[Apr 05, 2022] Pass GCIH Review Guide, Reliable GCIH Test Engine [Q182-Q200]

Share

[Apr 05, 2022] Pass GCIH Review Guide, Reliable GCIH Test Engine

GCIH Test Engine Practice Test Questions, Exam Dumps


GCIH Certified Professional Salary

  • England: £97983
  • United States: $127,530
  • India:₹ 906020
  • Europe:€114987

The benefit in Obtaining the GCIH Exam Certification

  • Systems administrator
  • Legal professional,
  • IT manager, etc
  • A GCIH certified candidate can work as an incident manager
  • E-commerce security professional

Many business sectors are recruiting incident managers to protect their digital infrastructure and take appropriate measures against security breaches and other cybercrimes within an organization.

 

NEW QUESTION 182
John works as an Ethical Hacker for PassGuide Inc. He wants to find out the ports that are open in PassGuide's server using a port scanner. However, he does not want to establish a full TCP connection.
Which of the following scanning techniques will he use to accomplish this task?

  • A. TCP SYN
  • B. TCP FIN
  • C. Xmas tree
  • D. TCP SYN/ACK

Answer: A

Explanation:
Section: Volume C

 

NEW QUESTION 183
Which of the following penetration testing phases involves reconnaissance or data gathering?

  • A. Pre-attack phase
  • B. Post-attack phase
  • C. Attack phase
  • D. Out-attack phase

Answer: A

Explanation:
Section: Volume B

 

NEW QUESTION 184
You want to perform passive footprinting against we-are-secure Inc. Web server. Which of the following tools will you use?

  • A. Nmap
  • B. Ettercap
  • C. Netcraft
  • D. Ethereal

Answer: C

 

NEW QUESTION 185
Which of the following functions can be used as a countermeasure to a Shell Injection attack?
Each correct answer represents a complete solution. Choose all that apply.

  • A. mysql_real_escape_string()
  • B. escapeshellcmd()
  • C. escapeshellarg()
  • D. regenerateid()

Answer: B,C

 

NEW QUESTION 186
Network mapping provides a security testing team with a blueprint of the organization. Which of the following steps is NOT a part of manual network mapping?

  • A. Performing Neotracerouting
  • B. Banner grabbing
  • C. Collecting employees information
  • D. Gathering private and public IP addresses

Answer: A

 

NEW QUESTION 187
Which of the following is a method of gaining access to a system that bypasses normal authentication?

  • A. Back door
  • B. Teardrop
  • C. Smurf
  • D. Trojan horse

Answer: A

Explanation:
Section: Volume C

 

NEW QUESTION 188
In which of the following malicious hacking steps does email tracking come under?

  • A. Gaining access
  • B. Reconnaissance
  • C. Scanning
  • D. Maintaining Access

Answer: B

Explanation:
Section: Volume B

 

NEW QUESTION 189
Victor works as a professional Ethical Hacker for SecureEnet Inc. He wants to scan the wireless network of the
company. He uses a tool that is a free open-source utility for network exploration. The tool uses raw IP packets to
determine the following:
What ports are open on our network systems.
What hosts are available on the network.
Identify unauthorized wireless access points.
What services (application name and version) those hosts are offering.
What operating systems (and OS versions) they are running.
What type of packet filters/firewalls are in use.
Which of the following tools is Victor using?

  • A. Kismet
  • B. Sniffer
  • C. Nmap
  • D. Nessus

Answer: C

 

NEW QUESTION 190
Mark works as a Network Administrator for NetTech Inc. The network has 150 Windows 2000 Professional client
computers and four Windows 2000 servers. All the client computers are able to connect to the Internet. Mark is
concerned about malware infecting the client computers through the Internet. What will Mark do to protect the client
computers from malware?
Each correct answer represents a complete solution. Choose two.

  • A. Assign Read-Only permission to the users for accessing the hard disk drives of the client computers.
  • B. Educate users of the client computers about the problems arising due to malware.
  • C. Prevent users of the client computers from executing any programs.
  • D. Educate users of the client computers to avoid malware.

Answer: B,D

 

NEW QUESTION 191
You work as a Security Administrator for Net Perfect Inc. The company has a Windows-based network. You want to
use a scanning technique which works as a reconnaissance attack. The technique should direct to a specific host or
network to determine the services that the host offers.
Which of the following scanning techniques can you use to accomplish the task?

  • A. Nmap
  • B. IDLE scan
  • C. SYN scan
  • D. Host port scan

Answer: D

 

NEW QUESTION 192
Which of the following procedures is designed to enable security personnel to identify, mitigate, and recover from malicious computer incidents, such as unauthorized access to a system or data, denialof- service, or unauthorized changes to system hardware, software, or data?

  • A. Cyber Incident Response Plan
  • B. Crisis Communication Plan
  • C. Disaster Recovery Plan
  • D. Occupant Emergency Plan

Answer: A

 

NEW QUESTION 193
You work as a Penetration Tester for the Infosec Inc. Your company takes the projects of security auditing. Recently,
your company has assigned you a project to test the security of the we-aresecure.com Web site. For this, you want to
perform the idle scan so that you can get the ports open in the we-are-secure.com server. You are using GIACing tool
to perform the idle scan by using a zombie computer. While scanning, you notice that every IPID is being incremented
on every query, regardless whether the ports are open or close. Sometimes, IPID is being incremented by more than
one value.
What may be the reason?

  • A. The firewall is blocking the scanning process.
  • B. The zombie computer is not connected to the we-are-secure.com Web server.
  • C. The zombie computer is the system interacting with some other system besides your computer.
  • D. GIACing does not perform idle scanning.

Answer: C

 

NEW QUESTION 194
John works as a professional Ethical Hacker. He is assigned a project to test the security of www.weare-secure.com. He
installs a rootkit on the Linux server of the We-are-secure network. Which of the following statements are true about
rootkits?
Each correct answer represents a complete solution. Choose all that apply.

  • A. They allow an attacker to run packet sniffers secretly to capture passwords.
  • B. They allow an attacker to replace utility programs that can be used to detect the attacker's
    activity.
  • C. They allow an attacker to conduct a buffer overflow.
  • D. They allow an attacker to set a Trojan in the operating system and thus open a backdoor for
    anytime access.

Answer: A,B,D

 

NEW QUESTION 195
Which of the following incident response team members ensures that the policies of the organization are enforced during the incident response?

  • A. Human Resource
  • B. Information Security representative
  • C. Technical representative
  • D. Legal representative

Answer: A

 

NEW QUESTION 196
Which of the following is used by attackers to obtain an authenticated connection on a network?

  • A. Back door
  • B. Denial-of-Service (DoS) attack
  • C. Replay attack
  • D. Man-in-the-middle attack

Answer: C

 

NEW QUESTION 197
Which of the following malicious software travels across computer networks without the assistance of a user?

  • A. Hoax
  • B. Worm
  • C. Trojan horses
  • D. Virus

Answer: B

 

NEW QUESTION 198
Which of the following statements about buffer overflow are true?
Each correct answer represents a complete solution. Choose two.

  • A. It can improve application performance.
  • B. It is a situation that occurs when an application receives more data than it is configured to accept.
  • C. It can terminate an application.
  • D. It is a situation that occurs when a storage device runs out of space.

Answer: B,C

Explanation:
Section: Volume C

 

NEW QUESTION 199
Which of the following methods can be used to detect session hijacking attack?

  • A. sniffer
  • B. ntop
  • C. nmap
  • D. Brutus

Answer: A

Explanation:
Section: Volume A

 

NEW QUESTION 200
......

100% Free GCIH Daily Practice Exam With 335 Questions: https://www.prep4sures.top/GCIH-exam-dumps-torrent.html

GCIH exam torrent GIAC study guide: https://drive.google.com/open?id=1dd7HDJsgW_ahxkFA55Zzeb1udniLp_FF