EC-Council Certified Security Analyst (ECSA v8) Free Practice Exam Questions

18 real EC-Council Certified Security Analyst (ECSA v8) exam questions with answers and AI explanations. EC-Council certification prep — page 1 of 2.

  1. Question 1: Which of the following information gathering techniques collects information from an organization’s web-based calendar and email services?
  2. Question 2: Which one of the following Snort logger mode commands is associated to run a binary log file through Snort in sniffer mode to dump the packets to the screen?
  3. Question 4: If a web application sends HTTP cookies as its method for transmitting session tokens, it may be vulnerable which of the following attacks?
  4. Question 5: Wireshark is a network analyzer. It reads packets from the network, decodes them, and presents them in an easy-to-understand format. Which one of the following…
  5. Question 6: Which one of the following tools of trade is an automated, comprehensive penetration testing product for assessing the specific information security threats to…
  6. Question 8: What is the maximum value of a "tinyint" field in most database systems?
  7. Question 9: In which of the following IDS evasion techniques does IDS reject the packets that an end system accepts?
  8. Question 12: Which of the following is an application alert returned by a web application that helps an attacker guess a valid username?
  9. Question 13: A pen tester has extracted a database name by using a blind SQL injection. Now he begins to test the table inside the database using the below query and finds…
  10. Question 14: When you are running a vulnerability scan on a network and the IDS cuts off your connection, what type of IDS is being used?