Free EC-COUNCIL ECSS Exam Dumps Questions & Answers

Bob. a network specialist in an organization, is attempting to identify malicious activities in the network. In this process. Bob analyzed specific data that provided him a summary of a conversation between two network devices, including a source IP and source port, a destination IP and destination port, the duration of the conversation, and the information shared during the conversation.
Which of the following types of network-based evidence was collected by Bob in the above scenario?

• A.  Statistical data
• B.  Session data
• C.  Full content data
• D.  Alert data

Below are the various steps involved in forensic readiness planning.
l.Keep an incident response team ready to review the incident and preserve the evidence.
2.Create a process for documenting the procedure.
3.ldentify the potential evidence required for an incident.
4.Determine the sources of evidence.
5.Establish a legal advisory board to guide the investigation process.
6.ldentify if the incident requires full or formal investigation.
7.Establish a policy for securely handling and storing the collected evidence.
8.Define a policy that determines the pathway to legally extract electronic evidence with minimal disruption.
Identify the correct sequence of steps involved in forensic readiness planning.

• A.  3 >4 >8 >7 >6 >2 >5 >1
• B.  2..>3->l->4->6->5->7->8
• C.  3 >1. >4 >S >8 >2 >6 >7
• D.  1 >2 >3 >4 -5 >6 >7 >8

Steve, a professional pen tester, was hired by an organization to assess its cybersecurity. The organization provided Steve with details such as network topology documents, asset inventory, and valuation information.
This information helped Steve complete the penetration test successfully, and he provided a snapshot of the organization's current security posture.
Identify the penetration testing strategy followed by Steve in the above scenario.

• A.  Goal oriented penetration testing
• B.  White-box testing
• C.  Black box testing
• D.  Grey box testing

Wesley, a professional hacker, deleted a confidential file in a compromised system using the "/bin/rm/ command to deny access to forensic specialists.
Identify the operating system on which Don has performed the file carving activity.

• A.  Windows
• B.  Android
• C.  Linux
• D.  Mac OS

Sandra, a hacker, targeted Johana, a software professional, to steal her banking details. She started sending frequent, random pop-up messages with malicious links to her social media page. Johana accidentally clicked on a link, causing a malicious program to get installed in her system. Subsequently, when Johana attempted to access her banking website, the URL directed her to a malicious website controlled by Sandra. Johana entered her banking credentials on the fake website, which Sandra then captured.
Identify the type of attack performed by Sandra on Johana.

• A.  Pharming
• B.  Shoulder surfing
• C.  Dumpster diving
• D.  Tailgating