ECSS Exam Questions

Firewalking is a technique that can be used to gather information about a remote network protected by a firewall. This technique can be used effectively to perform information gath...

Which of the following security protocols are based on the 802.11i standard? Each correct answer represents a complete solution. Choose all that apply.

Which of the following OSI layers is responsible for protocol conversion, data encryption/decryption, and data compression?

concerned about flaws in those applications allowing some attacker to get into your network. What method would be best for finding such flaws?

Which of the following representatives of incident response team takes forensic backups of the systems that are the focus of the incident?

Which of the following statements are true about routers? Each correct answer represents a complete solution. Choose all that apply.

Which of the following types of attacks cannot be prevented by technical measures only?

You work as a Network Administrator for Tech Perfect Inc. The company requires a secure wireless network. To provide security, you are configuring ISA Server 2006 as a firewall. Wh...

Which of the following attacks CANNOT be detected by an Intrusion Detection System (IDS)? Each correct answer represents a complete solution. Choose all that apply.

Which of the following statements best describes a certification authority?

You have just set up a wireless network for customers at a coffee shop. Which of the following are good security measures to implement? Each correct answer represents a complete so...

Linux traffic monitoring tools are used to monitor and quickly detect faults in the network or a system. Which of the following tools are used to monitor traffic of the Linux opera...

John works as an Office Assistant in DataSoft Inc. He has received an e-mail from [email protected] with the following message: The DueSoft Lottery Incorporation This is...

Fill in the blank with the appropriate word ___is software that is a subcategory of malware and refers to unwanted software that performs malicious actions on a user's computer. So...

John works as a professional Ethical Hacker. He has been assigned the project of testing the security of the tool is as follows: Which of the following tools is John using to crack...

Which of the following proxy servers is also referred to as transparent proxies or forced proxies?

Which of the following security policies will you implement to keep safe your data when you connect your Laptop to the office network over IEEE 802.11 WLANs? Each correct answer re...

Which of the following is the first computer virus that was used to infect the boot sector of storage media formatted with the DOS File Allocation Table (FAT) file system?

Which of the following needs to be documented to preserve evidences for presentation in court?

Kerberos is a computer network authentication protocol that allows individuals communicating over a non-secure network to prove their identity to one another in a secure manner. Wh...

Which of the following is used in asymmetric encryption?

Sam, a malicious hacker, targets the electric power grid of Umbrella Inc. and gains access to the electronic control systems. Which of the following types of cybercrime has Sam per...

Maria works as a Desktop Technician for Company Inc. She has received an e-mail from the MN Compensation Office with the following message: Dear Sir/Madam, My name is Edgar Rena, t...

Victor works as a network administrator for DataSecu Inc. He uses a dual firewall Demilitarized Zone (DMZ) to insulate the rest of the network from the portions that is available t...

Which of the following Linux rootkits is installed via stolen SSH keys?

Which of the following is a set of exclusive rights granted by a state to an inventor or his assignee for a fixed period of time in exchange for the disclosure of an invention?

Jason works as a System Administrator for Company Inc. The company has a Windows-based network. Sam, an employee of the company, accidentally changes some of the applications and s...

Victor works as a professional Ethical Hacker for SecureEnet Inc. He has been assigned a job to test an image, in which some secret information is hidden, using Steganography. Vict...

What is the major difference between a worm and a Trojan horse?

John works as a Network Security Administrator for NetPerfect Inc. The manager of the company has told John that the company's phone bill has increased drastically. John suspects t...

You work as a professional Computer Hacking Forensic Investigator for DataEnet Inc. You want to investigate e-mail information of an employee of the company. The suspected employee...

John works as a Network Security Professional. He is assigned a project to test the security of Intrusion Detection System on the We-are-secure server so that he can receive alerts...

You manage a Windows Server 2008 server named Company1 in a domain named Company.com. Company1 has the Web Server (IIS) role installed and hosts an intranet Web site named Company...

Which of the following password cracking attacks does not use any software for cracking e-mail passwords? Each correct answer represents a complete solution. Choose all that apply.

You work as a Sales Manager for NetPerfect Inc. The company has a Windows-based network. You have to often send confidential e-mails and make online payments and purchases. You wan...

The IT administrator wants to implement a stronger security policy. What are the four most important security priorities for Company Software Systems Pvt. Ltd.? (Click the Exhibit...

According to the Internet Crime Report 2009, which of the following complaint categories is on the top?

Maria works as the Chief Security Officer for Company Inc. She wants to send secret messages to the CEO of the company. To secure these messages, she uses a technique of hiding a s...

Which of the following is a documentation of guidelines that computer forensics experts use to handle evidences?

Peter works as a System Administrator for TechSoft Inc. The company uses Linux-based systems. Peter's manager suspects that someone is trying to log in to his computer in his absen...

John works as a Security Administrator for NetPerfect Inc. The company uses Windows-based systems. A project has been assigned to John to track malicious hackers and to strengthen...

Which of the following can be used to perform session hijacking? Each correct answer represents a complete solution. Choose all that apply.

In which of the following techniques does an attacker take network traffic coming towards a host at one port and forward it from that host to another host?

Which of the following is used to authenticate asymmetric keys?

Which of the following programs is used for bypassing normal authentication for securing remote access to a computer?

Which of the following is a name, symbol, or slogan with which a product is identified?

John works as a professional Ethical Hacker. He has been assigned the project of testing the security phase: -Information gathering -Determining network range -Identifying active m...

John, a malicious hacker, forces a router to stop forwarding packets by flooding it with many open connections simultaneously so that all hosts behind it are effectively disabled....

Which of the following statements are correct about spoofing and session hijacking? Each correct answer represents a complete solution. Choose all that apply.

In which of the following DoS attacks does an attacker send an ICMP packet larger than 65,536 bytes to the target system?