When obtaining a warrant, it is important to:

particularlydescribe the place to be searched and particularly describe the items to be seized

generallydescribe the place to be searched and particularly describe the items to be seized

generallydescribe the place to be searched and generally describe the items to be seized

particularlydescribe the place to be searched and generally describe the items to be seized

What is one method of bypassing a system BIOS password?

Login to Windows and disable the BIOS password

Analyze the hex representation of mysql-bin.000013 file in the screenshot below. Which of the following will be an inference from this analysis?

A WordPress user has been created with the username bad_guy

A user with username bad_guy has logged into the WordPress web application

A WordPress user has been created with the username anonymous_hacker

An attacker with name anonymous_hacker has replaced a user bad_guy in the WordPress database

You have compromised a lower-level administrator account on an Active Directory network of a small company in Dallas, Texas. You discover Domain Controllers through enumeration. You connect to one of the Domain Controllers on port 389 using ldp.exe. What are you trying to accomplish here?

Enumerate domain user accounts and built-in groups

Poison the DNS records with false records

Enumerate MX and A records from DNS

Establish a remote connection to the Domain Controller

Which type of attack is possible when attackers know some credible information about the victim's password, such as the password length, algorithms involved, or the strings and characters used in its creation?

Hybrid Password Guessing Attack

What does the part of the log, “% SEC-6-IPACCESSLOGP”, extracted from a Cisco router represent? options buffers were available

A packet matching the log criteria for the given access list has been detected (TCP or UDP)

The system was not able to process the packet because there was not enough room for all of the desired IP header

Immediate action required messages

Some packet-matching logs were missed because the access list log messages were rate limited, or no access list log

An investigator has found certain details after analysis of a mobile device. What can reveal the manufacturer information?

Equipment Identity Register (EIR)

International mobile subscriber identity (IMSI)

Integrated circuit card identifier (ICCID)

Watson, a forensic investigator, is examining a copy of an ISO file stored in CDFS format. What type of evidence is this?

Data from a CD copied using Windows

Data from a CD copied using Mac-based system

Data from a DVD copied using Windows system

Data from a CD copied using Linux system

companyXYZ has asked you to assess the security of their perimeter email gateway. From your office in New York you craft a specially formatted email message and send it across the Internet to an employee of CompanyXYZ. The employee of CompanyXYZ is aware.

Reviewing the firewalls configuration

Data items and vulnerability scanning

Interviewing employees and network engineers

If a PDA is seized in an investigation while the device is turned on, what would be the proper procedure?

Turn off the device immediately

Remove any memory cards immediately

Which of the following is a responsibility of the first responder?

Collect as much information about the incident as possible

Determine the severity of the incident

Share the collected information to determine the root cause

To reach a bank web site, the traffic from workstations must pass through a firewall. You have been asked to review the firewall configuration to ensure that workstations in network 10.10.10.0/24 can only reach the bank web site 10.20.20.1 using https. Which of the following firewall rules meets this requirement?

if (source matches 10.10.10.0/24 and destination matches 10.20.20.1 and port matches 443) then permit

if (source matches 10.10.10.0/24 and destination matches 10.20.20.1 and port matches 80 or 443) then permit

if (source matches 10.10.10.0 and destination matches 10.20.20.1 and port matches 443) then permit

Donald made an OS disk snapshot of a compromised Azure VM under a resource group being used by the affected company as a part of forensic analysis process. He then created a vhd file out of the snapshot and stored it in a file share and as a page blob as backup in a storage account under different region. What Is the next thing he should do as a security measure?

Delete the OS disk of the affected VM altogether

Recommend changing the access policies followed by the company

Delete the snapshot from the source resource group

Create another VM by using the snapshot

William is examining a log entry that reads 192.168.0.1 - - [18/Jan/2020:12:42:29 +0000) "GET / HTTP/1.1" 200 1861. Which of the following logs does the log entry belong to?

The combined log format of Apache access log

The common log format of Apache access log

What will the following Linux command accomplish? dd if=/dev/mem of=/home/sam/mem.bin bs=1024

Copy the running memory to a file

Copy the master boot record to a file

Copy the contents of the system folder to a file

Copy the memory dump file to an image file

CHFI new part 2

Quiz

•

Computers

•

Professional Development

•

Practice Problem

•

Medium

Hoàng Trần

Used 1+ times

FREE Resource

Hidden fields

SQL injection is possible

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

119 questions

TMĐT

Quiz

•

Professional Development

120 questions

Công nghệ phần mềm

Quiz

•

Professional Development

Popular Resources on Wayground

5 questions

This is not a...winter edition (Drawing game)

Quiz

•

1st - 5th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

10 questions

Identify Iconic Christmas Movie Scenes

Interactive video

•

6th - 10th Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

11 questions

How well do you know your Christmas Characters?

Lesson

•

3rd Grade

14 questions

Christmas Trivia

Quiz

•

5th Grade

20 questions

How the Grinch Stole Christmas

Quiz

•

5th Grade

Discover more resources for Computers

26 questions

Christmas Movie Trivia

Lesson

•

8th Grade - Professio...

25 questions

Christmas Movies

Quiz

•

Professional Development

20 questions

Christmas Trivia

Quiz

•

Professional Development

15 questions

Fun Holiday Trivia

Quiz

•

Professional Development

25 questions

Name That Tune - Christmas

Quiz

•

Professional Development

29 questions

Christmas Song Emoji Pictionary

Quiz

•

Professional Development

9 questions

Holiday Movie Trivia

Lesson

•

Professional Development

34 questions

Winter Trivia

Quiz

•

Professional Development

CHFI new part 2

120 questions

What technique is used by JPEGs for compression?

When using an iPod and the host computer is running Windows, what file system will be used?

You have used a newly released forensic investigation tool, which doesn't meet the Daubert Test, during a case. The case has ended-up in court. What argument could the defense make to weaken your case?

While looking through the IIS log file of a web server, you find the following entries: What is evident from this log file?

Which of the following technique creates a replica of an evidence media?

An investigator has extracted the device descriptor for a 1GB thumb drive that looks like: Disk&Ven_Best_Buy&Prod_Geek_Squad_U3&Rev_6.15. What does the “Geek_Squad” part represent?

When obtaining a warrant, it is important to:

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers