Palo Alto Networks

EC-Council EC0-479 Exam Questions
EC0-479 EC-Council Certified Security Analyst (ECSA) (Page 3 )

Updated On: 21-Feb-2026

Viewing Page 3 of 21 pages.

Download PDF version with 100 Questions

QUESTION: 6

If an attacker's computer sends an IPID of 31400 to a zombie computer on an open port in IDLE scanning, what will be the response?

The zombie will not send a response
31402
31399
31401

Answer(s): D

Show Answer Next Question

QUESTION: 7

Michael works for Kimball Construction Company as senior security analyst, As part of yearly security audit, Michael scans his network for vulnerabilities. Using Nmap, Michael conducts XMAS scan and most of the ports scanned do not give a response. In what state are these ports?

Closed
Open
Stealth
Filtered

Answer(s): B

Show Answer Next Question

QUESTION: 8

You are assisting a Department of Defense contract company to become compliant with the stringent security policies set by the DoD. One such strict rule is that firewalls must only allow incoming connections that were first initiated by internal computers.
What type of firewall must you implement to abide by this policy?

Packet filtering firewall
Circuit-level proxy firewall
Application-level proxy firewall
Statefull firewall

Answer(s): D

Show Answer Next Question

QUESTION: 9

Jessica works as systems administrator for a large electronics firm. She wants to scan her network quickly to detect live hosts by using ICMP ECHO Requests.
What type of scan is Jessica going to perform?

Tracert
Smurf scan
Ping trace
ICMP ping sweep

Answer(s): D

Show Answer Next Question

QUESTION: 10

You work as an IT security auditor hired by a law firm in Boston to test whether you can gain access to sensitive information about the company clients. You have rummaged through their trash and found very little information. You do not want to set off any alarms on their network, so you plan on performing passive footprinting against their Web servers.
What tool should you use?

Ping sweep
Nmap
Netcraft
Dig

Answer(s): C

Show Answer Next Question

Viewing page 3 of 21
Viewing questions 11 - 15 out of 100 questions

Post your Comments and Discuss EC-Council EC0-479 exam dumps with other Community members:

Comments:

Name:

Join the EC0-479 Discussion

Pieter Commented on January 14, 2026
I think for question 32 the answer must be answer C, in fact it first says A and then it is pointed out the answer is C.
NETHERLANDS

QUESTION: 26 Commented on January 14, 2026
| Term | Mechanism / Function | | ------------------ | ------------------------------------------------------------------ | | **Policy map** | Mechanism to **create a schedule for packets prior to forwarding** | | **Service policy** | Mechanism to **apply a QoS policy to an interface** | | **DSCP** | Portion of the **IP header used to classify packets** |
UNITED STATES

Je Yi Commented on January 14, 2026
Questions are about 1400 in total. Suitable for revision for last week preparation.
Anonymous

VJ Commented on January 14, 2026
So far the questions are really helpful
Anonymous

Sindhu Commented on January 14, 2026
Useful content for certification preparation
INDIA

Sindhu Commented on January 14, 2026
Useful content for exam dumparation
INDIA

Don Commented on January 13, 2026
This exam dumps pdf offered a lot of insight to the actual exam. Most of the questions are very similar to actual scenarios in the exam.
UNITED STATES

Anonymous Commented on January 13, 2026
Been helpful
UNITED STATES

Prasad Commented on January 12, 2026
First of all, thanks for providing the exam questions. These will be helpful to pass the exam. As suggested by others, it will be more helpful if an explanation is provided for the right answers.
INDIA

NBK_2020 Commented on January 12, 2026
Good learning material
INDIA

Shruti Commented on January 12, 2026
Great material
Anonymous

Daniel Commented on January 12, 2026
Interesting and great content
UNITED KINGDOM

Sindhu Commented on January 12, 2026
Good content
INDIA

Sindhu Commented on January 12, 2026
Very useful content for exam dumparation
INDIA

Tshidi Commented on January 11, 2026
This is really helpful
Anonymous

RD Commented on January 11, 2026
i have solved 80 ques, till now. Out of which approx. 5-6 ques answers are wrong. Please verify it with scrum guide.
Anonymous

Fickry Commented on January 11, 2026
nice examp preparation for outsystems
Anonymous

