New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Eccouncil ECSAv10 Exam - Topic 4 Question 61 Discussion

Actual exam question for Eccouncil's ECSAv10 exam
Question #: 61
Topic #: 4
[All ECSAv10 Questions]

Information gathering is performed to:

i) Collect basic information about the target company and its network

ii) Determine the operating system used, platforms running, web server versions, etc.

iii) Find vulnerabilities and exploits

Which of the following pen testing tests yields information about a company's technology infrastructure?

Show Suggested Answer Hide Answer
Suggested Answer: D

by Sharen at Sep 01, 2023, 06:52 AM

Limited Time Offer

25%

Off

Get Premium ECSAv10 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Elly
3 months ago
Wait, are we really using job postings for tech insights? That seems off!
upvoted 0 times
...
Amber
3 months ago
I agree, A is the most direct way to gather tech info.
upvoted 0 times
...
Karon
4 months ago
Not sure about that, job postings don't usually show tech details.
upvoted 0 times
...
Isidra
4 months ago
I think option D could also give insights into their tech stack.
upvoted 0 times
...
Ronnie
4 months ago
Definitely option A, it reveals a lot about their web structure.
upvoted 0 times
...
Christoper
4 months ago
I recall that trade association directories (option C) can sometimes list technologies used by companies, but I don't know if it's the best choice here.
upvoted 0 times
...
Pearline
4 months ago
I'm leaning towards option A, but I feel like all these options could provide some level of information. It's tricky!
upvoted 0 times
...
Phil
5 months ago
I remember practicing a question similar to this, and I think analyzing web page patterns could reveal some tech infrastructure details.
upvoted 0 times
...
Marleen
5 months ago
I think option D about searching for job postings might give insights into the technologies they use, but I'm not entirely sure.
upvoted 0 times
...
Tasia
5 months ago
This is a good question that tests your understanding of the information gathering phase in penetration testing. Based on the details provided, option D - searching for a company's job postings - is the correct answer, as it can reveal information about the technologies and platforms used by the target organization.
upvoted 0 times
...
Domingo
5 months ago
I'm not entirely sure about this one. The options seem a bit vague, and I'm not confident that any of them directly address the technology infrastructure aspect. I'll need to review the information gathering process more carefully and see if I can identify the most relevant activity from the choices provided.
upvoted 0 times
...
Ivette
5 months ago
Okay, let's see. The question is asking about which pen testing activity would yield information about the company's technology infrastructure. That means we need to look for an option that focuses on gathering technical details, not just general information about the company. I think option B, analyzing the link popularity of the website, is the best choice here.
upvoted 0 times
...
Winfred
5 months ago
Hmm, I'm a bit confused here. The question mentions information gathering, but the options don't seem to directly address that. I'll need to think this through carefully and make sure I understand the connection between the information gathering activities and the technology infrastructure.
upvoted 0 times
...
Harley
5 months ago
I'm pretty confident the answer is D - searching for a company's job postings. That would give you a lot of insight into the technologies they're using, the skills they're looking for, and potentially even some vulnerabilities in their systems. The other options don't seem as directly relevant to the technical infrastructure.
upvoted 0 times
...
Sunny
5 months ago
Okay, let's think this through. The question is asking about the pen testing phase that yields information about the company's technology infrastructure. That rules out the options about web page posting patterns, link popularity, and job postings. I'd say the answer is probably searching for trade association directories, since that could reveal details about the company's platforms, software, and potential vulnerabilities.
upvoted 0 times
...
Ashlyn
5 months ago
Hmm, I'm a bit unsure about this one. The question mentions finding vulnerabilities and exploits, so I'm guessing the right answer has to do with gathering technical information. But I'm not totally sure which option is the best fit.
upvoted 0 times
...
Floyd
5 months ago
This looks like a straightforward question about information gathering in penetration testing. I think the key is to identify which of the options would provide the most technical details about the target company's infrastructure.
upvoted 0 times
...
Portia
5 months ago
This is a straightforward question. The key is to identify which of the listed pen testing activities would provide information about the target company's technology infrastructure. Based on the details given, option D - searching for a company's job postings - is the correct answer.
upvoted 0 times
...
Kenneth
5 months ago
This question seems pretty straightforward. I think I can handle it.
upvoted 0 times
...
Rodolfo
5 months ago
Okay, I think I've got this. Entering long-term gasoline purchase agreements would lock in prices for the end customers, but not protect the organization itself. Trading crude oil derivatives could be risky if not done carefully. Purchasing crude oil-related derivatives seems like the best option to directly hedge against the price fluctuations.
upvoted 0 times
...

Save Cancel