24 December, 2024

The Secret Of GIAC GCIH Dump

Your success in GIAC GCIH is our sole target and we develop all our GCIH braindumps in a way that facilitates the attainment of this target. Not only is our GCIH study material the best you can find, it is also the most detailed and the most updated. GCIH Practice Exams for GIAC GCIH are written to the highest standards of technical accuracy.

Page: 1 / 27

Total 328 questions Full Exam Access

Question 1

You work as an Incident handling manager for a company. The public relations process of the company includes an event that responds to the e-mails queries. But since few days, it is identified that this process is providing a way to spammers to perform different types of e-mail attacks. Which of the following phases of the Incident handling process will now be involved in resolving this process and find a solution?
Each correct answer represents a part of the solution. Choose all that apply.

Eradication

Contamination

Preparation

Recovery

Identification

Question 2

Which of the following statements are true about worms?
Each correct answer represents a complete solution. Choose all that apply.

Worms cause harm to the network by consuming bandwidth, whereas viruses almost always corrupt or modify files on a targeted computer.

Worms can exist inside files such as Word or Excel documents.

One feature of worms is keystroke logging.

Worms replicate themselves from one system to another without using a host file.

Question 3

Which of the following steps of incident response is steady in nature?

Containment

Eradication

Preparation

Recovery

Question 4

Adam works as a Security Administrator for the Umbrella Inc. A project has been assigned to him to strengthen the security policies of the company, including its password policies. However, due to some old applications, Adam is only able to enforce a password group policy in Active Directory with a minimum of 10 characters. He informed the employees of the company, that the new password policy requires that everyone must have complex passwords with at least 14 characters. Adam wants to ensure that everyone is using complex passwords that meet the new security policy requirements. He logged on to one of the network's domain controllers and runs the following command:
GCIH dumps exhibit

Which of the following actions will this command take?

Dumps the SAM password hashes to pwd.txt

Dumps the SAM password file to pwd.txt

Dumps the Active Directory password hashes to pwd.txt

The password history file is transferred to pwd.txt

Question 5

Which of the following penetration testing phases involves gathering data from whois, DNS, and network scanning, which helps in mapping a target network and provides valuable information regarding the operating system and applications running on the systems?

Post-attack phase

On-attack phase

Attack phase

Pre-attack phase

Question 6

Mark works as a Network Administrator for Perfect Inc. The company has both wired and wireless networks. An attacker attempts to keep legitimate users from accessing services that they require. Mark uses IDS/IPS sensors on the wired network to mitigate the attack. Which of the following attacks best describes the attacker's intentions?

Internal attack

Reconnaissance attack

Land attack

DoS attack

Question 7

Which of the following Incident handling process phases is responsible for defining rules, collaborating human workforce, creating a back-up plan, and testing the plans for an enterprise?

Preparation phase

Eradication phase

Identification phase

Recovery phase

Containment phase

Question 8

Adam has installed and configured his wireless network. He has enabled numerous security features such as changing the default SSID, enabling WPA encryption, and enabling MAC filtering on his wireless router. Adam notices that when he uses his wireless connection, the speed is sometimes 16 Mbps and sometimes it is only 8 Mbps or less. Adam connects to the management utility wireless router and finds out that a machine with an unfamiliar name is connected through his wireless connection. Paul checks the router's logs and notices that the unfamiliar machine has the same MAC address as his laptop.
Which of the following attacks has been occurred on the wireless network of Adam?

NAT spoofing

DNS cache poisoning

MAC spoofing

ARP spoofing

Question 9

Which of the following is used by attackers to obtain an authenticated connection on a network?

Denial-of-Service (DoS) attack

Replay attack

Man-in-the-middle attack

Back door

Question 10

Choose the items from the given list that are required to be in the response kit of an Incident Handler.
GCIH dumps exhibit

Solution:
GCIH dumps exhibit

Does this meet the goal?

Yes

Question 11

You work as a System Administrator for Happy World Inc. Your company has a server named uC1 that runs Windows Server 2008. The Windows Server virtualization role service is installed on the uC1 server which hosts one virtual machine that also runs Windows Server 2008. You are required to install a new application on the virtual machine. You need to ensure that in case of a failure of the application installation, you are able to quickly restore the virtual machine to its original state.
Which of the following actions will you perform to accomplish the task?

Use the Virtualization Management Console to save the state of the virtual machine.

Log on to the virtual host and create a new dynamically expanding virtual hard disk.

Use the Virtualization Management Console to create a snapshot of the virtual machine.

Use the Edit Virtual Hard Disk Wizard to copy the virtual hard disk of the virtual machine.

Question 12

Adam works as a Security Analyst for Umbrella Inc. CEO of the company ordered him to implement two-factor authentication for the employees to access their networks. He has told him that he would like to use some type of hardware device in tandem with a security or identifying pin number. Adam decides to implement smart cards but they are not cost effective.
Which of the following types of hardware devices will Adam use to implement two-factor authentication?

Biometric device

Security token

Proximity cards

One Time Password

Question 13

CORRECT TEXT
Fill in the blank with the appropriate term.
______ is a technique used to make sure that incoming packets are actually from the networks that they claim to be from.

Question 14

Adam works as a sales manager for Umbrella Inc. He wants to download software from the Internet. As the software comes from a site in his untrusted zone, Adam wants to ensure that the downloaded software has not been Trojaned. Which of the following options would indicate the best course of action for Adam?

Compare the file size of the software with the one given on the Website.

Compare the version of the software with the one published on the distribution media.

Compare the file's virus signature with the one published on the distribution.

Compare the file's MD5 signature with the one published on the distribution media.

Question 15

Which of the following attacks allows an attacker to sniff data frames on a local area network (LAN) or stop the traffic altogether?

Port scanning

ARP spoofing

Man-in-the-middle

Session hijacking

Question 16

Which of the following tools can be used for steganography?
Each correct answer represents a complete solution. Choose all that apply.

Image hide

Stegbreak

Snow.exe

Anti-x

Page: 1 / 27

Total 328 questions Full Exam Access