Get all the Information About GIAC GCFA Exam 2023 Practice Test Questions
Check Real GIAC GCFA Exam Question for Free (2023)
NEW QUESTION # 91
Which of the following U.S. Federal laws addresses computer crime activities in communication lines, stations, or systems?
- A. 18 U.S.C. 1029
- B. 18 U.S.C. 2510
- C. 18 U.S.C. 2701
- D. 18 U.S.C. 1030
- E. 18 U.S.C. 1362
Answer: E
NEW QUESTION # 92
Which of the following tools can be used by a user to hide his identity?
Each correct answer represents a complete solution. Choose all that apply.
- A. IPchains
- B. War dialer
- C. Proxy server
- D. Rootkit
- E. Anonymizer
Answer: A,C,E
Explanation:
Section: Volume A
NEW QUESTION # 93
Which of the following NIST RA process steps has the goal to identify the potential threat-sources and compile a threat statement listing the potential threat-sources that are applicable to the IT system being evaluated?
- A. Threat Identification
- B. Impact Analysis
- C. Control Analysis
- D. Vulnerability Identification
Answer: A
NEW QUESTION # 94
Brutus is a password cracking tool that can be used to crack the following authentications:
HTTP (Basic Authentication)
HTTP (HTML Form/CGI)
POP3 (Post Office Protocol v3)
FTP (File Transfer Protocol)
SMB (Server Message Block)
Telnet
Which of the following attacks can be performed by Brutus for password cracking?
Each correct answer represents a complete solution. Choose all that apply.
- A. Brute force attack
- B. Replay attack
- C. Hybrid attack
- D. Man-in-the-middle attack
- E. Dictionary attack
Answer: A,C,E
NEW QUESTION # 95
Which of the following is described in the following statement?
"It is a 512 bytes long boot sector that is the first sector of a default boot drive. It is also known as Volume Boot Sector, if the boot drive is un-partitioned. "
- A. SBR
- B. MBR
- C. POST
- D. BIOS
Answer: B
NEW QUESTION # 96
Sandra, a novice computer user, works on Windows environment. She experiences some problem regarding bad sectors formed in a hard disk of her computer. She wants to run CHKDSK command to check the hard disk for bad sectors and to fix the errors, if any, occurred. Which of the following switches will she use with CHKDSK command to accomplish the task?
- A. CHKDSK /V /X
- B. CHKDSK /C /L
- C. CHKDSK /I
- D. CHKDSK /R /F
Answer: D
NEW QUESTION # 97
Which of the following is the correct order of digital investigations Standard Operating Procedure (SOP)?
- A. Request for service, initial analysis, data collection, data analysis, data reporting
- B. Request for service, initial analysis, data collection, data reporting, data analysis
- C. Initial analysis, request for service, data collection, data analysis, data reporting
- D. Initial analysis, request for service, data collection, data reporting, data analysis
Answer: A
Explanation:
Section: Volume A
NEW QUESTION # 98
John works as a Network Administrator for Perfect Solutions Inc. The company has a Linux-based network.
John is working as a root user on the Linux operating system. Which of the following commands will John use to display information about all mounted file systems?
Each correct answer represents a complete solution. Choose all that apply.
- A. ls
- B. df -m
- C. du
- D. df
Answer: B,D
Explanation:
Section: Volume B
NEW QUESTION # 99
John works as a professional Ethical Hacker. He has been assigned a project for testing the security of www.we-are-secure.com. He wants to corrupt an IDS signature database so that performing attacks on the server is made easy and he can observe the flaws in the We-are-secure server. To perform his task, he first of all sends a virus that continuously changes its signature to avoid detection from IDS. Since the new signature of the virus does not match the old signature, which is entered in the IDS signature database, IDS becomes unable to point out the malicious virus. Which of the following IDS evasion attacks is John performing?
- A. Session splicing attack
- B. Polymorphic shell code attack
- C. Insertion attack
- D. Evasion attack
Answer: B
Explanation:
Section: Volume A
Explanation/Reference:
NEW QUESTION # 100
Which of the following is a type of intruder detection that involves logging network events to a file for an administrator to review later?
- A. Packet detection
- B. Passive detection
- C. Event detection
- D. Active detection
Answer: B
Explanation:
Section: Volume A
NEW QUESTION # 101
Which of the following statements about the compression feature of the NTFS file system are true?
Each correct answer represents a complete solution. Choose two.
- A. It supports compression only on volumes.
- B. It supports compression on volumes, folders, and files.
