proxy server

正解:C


質問 # 48
You work as the Network Administrator for McNeil Inc. The company has a Linux-based network.
You are working as a root user on Red Hat operating system. You are currently running a program named My_program. You are getting some error messages while executing the program. You want to redirect these error messages to a file named file2 rather than being displayed on the screen.
Which of the following tools should you use to accomplish the task?

  • A. My_program 2> file2
  • B. My_program >> file2
  • C. My_program > file2
  • D. My_program 2>> file2

正解:A


質問 # 49
Bob. a network specialist in an organization, is attempting to identify malicious activities in the network. In this process. Bob analyzed specific data that provided him a summary of a conversation between two network devices, including a source IP and source port, a destination IP and destination port, the duration of the conversation, and the information shared during the conversation.
Which of the following types of network-based evidence was collected by Bob in the above scenario?

  • A. Full content data
  • B. Session data
  • C. Alert data
  • D. Statistical data

正解:B

解説:
In the scenario described, Bob collected data that summarizes a conversation between two network devices.
This type of data typically includes the source and destination IP addresses and ports, the duration of the conversation, and the information exchanged during the session. This aligns with the definition of session data, which is a type of network-based evidence that provides an overview of communication sessions between devices without including the actual content of the data packets.
References: The EC-Council Certified Security Specialist (E|CSS) materials cover various types of network-based evidence as part of the Network Defense, Ethical Hacking, and Digital Forensics modules.
Session data is specifically discussed in the context of network security monitoring and analysis, where it is used to track and summarize network interactions.


質問 # 50
Which of the following protocols of the TCP/IP suite is used in the application layer of the OSI model?

  • A. DCAP
  • B. ARP
  • C. Telnet
  • D. OSPF

正解:C


質問 # 51
The IT administrator wants to implement a stronger security policy. What are the four most important security priorities for PassGuide Software Systems Pvt. Ltd.? (Click the Exhibit button on the toolbar to see the case study.)

  • A. Protecting employee data on portable computers.
  • B. Ensuring secure authentication.
  • C. Preventing unauthorized network access.
  • D. Implementing Certificate services on Texas office.
  • E. Preventing denial-of-service attacks.
  • F. Providing two-factor authentication.
  • G. Providing secure communications between Washington and the headquarters office.
  • H. Providing secure communications between the overseas office and the headquarters.

正解:A、B、C、H


質問 # 52
Which of the following malicious software is used by several advertising websites for downloading and displaying advertisements in the Web browser without user permission?

  • A. Adware
  • B. Blended threat
  • C. Trojan horse
  • D. Worm

正解:A


質問 # 53
You are using the dsniff tool to intercept communications between two entities and establish credentials with both sides of the connections. These entities do not notice that you were retrieving the information between these two. Which of the following attacks are you performing?

  • A. DoS
  • B. Man-in-the-middle
  • C. Session hijacking
  • D. ARP poisoning

正解:B


質問 # 54
Roxanne is a professional hacker hired by an agency to disrupt the business services of their rival company.
Roxanne employed a special type of malware that consumes a server's memory and network bandwidth when triggered. Consequently, the target server is overloaded and stops responding.
Identify the type of malware Roxanne has used in the above scenario.

  • A. Spyware
  • B. Armored virus
  • C. worm
  • D. Rootkit

正解:C

解説:
In the scenario described, the malware that consumes a server's memory and network bandwidth, causing the server to overload and stop responding, is typically a worm. Worms are a type of malware that replicate themselves and spread to other computers across a network, often consuming significant system resources and network bandwidth in the process. Unlike viruses, which require human action to spread, worms typically exploit vulnerabilities or use automated methods to propagate without the need for user intervention.
References: This information is based on general cybersecurity principles and the common characteristics of different types of malware. For detailed references, please consult the official EC-Council Certified Security Specialist (E|CSS) study materials or other authoritative cybersecurity resources.


質問 # 55
Below are the elements included in the order of volatility for a typical computing system as per the RFC 3227 guidelines for evidence collection and archiving.
l.Archival media
2.Remote logging and monitoring data related to the target system
3.Routing table, process table, kernel statistics, and memory
4.Registers and processor cache
5-Physical configuration and network topology
6.Disk or other storage media
7.Temporary system files
Identify the correct sequence of order of volatility from the most to least volatile for a typical system.

  • A. 2->1->4-->3-->6-->5->7
  • B. 4.>3 >7>6.>2-.>5- >l
  • C. 7->5- >4->3 ->2 >6 >1
  • D. 4 >3 >7->l >2 ->5->6

正解:B

解説:
This order correctly reflects the volatility of data from most volatile (disappears quickly) to least volatile (most persistent):
* Registers and processor cache: These contain the CPU's most immediate working data, changing rapidly.
* Routing table, process table, kernel statistics, and memory (RAM): These hold system state information, but can be modified by running processes or events.
* Temporary system files: Designed to be transient, but may persist for some time depending on usage patterns.
* Disk or other storage media: Holds data intended to persist, but is subject to modification.
* Remote logging and monitoring data related to the target system: Often stored off-site, less volatile than local data.
* Physical configuration and network topology: Relatively static information about the system's setup.
* Archival media: Designed for long-term storage, changes to this data are intentional and infrequent.


質問 # 56
......

試験問題と解答はECSS学習ガイド問題解答:https://jp.fast2test.com/ECSS-premium-file.html

練習用ECSSにはFast2test顕著な問題集はあなたをEC-Council Certified Security Specialist (ECSSv10)試験合格させます合格させる:https://drive.google.com/open?id=1EaiiLInTI3XZcNnetTXzRUbKcYm55P6Z


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어