Get 100% Authentic GIAC GCIH Dumps with Correct Answers [Q201-Q222]

Share

Get 100% Authentic GIAC GCIH Dumps with Correct Answers

New Training Course GCIH Tutorial Preparation Guide


GIAC GCIH certification is a highly sought-after certification for professionals seeking to advance their careers in the cybersecurity industry. GIAC Certified Incident Handler certification exam is designed to test an individual's ability to detect, respond to, and resolve security incidents. GCIH exam covers a range of topics, including incident handling processes, network and system forensics, and malware analysis.


GIAC GCIH Exam covers a range of topics related to incident handling, including incident response procedures, network and host-based analysis, malware analysis, and computer forensics. GCIH exam is designed to test the practical skills of individuals, as well as their ability to interpret and analyze complex security incidents.


GIAC GCIH (GIAC Certified Incident Handler) certification exam is designed to test the skills and knowledge of individuals in detecting, responding to, and resolving security incidents. GCIH exam covers topics such as incident handling and response, network security, and threat intelligence. Passing this certification exam demonstrates a candidate’s ability to effectively respond to security incidents and mitigate the potential impact of cyber attacks.

 

NEW QUESTION # 201
Victor works as a professional Ethical Hacker for SecureEnet Inc. He wants to scan the wireless network of the company. He uses a tool that is a free open-source utility for network exploration. The tool uses raw IP packets to determine the following:
* What ports are open on our network systems.
* What hosts are available on the network.
* Identify unauthorized wireless access points.
* What services (application name and version) those hosts are offering.
* What operating systems (and OS versions) they are running.
* What type of packet filters/firewalls are in use.
Which of the following tools is Victor using?

  • A. Nessus
  • B. Sniffer
  • C. Nmap
  • D. Kismet

Answer: C

Explanation:
Section: Volume B


NEW QUESTION # 202
Which of the following strategies allows a user to limit access according to unique hardware information supplied by a potential client?

  • A. Wireless Transport Layer Security (WTLS)
  • B. MAC address filtering
  • C. WEP
  • D. Extensible Authentication Protocol (EAP)

Answer: B


NEW QUESTION # 203
Which of the following reads and writes data across network connections by using the TCP/IP protocol?

  • A. 2Mosaic
  • B. NSLOOKUP
  • C. Fpipe
  • D. Netcat

Answer: D


NEW QUESTION # 204
John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-
secure.com. He finds that the We-are-secure server is vulnerable to attacks. As a countermeasure, he suggests that
the Network Administrator should remove the IPP printing capability from the server. He is suggesting this as a
countermeasure against __________.

  • A. IIS buffer overflow
  • B. DNS zone transfer
  • C. SNMP enumeration
  • D. NetBIOS NULL session

Answer: A


NEW QUESTION # 205
Adam has installed and configured his wireless network. He has enabled numerous security features such as changing the default SSID, enabling WPA encryption, and enabling MAC filtering on his wireless router.
Adam notices that when he uses his wireless connection, the speed is sometimes 16 Mbps and sometimes it is only 8 Mbps or less. Adam connects to the management utility wireless router and finds out that a machine with an unfamiliar name is connected through his wireless connection. Paul checks the router's logs and notices that the unfamiliar machine has the same MAC address as his laptop.
Which of the following attacks has been occurred on the wireless network of Adam?

  • A. MAC spoofing
  • B. ARP spoofing
  • C. DNS cache poisoning
  • D. NAT spoofing

Answer: A


NEW QUESTION # 206
Which of the following attacks can be overcome by applying cryptography?

  • A. Web ripping
  • B. Sniffing
  • C. DoS
  • D. Buffer overflow

Answer: B


NEW QUESTION # 207
Which of the following functions can be used as a countermeasure to a Shell Injection attack?
Each correct answer represents a complete solution. Choose all that apply.

  • A. escapeshellcmd()
  • B. mysql_real_escape_string()
  • C. regenerateid()
  • D. escapeshellarg()

Answer: A,D


NEW QUESTION # 208
You send SYN packets with the exact TTL of the target system starting at port 1 and going up to port 1024 using hping2 utility. This attack is known as __________.

  • A. Firewalking
  • B. Spoofing
  • C. Cloaking
  • D. Port scanning

Answer: A


NEW QUESTION # 209
Which of the following statements about a Trojan horse are true?
Each correct answer represents a complete solution. Choose two.

  • A. It infects the boot record on hard disks and floppy disks.
  • B. It is a macro or script that attaches itself to a file or template.
  • C. It is a malicious software program code that resembles another normal program.
  • D. The writers of a Trojan horse can use it later to gain unauthorized access to a computer.

