[Free] 2018(Jan) EnsurePass Dumpsleader ECCouncil ECSS Dumps with VCE and PDF 21-30

Ensurepass.com : Ensure you pass the IT Exams
2018 Jan ECCouncil Official New Released ECSS
100% Free Download! 100% Pass Guaranteed!

EC-Council Certified Security Specialist

Question No: 21 – (Topic 1)

Which of the following is used in asymmetric encryption?

  1. Public key and user key

  2. SSL

  3. Public key and private key

  4. NTFS

Answer: C

Question No: 22 – (Topic 1)

Sam, a malicious hacker, targets the electric power grid of Umbrella Inc. and gains access to the electronic control systems. Which of the following types of cybercrime has Sam performed?

  1. Cyber defamation

  2. Cybertrespass

  3. Cyberterrorism

  4. Cybertheft

Answer: C

Question No: 23 – (Topic 1)

Maria works as a Desktop Technician for PassGuide Inc. She has received an e-mail from the MN

Compensation Office with the following message: Dear Sir/Madam,

My name is Edgar Rena, the director of compensation here at the MN Compensation Office in Chicago. We receive so many complaints about fraudulent activities that have been taking place in your region for the past few years. Due to the high volume loss of money, the MN compensation department has had an agreement with the appropriate authority to compensate each victim with a sum of USD$500,000.00.

You were selected among the list of people to be paid this sum. To avoid any imperative mood by intending scammers, your payment has been transmuted into an International bank draft which can be cashed at any local bank in your country.

Please fill the below details and send it to our secretary for your compensation bank draft. Full name:



Fill amp; Send to:

Dr. Michael Brown

MN Compensation Office, IL Tel: 1-866-233-8434

Email: micbrown@live.com

Further instructions shall be given to you by our secretary as soon as you contact him. To avoid losing your compensation, you are requested to pay the sum of $350 for Insurance Premium to our secretary.

Thanks and God bless.

If Maria replies to this mail, which of the following attacks may she become vulnerable to?

  1. Phishing attack

  2. SYN attack

  3. CookieMonster attack

  4. Mail bombing

Answer: A

Question No: 24 – (Topic 1)

Victor works as a network administrator for DataSecu Inc. He uses a dual firewall Demilitarized Zone (DMZ) to insulate the rest of the network from the portions that is available to the Internet.

Which of the following security threats may occur if DMZ protocol attacks are performed? Each correct answer represents a complete solution. Choose all that apply.

  1. The attacker can exploit any protocol used to go into the internal network or intranet of thecompany.

  2. The attacker can gain access to the Web server in a DMZ and exploit the database.

  3. The attacker can perform a Zero Day attack by delivering a malicious payload that is not a part of the intrusion detection/prevention systems guarding the network.

  4. The attacker managing to break the first firewall defense can access the internal network without breaking the second firewall if it is different.

Answer: A,B,C

Question No: 25 – (Topic 1)

Which of the following Linux rootkits is installed via stolen SSH keys?

  1. Phalanx2

  2. Beastkit

  3. Adore

  4. Linux.Ramen

Answer: A

Question No: 26 – (Topic 1)

Which of the following is a set of exclusive rights granted by a state to an inventor or his assignee for a fixed period of time in exchange for the disclosure of an invention?

  1. Snooping

  2. Copyright

  3. Utility model

  4. Patent

Answer: D

Question No: 27 – (Topic 1)

Jason works as a System Administrator for Passguide Inc. The company has a Windows- based network. Sam, an employee of the company, accidentally changes some of the applications and system settings. He complains to Jason that his system is not working properly. To troubleshoot the problem, Jason diagnoses the internals of his computer and observes that some changes have been made in Sam#39;s computer registry. To rectify the issue, Jason has to restore the registry.

Which of the following utilities can Jason use to accomplish the task?

Each correct answer represents a complete solution. Choose all that apply.

  1. Reg.exe

  2. Resplendent registrar

  3. EventCombMT

  4. Regedit.exe

    Answer: A,B,D

    Question No: 28 – (Topic 1)

    Victor works as a professional Ethical Hacker for SecureEnet Inc. He has been assigned a job to test an image, in which some secret information is hidden, using Steganography.

    Victor performs the following techniques to accomplish the task:

    1. Smoothening and decreasing contrast by averaging the pixels of the area where significant

      color transitions occurs.

    2. Reducing noise by adjusting color and averaging pixel value.

    3. Sharpening, Rotating, Resampling, and Softening the image. Which of the following Steganography attacks is Victor using?

      1. Steg-Only Attack

      2. Chosen-Stego Attack

      3. Active Attacks

      4. Stegdetect Attack

Answer: C

Question No: 29 – (Topic 1)

What is the major difference between a worm and a Trojan horse?

  1. A worm is self replicating, while a Trojan horse is not.

  2. A worm is a form of malicious program, while a Trojan horse is a utility.

  3. A worm spreads via e-mail, while a Trojan horse does not.

  4. A Trojan horse is a malicious program, while a worm is an anti-virus software.

Answer: A

Question No: 30 – (Topic 1)

John works as a Network Security Administrator for NetPerfect Inc. The manager of the company has told John that the company#39;s phone bill has increased drastically. John suspects that the company#39;s phone system has been cracked by a malicious hacker.

Which attack is used by malicious hackers to crack the phone system?

  1. Sequence attack

  2. Phreaking

  3. Man-in-the-middle attack

  4. War dialing

Answer: B

100% Ensurepass Free Download!
Download Free Demo:ECSS Demo PDF
100% Ensurepass Free Guaranteed!
ECSS Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.