DFIR
Authored by Cat Rogue
Information Technology (IT)
University
Used 7+ times
AI Actions
Add similar questions
Adjust reading levels
Convert to real-world scenario
Translate activity
More...
Content View
Student View
10 questions
Show all answers
1.
MULTIPLE CHOICE QUESTION
20 sec • 1 pt
What does DFIR stand for?
Digital Forensics and Incident Response
Digital Framework and Information Response
Data Forensics and Incident Recovery
Digital Forensics and Incident Recovery
2.
MULTIPLE CHOICE QUESTION
20 sec • 1 pt
What is the first step in the IR lifecycle according to SANS?
Containment
Preparation
Eradication
Detection
3.
MULTIPLE CHOICE QUESTION
20 sec • 1 pt
What is digital evidence?
Any physical evidence collected from a crime scene
Any data collected from digital devices such as computers
Any testimony given in court
Any document written by hand
4.
MULTIPLE CHOICE QUESTION
20 sec • 1 pt
Why is the scoping phase critical in the digital forensics lifecycle?
It documents findings and conclusions
It identifies the goals, limitations, and boundaries of the investigation
It involves preserving digital evidence
It organizes collected data for analysis
5.
MULTIPLE CHOICE QUESTION
20 sec • 1 pt
During containment, what must be done to compromised systems to prevent more damage?
Power off the compromised systems immediately.
Isolate and quarantine the compromised systems.
6.
MULTIPLE CHOICE QUESTION
20 sec • 1 pt
The making of a bit-by-bit copy of forensic data is known as?
7.
MULTIPLE CHOICE QUESTION
20 sec • 1 pt
Which sources of evidence are the most volatile on a host?
CPU registers and cache
Temporary File Systems
Remote Logging and Monitoring Data
RAM
Access all questions and much more by creating a free account
Create resources
Host any resource
Get auto-graded reports
Continue with Google
Continue with Email
Continue with Classlink
Continue with Clever
or continue with
Microsoft
%20(1).png)
Apple
Others
Already have an account?