Answer: C,D


NEW QUESTION # 210
Adam works as a Security Analyst for Umbrella Inc. Company has a Windows-based network. All computers run on Windows XP. Manager of the Sales department complains Adam about the unusual behavior of his computer. He told Adam that some pornographic contents are suddenly appeared on his computer overnight. Adam suspects that some malicious software or Trojans have been installed on the computer. He runs some diagnostics programs and Port scanners and found that the Port 12345, 12346, and 20034 are open. Adam also noticed some tampering with the Windows registry, which causes one application to run every time when Windows start.
Which of the following is the most likely reason behind this issue?

  • A. Elsave is installed on the computer.
  • B. NetStumbler is installed on the computer.
  • C. Cheops-ng is installed on the computer.
  • D. NetBus is installed on the computer.

Answer: D


NEW QUESTION # 211
Which of the following tools is used to attack the Digital Watermarking?

  • A. Gifshuffle
  • B. 2Mosaic
  • C. Active Attacks
  • D. Steg-Only Attack

Answer: B

Explanation:
Section: Volume B
Explanation


NEW QUESTION # 212
Which of the following is designed to protect the Internet resolvers (clients) from forged DNS data created by DNS
cache poisoning?

  • A. Stub resolver
  • B. Split-horizon DNS
  • C. Domain Name System Extension (DNSSEC)
  • D. BINDER

Answer: C


NEW QUESTION # 213
Which of the following is used to determine the operating system on the remote computer in a network environment?

  • A. Reconnaissance
  • B. Spoofing
  • C. Social engineering
  • D. OS Fingerprinting

Answer: D


NEW QUESTION # 214
Which of the following statements about threats are true?
Each correct answer represents a complete solution. Choose all that apply.

  • A. A threat is a sequence of circumstances and events that allows a human or other agent to cause an information-
    related misfortune by exploiting vulnerability in an IT product.
  • B. A threat is a weakness or lack of safeguard that can be exploited by vulnerability, thus causing
    harm to the information systems or networks.
  • C. A threat is a potential for violation of security which exists when there is a circumstance, capability, action, or event
    that could breach security and cause harm.
  • D. A threat is any circumstance or event with the potential of causing harm to a system in the form of destruction,
    disclosure, modification of data, or denial of service.

Answer: A,C,D


NEW QUESTION # 215
Which of the following applications is an example of a data-sending Trojan?

  • A. eBlaster
  • B. SubSeven
  • C. Senna Spy Generator
  • D. Firekiller 2000

Answer: A

Explanation:
Section: Volume A


NEW QUESTION # 216
Which of the following protocol loggers is used to detect ping sweep?

  • A. dpsl
  • B. lppi
  • C. pitl
  • D. ippl

Answer: D


NEW QUESTION # 217
Which of the following is the Web 2.0 programming methodology that is used to create Web pages that are dynamic and interactive?

  • A. XML
  • B. RSS
  • C. UML
  • D. Ajax

Answer: D


NEW QUESTION # 218
Which of the following is spy software that records activity on Macintosh systems via snapshots, keystrokes, and Web site logging?

  • A. Spector
  • B. NetBus
  • C. eblaster
  • D. Magic Lantern

Answer: A


NEW QUESTION # 219
Rick works as a Computer Forensic Investigator for BlueWells Inc. He has been informed that some confidential information is being leaked out by an employee of the company. Rick suspects that someone is sending the information through email. He checks the emails sent by some employees to other networks. Rick finds out that Sam, an employee of the Sales department, is continuously sending text files that contain special symbols, graphics, and signs. Rick suspects that Sam is using the Steganography technique to send data in a disguised form. Which of the following techniques is Sam using?
Each correct answer represents a part of the solution. Choose all that apply.

  • A. Technical steganography
  • B. Perceptual masking
  • C. Linguistic steganography
  • D. Text Semagrams

Answer: C,D

Explanation:
Section: Volume B


NEW QUESTION # 220
John works as an Ethical Hacker for PassGuide Inc. He wants to find out the ports that are open in PassGuide's server using a port scanner. However, he does not want to establish a full TCP connection.
Which of the following scanning techniques will he use to accomplish this task?

  • A. TCP FIN
  • B. TCP SYN
  • C. Xmas tree
  • D. TCP SYN/ACK

Answer: B


NEW QUESTION # 221
Which of the following types of malware does not replicate itself but can spread only when the circumstances are beneficial?

  • A. Mass mailer
  • B. Blended threat
  • C. Worm
  • D. Trojan horse

Answer: D


NEW QUESTION # 222
......

Dumps of GCIH Cover all the requirements of the Real Exam: https://www.fast2test.com/GCIH-premium-file.html

Correct Practice Tests of GCIH Dumps with Practice Exam: https://drive.google.com/open?id=1Rq0TAE7jFWi7SdevYeDJXS6GSCEbNRlF

Contact Us

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Our Working Time: ( GMT 0:00-15:00 ) From Monday to Saturday

Support: Contact now 

日本語 Deutsch 繁体中文 한국어