Eccouncil EC-Council Certified Security Specialist (ECSSv10) ECSS Exam Questions

Page: 1 / 14
Total 100 questions
Question 1

Stephen, a security specialist, was instructed to identify emerging threats on the organization's network. In this process, he employed a computer system on the Internet intended to attract and trap those who attempt unauthorized host system utilization to penetrate the organization's network.

Identify the type of security solution employed by Stephen in the above scenario.



Answer : C

Stephen employed ahoneypotin the given scenario. A honeypot is a simulation of an IT system or software application that acts as bait to attract the attention of attackers. While it appears to be a legitimate target, it is actually fake and carefully monitored by an IT security team.The purpose of a honeypot includes distraction for attackers, threat intelligence gathering, and research/training for IT security professionals1.


EC-Council Certified Security Specialist (E|CSS) documents and study guide1.

Question 2

Mark, an attacker, aims to access an organization's internal server, but the local firewall implementation restricted him from achieving this objective. To overcome this issue, he started sending specially crafted requests to the public server, through which he gained access to the local server.

Identify the type of attack initiated by Mark in the above scenario.



Answer : B

Mark's actions align with aServer-Side Request Forgery (SSRF)attack. In SSRF, an attacker manipulates the target web server into making requests to unintended locations. In this case, Mark sent specially crafted requests to the public server, which allowed him to access the internal server.SSRF vulnerabilities can lead to sensitive information disclosure, unauthorized access to internal systems, and other dangerous attacks12.


EC-Council Certified Security Specialist (E|CSS) documents and study guide.

EC-Council Certified Security Specialist (E|CSS) course materials34.

Question 3

Wesley, a professional hacker, deleted a confidential file in a compromised system using the "/bin/rm/ command to deny access to forensic specialists.

Identify the operating system on which Don has performed the file carving activity.



Answer : C

In the scenario described, Wesley used the''/bin/rm/'' commandto delete a confidential file. The ''/bin/rm/'' command is commonly associated withLinuxoperating systems. It is used to remove files and directories. By deleting the file, Wesley aimed to hinder forensic specialists' access to it.Therefore, the operating system on which Wesley performed the file carving activity isLinux.Reference: EC-Council Certified Security Specialist (E|CSS) documents and study guide12.


Question 4

Michael is an attacker who aims to hack Bob's system. He started collecting data without any active interaction with Bob's system. Using this technique. Michael can extract sensitive information from unencrypted data.

Identify the class of attack Michael has launched in the above scenario.



Answer : D

In apassive attack, the attacker observes or collects information without actively interacting with the target system. Michael's action of collecting data from Bob's system without any active interaction falls under this category. Passive attacks aim to extract sensitive information without altering the system's state or causing any disruption.


Question 5

Clark is an unskilled hacker attempting to perform an attack on a target organization to gain popularity. He downloaded and used freely available hacking tools and software developed by other professional hackers for this purpose.

Identify the type of threat actor described in the above scenario.



Answer : A

Ascript kiddieis an unskilled individual who uses pre-written hacking tools and software to perform attacks without fully understanding the underlying techniques.They often seek attention or popularity by exploiting vulnerabilities using readily available tools.Reference: EC-Council Certified Security Specialist (E|CSS) documents and study guide12.


Question 6

Sandra, a hacker, targeted Johana, a software professional, to steal her banking details. She started sending frequent, random pop-up messages with malicious links to her social media page. Johana accidentally clicked on a link, causing a malicious program to get installed in her system. Subsequently, when Johana attempted to access her banking website, the URL directed her to a malicious website controlled by Sandra. Johana entered her banking credentials on the fake website, which Sandra then captured.

Identify the type of attack performed by Sandra on Johana.



Answer : B

The attack performed by Sandra on Johana is known aspharming. Pharming is a type of social engineering cyberattack where criminals redirect internet users trying to reach a specific website to a different, fake site. These ''spoofed'' sites aim to capture a victim's personally identifiable information (PII) and login credentials, such as passwords, social security numbers, and account numbers.In Johana's case, Sandra manipulated the URL to direct her to a malicious website where she entered her banking credentials, which Sandra then captured1.


EC-Council Certified Security Specialist (E|CSS) documents and study guide.

EC-Council Certified Security Specialist (E|CSS) course materials.

Question 7

Which of the following layers of the loT architecture is responsible for delivering services to respective users from different sectors such as building, industrial, manufacturing, automobile, security, and healthcare?



Answer : C

Theapplication layerin IoT architecture is responsible for delivering services to respective users from different sectors such as building, industrial, manufacturing, automobile, security, and healthcare. It provides the user interfaces and applications that interact with IoT devices and systems.


Page:    1 / 14   
Total 100 questions