無料提供されるGCIH問題集とGCIHリアル試験問題 [Q154-Q175]

Share

無料提供されるGCIH問題集とGCIHリアル試験問題

GIAC GCIH実際の問題とブレーン問題集

質問 # 154
You want to measure the number of heaps used and overflows occurred at a point in time. Which of the following commands will you run to activate the appropriate monitor?

  • A. UPDATE DBM CONFIGURATION USING DFT_MON_SORT
  • B. UPDATE DBM CONFIGURATION USING DFT_MON_BUFPOOL
  • C. UPDATE DBM CONFIGURATION USING DFT_MON_TABLE
  • D. UPDATE DBM CONFIGURATION DFT_MON_TIMESTAMP

正解:A

解説:
Section: Volume C


質問 # 155
Your friend plans to install a Trojan on your computer. He knows that if he gives you a new version of chess.exe, you will definitely install the game on your computer. He picks up a Trojan and joins it with chess.exe. Which of the following tools are required in such a scenario?
Each correct answer represents a part of the solution. Choose three.

  • A. NetBus
  • B. Absinthe
  • C. Chess.exe
  • D. Yet Another Binder

正解:A、C、D


質問 # 156
Which of the following tools is used to attack the Digital Watermarking?

  • A. Active Attacks
  • B. Gifshuffle
  • C. 2Mosaic
  • D. Steg-Only Attack

正解:C


質問 # 157
Adam works as a Security Administrator for Umbrella Technology Inc. He reported a breach in security to his senior members, stating that "security defenses has been breached and exploited for 2 weeks by hackers." The hackers had accessed and downloaded 50,000 addresses containing customer credit cards and passwords. Umbrella Technology was looking to law enforcement officials to protect their intellectual property.
The intruder entered through an employee's home machine, which was connected to Umbrella Technology's corporate VPN network. The application called BEAST Trojan was used in the attack to open a "back door" allowing the hackers undetected access. The security breach was discovered when customers complained about the usage of their credit cards without their knowledge.
The hackers were traced back to Shanghai, China through e-mail address evidence. The credit card information was sent to that same e-mail address. The passwords allowed the hackers to access Umbrella Technology's network from a remote location, posing as employees.
Which of the following actions can Adam perform to prevent such attacks from occurring in future?

  • A. Replace the VPN access with dial-up modem access to the company's network
  • B. Allow VPN access but replace the standard authentication with biometric authentication
  • C. Disable VPN access to all employees of the company from home machines
  • D. Apply different security policy to make passwords of employees more complex

正解:C

解説:
Section: Volume C


質問 # 158
SIMULATION
Fill in the blank with the appropriate word.
StackGuard (as used by Immunix), ssp/ProPolice (as used by OpenBSD), and Microsoft's /GS option use
______ defense against buffer overflow attacks.

正解:

解説:
canary


質問 # 159
Which of the following ensures that the investigation process of incident response team does not break any laws during the response to an incident?

  • A. Legal representative
  • B. Lead Investigator
  • C. Human Resource
  • D. Information Security representative

正解:A

解説:
Section: Volume C


質問 # 160
Adam is a novice Web user. He chooses a 22 letters long word from the dictionary as his password. How long will it
take to crack the password by an attacker?

  • A. 200 years
  • B. 23 days
  • C. 5 minutes
  • D. 22 hours

正解:C


質問 # 161
Which of the following is the most common vulnerability that can affect desktop applications written in native code?

  • A. Buffer overflow
  • B. Malware
  • C. DDoS attack
  • D. SpyWare

正解:A


質問 # 162
Session splicing is an IDS evasion technique in which an attacker delivers data in multiple small-sized packets to the target computer. Hence, it becomes very difficult for an IDS to detect the attack signatures of such attacks. Which of the following tools can be used to perform session splicing attacks?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Whisker
  • B. Y.A.T.
  • C. Nessus
  • D. Fragroute

正解:A、C


質問 # 163
Which of the following tools is an automated tool that is used to implement SQL injections and to retrieve data from Web server databases?

  • A. ADMutate
  • B. Absinthe
  • C. Stick
  • D. Fragroute

正解:B


質問 # 164
You work as a Network Administrator for Perfect Solutions Inc. The company has a Linux-based network.
You are working as a root user on the Linux operating system. Your company is facing an IP spoofing attack.
Which of the following tools will you use to get an alert saying that an upcoming IP packet is being spoofed?

