In what default directory (fully qualified path) does nmap store scripts?
Answer(s): C
Nmap (Network Mapper) is a network scanning and security auditing tool. Scripts used by Nmap for performing different network discovery and security auditing tasks are stored in /usr/share/nmap/scripts. This directory contains a collection of scripts for NSE (Nmap Scripting Engine), which enables Nmap to perform additional networking tasks, often used for detecting vulnerabilities, misconfigurations, and security-related information about network services.
Nmap documentation, "Nmap Scripting Engine (NSE)".
Which of the registrars contains the information for the domain owners in South America?
LACNIC (Latin American and Caribbean Network Information Centre) is the regional Internet registry for Latin America and parts of the Caribbean. It manages the allocation and registration of Internet number resources (such as IP addresses and AS numbers) within this region and maintains the registry of domain owners in South America.
LACNIC official website, "About LACNIC".
Which of the hacking methodology steps can be used to identify the applications and vendors used?
Answer(s): B
OSINT (Open Source Intelligence) refers to the collection and analysis of information gathered from public, freely available sources to be used in an intelligence context. In the context of hacking methodologies, OSINT can be used to identify applications and vendors employed by a target organization by analyzing publicly available data such as websites, code repositories, social media, and other internet-facing resources.
Michael Bazzell, "Open Source Intelligence Techniques".
Which of the following is a component of an IDS?
Answer(s): A
An Intrusion Detection System (IDS) is designed to monitor network or system activities for malicious activities or policy violations and can perform several functions:Monitor: Observing network traffic and system activities for unusual or suspicious behavior. Detect: Identifying potential security breaches including both known threats and unusual activities that could indicate new threats.Respond: Executing pre-defined actions to address detected threats, which can include alerts or triggering automatic countermeasures.
Cisco Systems, "Intrusion Detection Systems".
Which of the IEC 62443 Security Levels is identified by a cybercrime/hacker target?
IEC 62443 is an international series of standards on Industrial communication networks and system security, specifically related to Industrial Automation and Control Systems (IACS). Within the IEC 62443 standards, Security Level 3 is defined as protection against deliberate or specialized intrusion. It is designed to safeguard against threats from skilled attackers (cybercriminals or hackers) targeting specific processes or operations within the industrial control system.
International Electrotechnical Commission, "IEC 62443 Standards".
Share your comments for EC-Council ICS-SCADA exam with other users:
new to this site but i feel it is good
the correct answer to q8 is b. explanation since the mule app has a dependency, it is necessary to include project modules and dependencies to make sure the app will run successfully on the runtime on any other machine. source code of the component that the mule app is dependent of does not need to be included in the exported jar file, because the source code is not being used while executing an app. compiled code is being used instead.
good questions
Delayed the exam until December 29th.
A and D are True
good one with explanation
This is one of the most useful study guides I have ever used.
Keeping this site free takes real effort. We constantly battle automated scraping and unauthorized content copying. A quick account helps us protect the community and keep the site free.
To continue studying for your ICS-SCADA, please sign in or create a free account.