Exam Number/Code: ec0-479
Exam Name: EC-Council Certified Security Analyst (ECSA)
Testking ec0-479 Exam will provide you with exam simulation questions and actual answers that reflect the actual exam

Preparing for the Testking ec0-479 exam? Searching ec0-479 Test Questions, ec0-479 Practice Exam, ec0-479 Braindumps?
ec0-479 practice exam covers all the practice test objectives to pass ec0-479 exam.

Pass your exam at first attempt with our Testking ec0-479study guide, ec0-479 Braindumps, As well Audio exam, Realistic

Practice Labs, and Interactive Testing Engine.

Our Testking practice test covers the information associated with each ec0-479 exam topics in details and includes information

found in no other practice test sites on the web.

Our challenging questions with Correct Answers built to simulate the actual exam. Unlimited, FREE auto-updates so you’re

never behind on any topic. The whole package comes as an automatic download so there’s no waiting or shipping. Our most

questions and answers along with explanations. Our practice test will determine you to take your ec0-479 certification exam

and pass the official exam on your first try, guaranteed

Now guaranteed Testking ec0-479 exam training is available in various formats to best suit your needs and learning style.

Whether you are a hands-on tactile learner, visually or even a textbook training veteran, Real-Exams has the ec0-479 pdf vce

format resources that will enable you to pass your ec0-479 test with flying colors.

Comprehensive questions with complete explanations about actualtests ec0-479 exam
download ec0-479 exam questions accompanied by exhibits
Verified Answers Researched by Industry Experts and almost 100% correct
ec0-479 exam questions updated on regular basis

Question: 1
When you are running a vulnerability scan on a network and the IDS cuts off your connection,
what type of IDS is being used?
A. Passive IDS
B. Active IDS
C. Progressive IDS
D. NIPS
Answer: B
Question: 2
Simon is a former employee of Trinitron XML Inc. He feels he was wrongly terminated and wants
to hack into his former company’s network. Since Simon remembers some of the server names,
he attempts to run the axfr and ixfr commands using DIG. What is Simon trying to accomplish
here?
A. Send DOS commands to crash the DNS servers
B. Perform DNS poisoning
C. Perform a zone transfer
D. Enumerate all the users in the domain
Answer: C
Question: 3
What will the following command produce on a website login page?
SELECT email, passwd, login_id, full_name
FROM members
WHERE email = ‘someone@somehwere.com’; DROP TABLE members; –’
A. Deletes the entire members table
B. Inserts the Error! Reference source not found. email address into the members table
C. Retrieves the password for the first user in the members table
D. This command will not produce anything since the syntax is incorrect
Answer: A
Question: 4
You setup SNMP in multiple offices of your company. Your SNMP software manager is not
receiving data from other offices like it is for your main office. You suspect that firewall changes
are to blame. What ports should you open for SNMP to work through Firewalls (Select 2)
A. 162
B. 161
C. 163
D. 160
Answer: A, B
Question: 5
You are carrying out the last round of testing for your new website before it goes live. The website
has many dynamic pages and connects to a SQL backend that accesses your product inventory
in a database. You come across a web security site that recommends inputting the following code
into a search field on web pages to check for vulnerabilities:

When you type this and click on search, you receive a pop-up window that says:
“This is a test.”
What is the result of this test?
A. Your website is vulnerable to CSS
B. Your website is not vulnerable
C. Your website is vulnerable to SQL injection
D. Your website is vulnerable to web bugs
Answer: A
Question: 6
If an attacker’s computer sends an IPID of 31400 to a zombie computer on an open port in IDLE
scanning, what will be the response?
A. The zombie will not send a response
B. 31402
C. 31399
D. 31401
Answer: D
Question: 7
Michael works for Kimball Construction Company as senior security analyst. As part of yearly
security audit, Michael scans his network for vulnerabilities. Using Nmap, Michael conducts
XMAS scan and most of the ports scanned do not give a response. In what state are these ports?
A. Closed
B. Open
C. Stealth
D. Filtered
Answer: B
Question: 8
You are assisting a Department of Defense contract company to become compliant with the
stringent security policies set by the DoD. One such strict rule is that firewalls must only allow
incoming connections that were first initiated by internal computers. What type of firewall must
you implement to abide by this policy?
A. Packet filtering firewall
B. Circuit-level proxy firewall
C. Application-level proxy firewall
D. Statefull firewall
Answer: D
Question: 9
Jessica works as systems administrator for a large electronics firm. She wants to scan her
network quickly to detect live hosts by using ICMP ECHO Requests. What type of scan is Jessica
going to perform?
A. Tracert
B. Smurf scan
C. Ping trace
D. ICMP ping sweep
Answer: D
Question: 10
You work as an IT security auditor hired by a law firm in Boston to test whether you can gain
access to sensitive information about the company clients. You have rummaged through their
trash and found very little information. You do not want to set off any alarms on their network, so
you plan on performing passive foot printing against their Web servers. What tool should you
use?
A. Ping sweep
B. Nmap
C. Netcraft
D. Dig
Answer: C
Question: 11
You are a security analyst performing a penetration tests for a company in the Midwest. After
some initial reconnaissance, you discover the IP addresses of some Cisco routers used by the
company. You type in the following URL that includes the IP address of one of the routers:

http://172.168.4.131/level/99/exec/show/config

After typing in this URL, you are presented with the entire configuration file for that router. What
have you discovered?
A. HTTP Configuration Arbitrary Administrative Access Vulnerability
B. HTML Configuration Arbitrary Administrative Access Vulnerability
C. Cisco IOS Arbitrary Administrative Access Online Vulnerability
D. URL Obfuscation Arbitrary Administrative Access Vulnerability
Answer: A
Question: 12
What is the following command trying to accomplish?
C:\> nmap -sU -p445 192.168.0.0/24
A. Verify that UDP port 445 is open for the 192.168.0.0 network
B. Verify that TCP port 445 is open for the 192.168.0.0 network
C. Verify that NETBIOS is running for the 192.168.0.0 network
D. Verify that UDP port 445 is closed for the 192.168.0.0 network
Answer: A

Testking EC0-479
TK Questions&Answers(Q & As with Expert Explanations)? 76 Q&A
Updated? 18/03/2008

Free Down: Testking ec0-479
Free Down: Pass4sure ec0-479

Dowload PassGuide Practice Test Questions,Training Materials

1. Free Testking EC-Council EC0-350
2. Free Testking 117-151 certification exam download
3. Free free testking checkpoint CCSE 156-310 exam
4. Free Testking Microsoft exams test download
5. Free free testking Checkpoint CCSA CP 2000
6. Free Testking HP HP0-380
7. Free testking ec-council E-Commerce Architect
8. Free Testking EC-Council EC0-349
9. Free testking ec-council 312-50
10. Free News Testking EC-Council exams
11. Free testking ec-council Certified Ethical Hacker
12. Free Testking EC-Council ec0-232