
[Nov 02, 2021] Latest Certified Ethical Hacker 312-49 Actual Free Exam Questions
Certified Ethical Hacker 312-49 Dumps Updated Practice Test and 150 unique questions
Computer Hacking Forensic Investigator exam
The 312-49 exam is part of the ECCouncil Institute Certification. This exam measures your ability in investigating Cyber Crimes tracing the Digital Evidence to prosecute Cyber Criminals
CHFI Computer Hacking Forensic Investigator exam is a professional certification that measures your skills to accomplish advanced investigation over Cyber Crimes. This certification exam is targeted for professional investigation expert in the new challenging digital world. The candidates should also have a strong understanding over hacking attacks and they should properly extracting evidence to report the crime and conduct audits to prevent future attacks securing small and big enterprise. The certification is for functional consultants, and security expert in Software Solution. CHFI investigators can draw on an array of methods for discovering data that resides in a computer system, or recovering deleted, encrypted, or damaged file information known as computer data recovery. The audience typically includes secret agents, policy man, implementation consultants, security team leads and project managers, police and other law enforcement personnel, Defense and Military personnel, Systems administrators, Banking, Insurance and other professionals, Government agencies and IT managers
The CHFI Exam is a very complicated exam and its duration is based on 4 Hours with 150 Questions to be answered.
This is a list of covered topics:
- Theft of company documents
- E-mail Fraud
- Disputed dismissals
- Possession of pornography
- Computer break-ins
- Bankruptcy
- Breach of contract
- Disloyal employees
- Web page defacements
- Industrial espionage
NEW QUESTION 81
Daryl, a computer forensics investigator, has just arrived at the house of an alleged computer hacker. Daryl takes pictures and tags all computer and peripheral equipment found in the house. Daryl packs all the items found in his van and takes them back to his lab for further examination. At his lab, Michael his assistant helps him with the investigation. Since Michael is still in training, Daryl supervises all of his work very carefully.
Michael is not quite sure about the procedures to copy all the data off the computer and peripheral devices.
How many data acquisition tools should Michael use when creating copies of the evidence for the investigation?
- A. Three
- B. One
- C. Four
- D. Two
Answer: D
NEW QUESTION 82
Files stored in the Recycle Bin in its physical location are renamed as Dxy.ext, where "x" represents the
___________________.
- A. Drive name
- B. Sequential number
- C. Original file name's extension
- D. Original file name
Answer: A
NEW QUESTION 83
What is the name of the standard Linux command that can be used to create bit-stream images?
- A. mcopy
- B. dd
- C. MD5
- D. image
Answer: B
NEW QUESTION 84
Rusty, a computer forensics apprentice, uses the command nbtstat -c while analyzing the network information in a suspect system. What information is he looking for?
- A. Status of the network carrier
- B. Network connections
- C. Contents of the network routing table
- D. Contents of the NetBIOS name cache
Answer: D
NEW QUESTION 85
What is the location of the binary files required for the functioning of the OS in a Linux system?
- A. /root
- B. /bin
- C. /sbin
- D. /run
Answer: B
NEW QUESTION 86
Sniffers that place NICs in promiscuous mode work at what layer of the OSI model?
- A. Network
- B. Physical
- C. Data Link
- D. Transport
Answer: B
NEW QUESTION 87
Julie is a college student majoring in Information Systems and Computer Science. She is currently writing an essay for her computer crimes class. Julie paper focuses on white-collar crimes in America and how forensics investigators investigate the cases. Julie would like to focus the subject. Julie would like to focus the subject of the essay on the most common type of crime found in corporate America. What crime should Julie focus on?
- A. Physical theft
- B. Denial of Service attacks
- C. Copyright infringement
- D. Industrial espionage
Answer: D
NEW QUESTION 88
When analyzing logs, it is important that the clocks of all the network devices are synchronized. Which protocol will help in synchronizing these clocks?
- A. Time Protocol
- B. NTP
- C. PTP
- D. UTC
Answer: B
NEW QUESTION 89
At what layer does a cross site scripting attack occur on?
- A. Data Link
- B. Session
- C. Presentation
- D. Application
Answer: D
NEW QUESTION 90
An investigator has acquired packed software and needed to analyze it for the presence of malice. Which of the following tools can help in finding the packaging software used?
- A. SysAnalyzer
- B. Comodo Programs Manager
- C. PEiD
- D. Dependency Walker
Answer: C
Explanation:
Explanation
NEW QUESTION 91
Where is the default location for Apache access logs on a Linux computer?
- A. usr/local/apache/logs/access_log
- B. logs/usr/apache/access_log
- C. bin/local/home/apache/logs/access_log
- D. usr/logs/access_log
Answer: A
NEW QUESTION 92
To check for POP3 traffic using Ethereal, what port should an investigator search by?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: C
NEW QUESTION 93
When examining a file with a Hex Editor, what space does the file header occupy?
- A. the first several bytes of the file
- B. one byte at the beginning of the file
- C. none, file headers are contained in the FAT
- D. the last several bytes of the file
Answer: B
NEW QUESTION 94
Which of the following is NOT a graphics file?
- A. Picture4.psd
- B. Picture1.tga
- C. Picture3.nfo
- D. Picture2.bmp
Answer: C
NEW QUESTION 95
When reviewing web logs, you see an entry for resource not found in the HTTP status code filed.
What is the actual error code that you would see in the log for resource not found?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: B
NEW QUESTION 96
Smith, a forensic examiner, was analyzing a hard disk image to find and acquire deleted sensitive files. He stumbled upon a $Recycle.Bin folder in the root directory of the disk. Identify the operating system in use.
- A. Windows 8.1
- B. Windows XP
- C. Windows 98
- D. Linux
Answer: B
Explanation:
Explanation
NEW QUESTION 97
What is the slave device connected to the secondary IDE controller on a Linux OS referred to?
- A. hdc
- B. hdb
- C. hda
- D. hdd
Answer: D
NEW QUESTION 98
Sheila is a forensics trainee and is searching for hidden image files on a hard disk. She used a forensic investigation tool to view the media in hexadecimal code for simplifying the search process. Which of the following hex codes should she look for to identify image files?
- A. d0 0f 11 e0
- B. 50 41 03 04
- C. 25 50 44 46
- D. ff d8 ff
Answer: D
NEW QUESTION 99
Where is the startup configuration located on a router?
- A. Static RAM
- B. Dynamic RAM
- C. NVRAM
- D. BootROM
Answer: C
Explanation:
Explanation
NEW QUESTION 100
Which of the following is found within the unique instance ID key and helps investigators to map the entry from USBSTOR key to the MountedDevices key?
- A. LastWrite
- B. UserAssist key
- C. MRUListEx key
- D. ParentIDPrefix
Answer: D
NEW QUESTION 101
......
Verified 312-49 dumps Q&As - 100% Pass from Free4Torrent: https://www.free4torrent.com/312-49-braindumps-torrent.html