
GCIH練習試験テスト最新問題2023年11月
GCIH試験を一発合格保証問題集!
質問 # 149
Which of the following statements about buffer overflow are true?
Each correct answer represents a complete solution. Choose two.
- A. It is a situation that occurs when an application receives more data than it is configured to accept.
- B. It can terminate an application.
- C. It can improve application performance.
- D. It is a situation that occurs when a storage device runs out of space.
正解:A、B
質問 # 150
You check performance logs and note that there has been a recent dramatic increase in the amount of broadcast traffic. What is this most likely to be an indicator of?
- A. Virus
- B. DoS attack
- C. Misconfigured router
- D. Syn flood
正解:B
質問 # 151
Adam, a novice web user, is very conscious about the security. He wants to visit the Web site that is known to have
malicious applets and code. Adam always makes use of a basic Web Browser to perform such testing.
Which of the following web browsers can adequately fill this purpose?
- A. Safari
- B. Lynx
- C. Mozilla Firefox
- D. Internet explorer
正解:B
質問 # 152
John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He has successfully completed the following steps of the pre-attack phase:
l Information gathering
l Determining network range
l Identifying active machines
l Finding open ports and applications
l OS fingerprinting
l Fingerprinting services
Now John wants to perform network mapping of the We-are-secure network. Which of the following tools can he use to accomplish his task?
Each correct answer represents a complete solution. Choose all that apply.
- A. Ettercap
- B. NeoTrace
- C. Cheops
- D. Traceroute
正解:B、C、D
質問 # 153
In which of the following attacks does an attacker use packet sniffing to read network traffic between two parties to steal the session cookie?
- A. Session fixation
- B. Session sidejacking
- C. ARP spoofing
- D. Cross-site scripting
正解:B
解説:
Section: Volume C
質問 # 154
John works as a Professional Ethical Hacker for NetPerfect Inc. The company has a Linux-based network. All client computers are running on Red Hat 7.0 Linux. The Sales Manager of the company complains to John that his system contains an unknown package named as tar.gz and his documents are exploited. To resolve the problem, John uses a Port scanner to enquire about the open ports and finds out that the HTTP server service port on 27374 is open. He suspects that the other computers on the network are also facing the same problem.
John discovers that a malicious application is using the synscan tool to randomly generate IP addresses.
Which of the following worms has attacked the computer?
- A. Code red
- B. Ramen
- C. LoveLetter
- D. Nimda
正解:B
解説:
Section: Volume C
Explanation/Reference:
質問 # 155
You work as an Incident handler in Mariotrixt.Inc. You have followed the Incident handling process to handle the events and incidents. You identify Denial of Service attack (DOS) from a network linked to your internal enterprise network. Which of the following phases of the Incident handling process should you follow next to handle this incident?
- A. Containment
- B. Identification
- C. Preparation
- D. Recovery
正解:A
質問 # 156
Which of the following keyloggers cannot be detected by anti-virus or anti-spyware products?
- A. OS keylogger
- B. Kernel keylogger
- C. Hardware keylogger
- D. Software keylogger
正解:C
解説:
Section: Volume B
質問 # 157
Which of the following languages are vulnerable to a buffer overflow attack?
Each correct answer represents a complete solution. Choose all that apply.
- A. Action script
- B. C
- C. C++
- D. Java
正解:B、C
解説:
Section: Volume C
質問 # 158
Which of the following tools is used for port scanning?
- A. L0phtcrack
- B. NETSH
- C. Nmap
- D. NSLOOKUP
正解:C
質問 # 159
Which of the following US Acts emphasized a "risk-based policy for cost-effective security" and makes mandatory for agency program officials, chief information officers, and inspectors general (IGs) to conduct annual reviews of the agency's information security program and report the results to Office of Management and Budget?
- A. The Equal Credit Opportunity Act (ECOA)
- B. The Electronic Communications Privacy Act of 1986 (ECPA)
- C. The Fair Credit Reporting Act (FCRA)
- D. Federal Information Security Management Act of 2002 (FISMA)
正解:D
質問 # 160
In which of the following DoS attacks does an attacker send an ICMP packet larger than 65,536 bytes to the target system?
- A. Ping of death
- B. Jolt
- C. Teardrop
- D. Fraggle
正解:A
解説:
Section: Volume A
質問 # 161
In which of the following steps of the incident handling processes does the Incident Handler make sure that all business processes and functions are back to normal and then also wants to monitor the system or processes to ensure that the system is not compromised again?
- A. Lesson Learned
- B. Recovery
- C. Containment
- D. Eradication
正解:B
解説:
Section: Volume B
質問 # 162
Which of the following steps can be taken as countermeasures against sniffer attacks?
Each correct answer represents a complete solution. Choose all that apply.
- A. Reduce the range of the network to avoid attacks into wireless networks.
- B. Use encrypted protocols for all communications.
- C. Use tools such as StackGuard and Immunix System to avoid attacks.
- D. Use switches instead of hubs since they switch communications, which means that information is delivered only to the predefined host.
正解:A、B、D
解説:
Section: Volume C
質問 # 163
You work as a Network Penetration tester in the Secure Inc. Your company takes the projects to test the security of various companies. Recently, Secure Inc. has assigned you a project to test the security of a Web site. You go to the Web site login page and you run the following SQL query:
SELECT email, passwd, login_id, full_name
FROM members
WHERE email = '[email protected]'; DROP TABLE members; --'
What task will the above SQL query perform?
- A. Deletes the database in which members table resides.
- B. Deletes the rows of members table where email id is '[email protected]' given.
- C. Performs the XSS attacks.
- D. Deletes the entire members table.
正解:D
質問 # 164
......
GIAC Information Security無料認定試験材料はFast2testが提供された335問題:https://jp.fast2test.com/GCIH-premium-file.html
GCIH問題集完全版問題試験学習ガイド:https://drive.google.com/open?id=1plMe7KyHymq11ycUL9jUwIzLKFJQI6NH