EC-Council Certified Security Analyst (ECSA)
Exam: EC0-479
Demo Edition
CERT MAGIC
EC0-479
1
http://www.certmagic.com
QUESTION: 1
When you are running a vulnerability scan on a network and the IDS cuts off your
connection, what type of IDS is being used?
A. Passive IDS
B. Active IDS
C. Progressive IDS
D. NIPS
Answer: B
QUESTION: 2
Simon is a former employee of Trinitron XML Inc. He feels he was wrongly terminated and
wants to hack into his former company's network. Since Simon remembers some of the server
names, he attempts to run the axfr and ixfr commands using DIG. What is Simon trying to
accomplish here?
A. Send DOS commands to crash the DNS servers
B. Perform DNS poisoning
C. Perform a zone transfer
D. Enumerate all the users in the domain
Answer: C
QUESTION: 3
What will the following command produce on a website login page?
SELECT email, passwd, login_id, full_name
FROM members
WHERE email = 'someone@somehwere.com'; DROP TABLE members; --'
A. Deletes the entire members table
B. Inserts the Error! Reference source not found. email address into the members table
C. Retrieves the password for the first user in the members table
D. This command will not produce anything since the syntax is incorrect
Answer: A
QUESTION: 4
You setup SNMP in multiple offices of your company. Your SNMP software manager is not
receiving data from other offices like it is for your main office. You suspect that firewall
EC0-479
2
http://www.certmagic.com
changes are to blame. What ports should you open for SNMP to work through Firewalls
(Select 2)
A. 162
B. 161
C. 163
D. 160
Answer: A, B
QUESTION: 5
You are carrying out the last round of testing for your new website before it goes live. The
website has many dynamic pages and connects to a SQL backend that accesses your product
inventory in a database. You come across a web security site that recommends inputting the
following code into a search field on web pages to check for vulnerabilities:
<script>alert("This is a test.")</script> .When you type this and click o