- C. Compressed files on an NTFS volume can be read and written by any Windows-based application after they are decompressed.
- D. Users can work with NTFS-compressed files without decompressing them.
Answer: B,D
NEW QUESTION # 102
Which of the following Incident handling process phases is responsible for defining rules, collaborating human workforce, creating a back-up plan, and testing the plans for an enterprise?
- A. Containment phase
- B. Preparation phase
- C. Eradication phase
- D. Identification phase
- E. Recovery phase
Answer: B
Explanation:
Section: Volume B
NEW QUESTION # 103
Adam works as a Computer Hacking Forensic Investigator for a garment company in the United States. A project has been assigned to him to investigate a case of a disloyal employee who is suspected of stealing design of the garments, which belongs to the company and selling those garments of the same design under different brand name. Adam investigated that the company does not have any policy related to the copy of design of the garments. He also investigated that the trademark under which the employee is selling the garments is almost identical to the original trademark of the company. On the grounds of which of the following laws can the employee be prosecuted?
- A. Copyright law
- B. Trademark law
- C. Cyber law
- D. Espionage law
Answer: B
NEW QUESTION # 104
John works for an Internet Service Provider (ISP) in the United States. He discovered child pornography material on a Web site hosted by the ISP. John immediately informed law enforcement authorities about this issue. Under which of the following Acts is John bound to take such an action?
- A. PROTECT Act
- B. Sexual Predators Act
- C. Civil Rights Act of 1964
- D. Civil Rights Act of 1991
Answer: B
Explanation:
Section: Volume A
NEW QUESTION # 105
John works as a professional Ethical Hacker. He has been assigned the task of testing the security of www.we-are-secure.com. He has performed the footprinting step and now he has enough information to begin scanning in order to detect active computers. He sends a ping request to a computer using ICMP type 13. What kind of ICMP message is John using to send the ICMP ping request message?
- A. Timestamp request (obsolete)
- B. Address mask request
- C. Information request (obsolete)
- D. Echo request
Answer: A
NEW QUESTION # 106
In which of the following access control models can a user not grant permissions to other users to see a copy of an object marked as secret that he has received, unless they have the appropriate permissions?
- A. Access Control List (ACL)
- B. Discretionary Access Control (DAC)
- C. Role Based Access Control (RBAC)
- D. Mandatory Access Control (MAC)
Answer: D
NEW QUESTION # 107
Which of the following statements are NOT true about volume boot record or Master Boot Record?
Each correct answer represents a complete solution. Choose all that apply.
- A. The actual program can be 512 bytes long.
- B. The end of MBR marker is h55CC.
- C. Four 16 bytes master partition records are present in MBR.
- D. Volume boot sector is present at cylinder 0, head 0, and sector 1 of the default boot drive.
Answer: A,B
NEW QUESTION # 108
Trinity wants to send an email to her friend. She uses the MD5 generator to calculate cryptographic hash of her email to ensure the security and integrity of the email. MD5 generator, which Trinity is using operates in two steps:
Creates check file
Verifies the check file
Which of the following MD5 generators is Trinity using?
- A. Secure Hash Signature Generator
- B. Chaos MD5
- C. MD5 Checksum Verifier
- D. Mat-MD5
Answer: C
NEW QUESTION # 109
Which of the following enables an inventor to legally enforce his right to exclude others from using his invention?
- A. Patent
- B. Artistic license
- C. Spam
- D. Phishing
Answer: A
NEW QUESTION # 110
Which of the following file systems is designed by Sun Microsystems?
- A. ext2
- B. CIFS
- C. ZFS
- D. NTFS
Answer: C
NEW QUESTION # 111
John works as a contract Ethical Hacker. He has recently got a project to do security checking for www.we-are-secure.com. He wants to find out the operating system of the we-are-secure server in the information gathering step. Which of the following commands will he use to accomplish the task?
Each correct answer represents a complete solution. Choose two.
- A. nc -v -n 208.100.2.25 80
- B. nmap -v -O 208.100.2.25
- C. nmap -v -O www.we-are-secure.com
- D. nc 208.100.2.25 23
Answer: B,C
NEW QUESTION # 112
......
Use Free GCFA Exam Questions that Stimulates Actual EXAM : https://www.free4torrent.com/GCFA-braindumps-torrent.html
Get Ready to Boost your Prepare for your GCFA Exam with 318 Questions: https://drive.google.com/open?id=1G67-dX1PcXmUkp3yqvquJKQhGqC811hf