Free ECSS Mock Exam – Practice Online Confidently

Messy, a network defender, was hired to secure an organization's internal network. He deployed an IDS in

which the detection process depends on observing and comparing the observed events with the normal

behavior and then detecting any deviation from it.

Identify the type of IDS employed by Messy in the above scenario.

Melanie, a professional hacker, is attempting to break into a target network through an application server. In

this process, she identified a logic flaw in the target web application that provided visibility into the source

code. She exploited this vulnerability to launch further attacks on the target web application.

Which of the web application vulnerabilities was identified by Melanie in the above scenario?

An investigator wants to extract information about the status of the network interface cards (NICs) in an organization's Windows-based systems. Identify the command-line utility that can help the investigator detect the network status.

Michael, a forensic expert, was assigned to investigate an incident that involved unauthorized intrusion

attempts. In this process, Michael identified all the open ports on a system and disabled them because these

open ports can allow attackers to install malicious services and compromise the security of the system or

network.

Which of the following commands assisted Michael in identifying open ports in the above scenario?

Identify the backup mechanism that is performed within the organization using external devices such as hard

disks and requires human interaction to perform the backup operations, thus, making it suspect able to theft or

natural disasters.