Tshidi Commented on January 11, 2026
great learning material
Anonymous

amazon Commented on January 10, 2026
QUESTION: 88 right answer is : A) Configure the requester pays feature on the compani;s S3 bucket
CANADA

Prasad MP Commented on January 10, 2026
good questions and answers
Anonymous

Anonymous Commented on January 09, 2026
Insightful.
UNITED STATES

Leo Commented on January 09, 2026
Amazing exam dump
Anonymous

Tshidi Commented on January 09, 2026
This questions really helped for the exam dumparations
Anonymous

Tshidi Commented on January 09, 2026
I have a clear understanding of what kind of questions to expect in the exam
Anonymous

martin Commented on January 09, 2026
Question number 1 with the drag and drop on the printer display was actually in the exam i took for the new version v15.
Anonymous

bashir Aldebri Libya Commented on January 09, 2026
Thank you for choosing helpful questions
LIBYAN ARAB JAMAHIRIYA

Bashir Aldebri Commented on January 09, 2026
Thanks for the helpful chosen questions
LIBYAN ARAB JAMAHIRIYA

Tshidi Commented on January 08, 2026
These questions really helped me to prepare for az-104 exam
Anonymous

Jaggu Commented on January 08, 2026
very helpful
Anonymous

SR Commented on January 07, 2026
I have so enjoyed using this exam dumps pdf for practice as the answers are validated. Welldone to the team
Anonymous

Dirks Commented on January 07, 2026
Me thinks that 372 is a BS question: In order for an adjacency to form: S- Subnet (must agree on the subnet) T- Network Type (Broadcast, Point to point) T- Timers A- Area number M- MTU P- Passwords (optional) So modifying the network type and/or the Hello timers, would cause it to fail. So the answer could be A or D. Please correct me if I am wrong.
UNITED STATES

Khi Samerotti Commented on January 06, 2026
Such great prep!
Anonymous

Luca Commented on January 06, 2026
Questions look similar to the exam, that's promising!
Anonymous

Enzo Commented on January 06, 2026
Wonderful set of questions to practice. I used these questions spent a couple of weeks and passed my exam. This practice questions is working.
European Union

Jagrati Commented on January 06, 2026
It is very helpful and explanations are very good and helpful
CHINA

Yousif Ahmed Commented on January 06, 2026
This platform is awesome!
Anonymous

Rajat Commented on January 06, 2026
Great information
Anonymous

Menna Commented on January 05, 2026
Thanks for helping
Anonymous

Priya Commented on January 05, 2026
i want other questions
UNITED STATES

vidhi Commented on January 05, 2026
This is helpful
UNITED STATES

Buddy Commented on January 05, 2026
Very Helpful
Anonymous

Su Commented on January 04, 2026
Prepping for my exam this week.
Anonymous

Cory Baldwin Commented on January 04, 2026
Paid for the full version, Good flipping job
Anonymous

South Africa Commented on January 04, 2026
Great learning experience
Anonymous

Krishnendu Commented on January 02, 2026
Very helpful questions for exam dumparation
UNITED STATES

coco Commented on January 01, 2026
I take the test next week, hope this helps me!
Anonymous

Javed Commented on January 01, 2026
This series of question really helps to cover the whole syllabus in less time. I will take the tomorrow and i am really confident that i will be able to crack it.
Anonymous

Ashwini Dongre Commented on January 01, 2026
really helpful content
Anonymous

Bonnie Breckenridge Commented on December 31, 2025
I appreciate this site so much... Studying for exams help re-interate the information and prepares you for exams
Anonymous

Dos Commented on December 30, 2025
Question: An AI Specialist configured Data Masking within the Einstein Trust Layer. How should the AI Specialist begin validating that the correct fields are being masked? Answer: C. Enable the collection and storage of Einstein Generative AI Audit Data on the Einstein Feedback setup page. Why C is correct To validate that Data Masking is working correctly in the Einstein Trust Layer, the AI Specialist must first ensure that Einstein Generative AI Audit Data is being collected and stored. Without enabling this: There is no audit trail to review You cannot see which fields were sent to the LLM or whether masking was applied Enabling audit data is always the first step before reviewing or requesting it. Why the other options are incorrect A. Use Flow-based resource in Prompt Builder… ? Flow Debugger is not designed to validate Trust Layer masking or LLM payloads. B. Request the Einstein Generative AI Audit Data… ? You cannot request or review audit data until it has been enabled
NEW ZEALAND