EC-Council Certified Security Analyst

Here you have the best ECCouncil 412-79v8 practice exam questions

  • You have 200 total questions to study from
  • Each page has 5 questions, making a total of 40 pages
  • You can navigate through the pages using the buttons at the bottom
  • This questions were last updated on October 21, 2025
  • This site is not affiliated with or endorsed by ECCouncil.
Question 1 of 200
Which of the following password cracking techniques is used when the attacker has some information about the password?
    Correct Answer: D

Question 2 of 200
Which of the following is an application alert returned by a web application that helps an attacker guess a valid username?
    Correct Answer: C

Question 3 of 200
A pen tester has extracted a database name by using a blind SQL injection. Now he begins to test the table inside the database using the below query and finds the table: http://juggyboy.com/page.aspx?id=1; IF (LEN(SELECT TOP 1 NAME from sysobjects where xtype='U')=3) WAITFOR DELAY '00:00:10'-- http://juggyboy.com/page.aspx?id=1; IF (ASCII(lower(substring((SELECT TOP 1 NAME from sysobjects where xtype=char(85)),1,1)))=101) WAITFOR DELAY
'00:00:10'--
http://juggyboy.com/page.aspx?id=1; IF (ASCII(lower(substring((SELECT TOP 1 NAME from sysobjects where xtype=char(85)),2,1)))=109) WAITFOR DELAY
'00:00:10'--
http://juggyboy.com/page.aspx?id=1; IF (ASCII(lower(substring((SELECT TOP 1 NAME from sysobjects where xtype=char(85)),3,1)))=112) WAITFOR DELAY
'00:00:10'
What is the table name?
    Correct Answer: C

Question 4 of 200
When you are running a vulnerability scan on a network and the IDS cuts off your connection, what type of IDS is being used?
    Correct Answer: B

Question 5 of 200
HTTP protocol specifies that arbitrary binary characters can be passed within the URL by using %xx notation, where 'xx' is the
    Correct Answer: D