  • A. Neotrace
  • B. ethereal
  • C. Dsniff
  • D. Despoof

正解:D


質問 # 165
Which of the following viruses/worms uses the buffer overflow attack?

  • A. Code red worm
  • B. Chernobyl (CIH) virus
  • C. Klez worm
  • D. Nimda virus

正解:A


質問 # 166
John works as a Network Administrator for We-are-secure Inc. He finds that TCP port 7597 of the Weare- secure
server is open. He suspects that it may be open due to a Trojan installed on the server. He presents a report to the
company describing the symptoms of the Trojan. A summary of the report is given below:
Once this Trojan has been installed on the computer, it searches Notpad.exe, renames it Note.com, and then copies
itself to the computer as Notepad.exe. Each time Notepad.exe is executed, the Trojan executes and calls the original
Notepad to avoid being noticed.
Which of the following Trojans has the symptoms as the one described above?

  • A. NetBus
  • B. eBlaster
  • C. SubSeven
  • D. Qaz

正解:D


質問 # 167
Which of the following tools uses common UNIX/Linux tools like the strings and grep commands to search core
system programs for signatures of the rootkits?

  • A. rkhunter
  • B. OSSEC
  • C. chkrootkit
  • D. Blue Pill

正解:C


質問 # 168
Which of the following commands can be used for port scanning?

  • A. nc -z
  • B. nc -g
  • C. nc -w
  • D. nc -t

正解:A

解説:
Section: Volume A


質問 # 169
Which of the following statements is true about the difference between worms and Trojan horses?

  • A. Trojan horses are harmful to computers while worms are not.
  • B. Worms replicate themselves while Trojan horses do not.
  • C. Trojan horses are a form of malicious codes while worms are not.
  • D. Worms can be distributed through emails while Trojan horses cannot.

正解:B


質問 # 170
You work as a Network Administrator for Net Perfect Inc. The company has a Windows-based network. The company wants to fix potential vulnerabilities existing on the tested systems. You use Nessus as a vulnerability scanning program to fix the vulnerabilities. Which of the following vulnerabilities can be fixed using Nessus?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Vulnerabilities that allow a remote cracker to access sensitive data on a system
  • B. Vulnerabilities that allow a remote cracker to control sensitive data on a system
  • C. Vulnerabilities that help in Code injection attacks
  • D. Misconfiguration (e.g. open mail relay, missing patches, etc.)

正解:A、B、D

解説:
Section: Volume A


質問 # 171
You work as a Network Administrator in the SecureTech Inc. The SecureTech Inc. is using Linuxbased server. Recently, you have updated the password policy of the company in which the server will disable passwords after four trials. What type of attack do you want to stop by enabling this policy?

  • A. XSS
  • B. Replay
  • C. Brute force
  • D. Cookie poisoning

正解:C


質問 # 172
You work as a System Engineer for Cyber World Inc. Your company has a single Active Directory domain.
All servers in the domain run Windows Server 2008. The Microsoft Hyper-V server role has been installed on one of the servers, namely uC1. uC1 hosts twelve virtual machines. You have been given the task to configure the Shutdown option for uC1, so that each virtual machine shuts down before the main Hyper-V server shuts down. Which of the following actions will you perform to accomplish the task?

  • A. Create a batch file to shut down the guest operating system before the server shuts down.
  • B. Create a logon script to shut down the guest operating system before the server shuts down.
  • C. Enable the Shut Down the Guest Operating System option in the Automatic Stop Action Properties on each virtual machine.
  • D. Manually shut down each of the guest operating systems before the server shuts down.

正解:C


質問 # 173
Which of the following tools is an automated tool that is used to implement SQL injections and to retrieve data from
Web server databases?

  • A. ADMutate
  • B. Absinthe
  • C. Stick
  • D. Fragroute

正解:B


質問 # 174
You have forgotten your password of an online shop. The web application of that online shop asks you to enter your email so that they can send you a new password. You enter your email [email protected] And press the submit button.
The Web application displays the server error. What can be the reason of the error?

  • A. Your internet connection is slow.
  • B. You have entered any special character in email.
  • C. The remote server is down.
  • D. Email entered is not valid.

正解:B

解説:
Section: Volume C


質問 # 175
......

GCIH合格させる問題集でGIAC24時間で試験合格できます:https://jp.fast2test.com/GCIH-premium-file.html

最新問題を使おうGCIH試験問題と解答PDFで一年間無料更新:https://drive.google.com/open?id=1plMe7KyHymq11ycUL9jUwIzLKFJQI6NH


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어