EC-Council Certified Security Analyst (ECSA) v9 412-79V9 Dumps in PDF

Free EC-Council 412-79V9 Real Questions (page: 3)

You are conducting a penetration test against a company and you would like to know a personal email address of John, a crucial employee. What is the fastest, cheapest way to find out John's email address.

  1. Call his wife and ask for his personal email account
  2. Call a receptionist and ask for John Stevens' personal email account
  3. Search in Google for his personal email ID
  4. Send an email to John stating that you cannot send him an important spreadsheet attachment file to his business email account and ask him if he has any other email accounts

Answer(s): D



NTP protocol is used to synchronize the system clocks of computers with a remote time server or time source over a network. Which one of the following ports is used by NTP as its transport layer?

  1. TCP port 152
  2. UDP port 177
  3. UDP port 123
  4. TCP port 113

Answer(s): C



A framework is a fundamental structure used to support and resolve complex issues. The framework that delivers an efficient set of technologies in order to develop applications which are more secure in using Internet and Intranet is:

  1. Microsoft Internet Security Framework
  2. Information System Security Assessment Framework (ISSAF)
  3. Bell Labs Network Security Framework
  4. The IBM Security Framework

Answer(s): A



In which of the following IDS evasion techniques does IDS reject the packets that an end system accepts?

  1. IPS evasion technique
  2. IDS evasion technique
  3. UDP evasion technique
  4. TTL evasion technique

Answer(s): D


Reference:

http://is.muni.cz/th/172999/fi_m/MT_Bukac.pdf (page 24)



Which of the following protocol's traffic is captured by using the filter tcp.port==3389 in the Wireshark tool?

  1. Reverse Gossip Transport Protocol (RGTP)
  2. Real-time Transport Protocol (RTP)
  3. Remote Desktop Protocol (RDP)
  4. Session Initiation Protocol (SIP)

Answer(s): C


Reference:

http://wiki.wireshark.org/RDP



Which among the following information is not furnished by the Rules of Engagement (ROE) document?

  1. Techniques for data collection from systems upon termination of the test
  2. Techniques for data exclusion from systems upon termination of the test
  3. Details on how data should be transmitted during and after the test
  4. Details on how organizational data is treated throughout and after the test

Answer(s): A



Metasploit framework in an open source platform for vulnerability research, development, and penetration testing. Which one of the following metasploit options is used to exploit multiple systems at once?

  1. NinjaDontKill
  2. NinjaHost
  3. RandomNops
  4. EnablePython

Answer(s): A



Which one of the following acts makes reputational risk of poor security a reality because it requires public disclosure of any security breach that involves personal information if it is unencrypted or if it is reasonably believed that the information has been acquired by an unauthorized person?

  1. California SB 1386
  2. Sarbanes-Oxley 2002
  3. Gramm-Leach-Bliley Act (GLBA)
  4. USA Patriot Act 2001

Answer(s): A



Share your comments for EC-Council 412-79V9 exam with other users:

B
Blessious Phiri
8/13/2023 10:32:00 AM

very explainable

M
m7md ibrahim
5/26/2023 6:21:00 PM

i think answer of q 462 is variance analysis

T
Tehu
5/25/2023 12:25:00 PM

hi i need see questions

A
Ashfaq Nasir
1/17/2024 1:19:00 AM

best study material for exam

R
Roberto
11/27/2023 12:33:00 AM

very interesting repository

N
Nale
9/18/2023 1:51:00 PM

american history 1

T
Tanvi
9/27/2023 4:02:00 AM

good level of questions

B
Boopathy
8/17/2023 1:03:00 AM

i need this dump kindly upload it

S
s_123
8/12/2023 4:28:00 PM

do we need c# coding to be az204 certified

B
Blessious Phiri
8/15/2023 3:38:00 PM

excellent topics covered

M
Manasa
12/5/2023 3:15:00 AM

are these really financial cloud questions and answers, seems these are basic admin question and answers

N
Not Robot
5/14/2023 5:33:00 PM

are these comments real

K
kriah
9/4/2023 10:44:00 PM

please upload the latest dumps

E
ed
12/17/2023 1:41:00 PM

a company runs its workloads on premises. the company wants to forecast the cost of running a large application on aws. which aws service or tool can the company use to obtain this information? pricing calculator ... the aws pricing calculator is primarily used for estimating future costs

M
Muru
12/29/2023 10:23:00 AM

looks interesting

T
Tech Lady
10/17/2023 12:36:00 PM

thanks! that’s amazing

M
Mike
8/20/2023 5:12:00 PM

the exam dumps are helping me get a solid foundation on the practical techniques and practices needed to be successful in the auditing world.

N
Nobody
9/18/2023 6:35:00 PM

q 14 should be dmz sever1 and notepad.exe why does note pad have a 443 connection

M
Muhammad Rawish Siddiqui
12/4/2023 12:17:00 PM

question # 108, correct answers are business growth and risk reduction.

E
Emmah
7/29/2023 9:59:00 AM

are these valid chfi questions

M
Mort
10/19/2023 7:09:00 PM

question: 162 should be dlp (b)

E
Eknath
10/4/2023 1:21:00 AM

good exam questions

N
Nizam
6/16/2023 7:29:00 AM

I have to say this is really close to real exam. Passed my exam with this.

P
poran
11/20/2023 4:43:00 AM

good analytics question

A
Antony
11/23/2023 11:36:00 AM

this looks accurate

E
Ethan
8/23/2023 12:52:00 AM

question 46, the answer should be data "virtualization" (not visualization).

N
nSiva
9/22/2023 5:58:00 AM

its useful.

R
Ranveer
7/26/2023 7:26:00 PM

Pass this exam 3 days ago. The PDF version and the Xengine App is quite useful.

S
Sanjay
8/15/2023 10:22:00 AM

informative for me.

T
Tom
12/12/2023 8:53:00 PM

question 134s answer shoule be "dlp"

A
Alex
11/7/2023 11:02:00 AM

in 72 the answer must be [sys_user_has_role] table.

F
Finn
5/4/2023 10:21:00 PM

i appreciated the mix of multiple-choice and short answer questions. i passed my exam this morning.

A
AJ
7/13/2023 8:33:00 AM

great to find this website, thanks

C
Curtis Nakawaki
6/29/2023 9:11:00 PM

examination questions seem to be relevant.

AI Tutor 👋 I’m here to help!