Latest Eccouncil ECSAv10 Exam dumps 2026

Question No: 1

MultipleChoice

Today, most organizations would agree that their most valuable IT assets reside within applications and databases. Most would probably also agree that these are areas that have the weakest levels of security, thus making them the prime target for malicious activity from system administrators, DBAs, contractors, consultants, partners, and customers.

Which of the following flaws refers to an application using poorly written encryption code to securely encrypt and store sensitive data in the database and allows an attacker to steal or modify weakly protected data such as credit card numbers, SSNs, and other authentication credentials?

Options

ASSI injection attack

BInsecure cryptographic storage attack

CHidden field manipulation attack

DMan-in-the-Middle attack

Question No: 2

MultipleChoice

Which one of the following log analysis tools is used for analyzing the server's log files?

Options

APerformance Analysis of Logs tool

BNetwork Sniffer Interface Test tool

CKa Log Analyzer tool

DEvent Log Tracker tool

Question No: 3

MultipleChoice

Paulette works for an IT security consulting company that is currently performing an audit for the firm ACEUnlimited. Paulette's duties include logging on to all the company's network equipment to ensure IOS versionsare up-to-date and all the other security settings are as stringent as possible.

Paulette presents the followingscreenshot to her boss so he can inform the clients about necessary changes need to be made. From thescreenshot, what changes should the client company make?

Exhibit:

Options

AThe banner should not state 'only authorized IT personnel may proceed'

BRemove any identifying numbers, names, or version information

CThe banner should include the Cisco tech support contact information as well

DThe banner should have more detail on the version numbers for the network equipment

Question No: 4

MultipleChoice

George is a senior security analyst working for a state agency in Florid

a. His state's congress just passed a billmandating every state agency to undergo a security audit annually. After learning what will be required, Georgeneeds to implement an IDS as soon as possible before the first audit occurs.

The state bill requires that an IDSwith a "time-based induction machine" be used. What IDS feature must George implement to meet thisrequirement?

Options

APattern matching

BStatistical-based anomaly detection

CReal-time anomaly detection

DSignature-based anomaly detection

Question No: 5

MultipleChoice

You are a security analyst performing a penetration tests for a company in the Midwest. After some initial reconnaissance, you discover the IP addresses of some Cisco routers used by the company. You type in the following URL that includes the IP address of one of the routers:

After typing in this URL, you are presented with the entire configuration file for that router. What have you discovered?

Options

AURL Obfuscation Arbitrary Administrative Access Vulnerability

BCisco IOS Arbitrary Administrative Access Online Vulnerability

CHTTP Configuration Arbitrary Administrative Access Vulnerability

DHTML Configuration Arbitrary Administrative Access Vulnerability

Question No: 6

MultipleChoice

A pen tester has extracted a database name by using a blind SQL injection. Now he begins to test the table inside the database using the below query and finds the table:

What is the table name?

Options

ACTS

BQRT

CEMP

DABC

Question No: 7

MultipleChoice

What is the maximum value of a ''tinyint'' field in most database systems?

Options

A222

B224 or more

C240 or less

D225 or more

Question No: 8

MultipleChoice

Security auditors determine the use of WAPs on their networks with Nessus vulnerability scanner which identifies the commonly used WAPs.

One of the plug-ins that the Nessus Vulnerability Scanner uses is ID #11026 and is named ''Access Point Detection''. This plug-in uses four techniques to identify the presence of a WAP.

Which one of the following techniques is mostly used for uploading new firmware images while upgrading the WAP device?

Options

ANMAP TCP/IP fingerprinting

BHTTP fingerprinting

CFTP fingerprinting

DSNMP fingerprinting

Question No: 9

MultipleChoice

What is a good security method to prevent unauthorized users from "tailgating"?

Options

AElectronic key systems

BMan trap

CPick-resistant locks

DElectronic combination locks

Question No: 10

MultipleChoice

What is kept in the following directory? HKLM\SECURITY\Policy\Secrets

Options

AService account passwords in plain text

BCached password hashes for the past 20 users

CIAS account names and passwords

DLocal store PKI Kerberos certificates

Question No: 11

MultipleChoice

SQL injection attack consists of insertion or "injection" of either a partial or complete SQL query via the data input or transmitted from the client (browser) to the web application. A successful SQL injection attack can:

i) Read sensitive data from the database

iii) Modify database data (insert/update/delete)

iii) Execute administration operations on the database (such as shutdown the DBMS) iV) Recover the content of a given file existing on the DBMS file system or write files into the file system v) Issue commands to the operating system

Pen tester needs to perform various tests to detect SQL injection vulnerability. He has to make a list of all input fields whose values could be used in crafting a SQL query, including the hidden fields of POST requests and then test them separately, trying to interfere with the query and to generate an error.

In which of the following tests is the source code of the application tested in a non-runtime environment to detect the SQL injection vulnerabilities?

Options

AAutomated Testing

BFunction Testing

CDynamic Testing

DStatic Testing

Question No: 12

MultipleChoice

One needs to run ''Scan Server Configuration'' tool to allow a remote connection to Nessus from the remote Nessus clients. This tool allows the port and bound interface of the Nessus daemon to be configured.

By default, the Nessus daemon listens to connections on which one of the following?

Options

ALocalhost (127.0.0.1) and port 1241

BLocalhost (127.0.0.1) and port 1240

CLocalhost (127.0.0.1) and port 1246

DLocalhost (127.0.0.0) and port 1243

Free Eccouncil ECSAv10 Exam Dumps June 2026