[Jan 28, 2023] 100% Latest Most updated GCIH Questions and Answers Try with 100% Real Exam Questions and Answers NEW QUESTION 31 Adam has installed and configured his wireless network. He has enabled numerous security features such as changing the default SSID, enabling WPA encryption, and enabling MAC filtering on his wireless router. Adam notices that when he uses his wireless connection, the speed [...]

All Products Contact now

[Jan 28, 2023] 100% Latest Most updated GCIH Questions and Answers [Q31-Q54]

Share

[Jan 28, 2023] 100% Latest Most updated GCIH Questions and Answers

Try with 100% Real Exam Questions and Answers

NEW QUESTION 31
Adam has installed and configured his wireless network. He has enabled numerous security features such as changing the default SSID, enabling WPA encryption, and enabling MAC filtering on his wireless router. Adam notices that when he uses his wireless connection, the speed is sometimes 16 Mbps and sometimes it is only 8 Mbps or less. Adam connects to the management utility wireless router and finds out that a machine with an unfamiliar name is connected through his wireless connection. Paul checks the router's logs and notices that the unfamiliar machine has the same MAC address as his laptop.
Which of the following attacks has been occurred on the wireless network of Adam?

  • A. MAC spoofing
  • B. DNS cache poisoning
  • C. NAT spoofing
  • D. ARP spoofing

Answer: A

Explanation:
Section: Volume A

 

NEW QUESTION 32
You want to use PGP files for steganography. Which of the following tools will you use to accomplish the task?

  • A. ImageHide
  • B. Stealth
  • C. Blindside
  • D. Snow

Answer: B

 

NEW QUESTION 33
John used to work as a Network Administrator for We-are-secure Inc. Now he has resigned from the company for
personal reasons. He wants to send out some secret information of the company. To do so, he takes an image file and
simply uses a tool image hide and embeds the secret file within an image file of the famous actress, Jennifer Lopez,
and sends it to his Yahoo mail id. Since he is using the image file to send the data, the mail server of his company is
unable to filter this mail. Which of the following techniques is he performing to accomplish his task?

  • A. Social engineering
  • B. Steganography
  • C. Web ripping
  • D. Email spoofing

Answer: B

 

NEW QUESTION 34
Which of the following malicious code can have more than one type of trigger, multiple task capabilities, and can replicate itself in more than one manner?

  • A. Macro virus
  • B. Boot sector virus
  • C. Trojan
  • D. Blended threat

Answer: D

Explanation:
Section: Volume B

 

NEW QUESTION 35
You work as a System Administrator in SunSoft Inc. You are running a virtual machine on Windows Server 2003. The virtual machine is protected by DPM. Now, you want to move the virtual machine to another host. Which of the following steps can you use to accomplish the task?
Each correct answer represents a part of the solution. Choose all that apply.

  • A. Copy the virtual machine to the new server.
  • B. Run consistency check.
  • C. Remove the original virtual machine from the old server and stop the protection for the original virtual machine.
  • D. Add the copied virtual machine to a protection group.

Answer: A,C,D

 

NEW QUESTION 36
Which of the following tools will you use to prevent from session hijacking?
Each correct answer represents a complete solution. Choose all that apply.

  • A. SSL
  • B. Telnet
  • C. OpenSSH
  • D. Rlogin

Answer: A,C

 

NEW QUESTION 37
Adam works as an Incident Handler for Umbrella Inc. His recent actions towards the incident are not up to the standard norms of the company. He always forgets some steps and procedures while handling responses as they are very hectic to perform.
Which of the following steps should Adam take to overcome this problem with the least administrative effort?

  • A. Create new sub-team to keep check.
  • B. Create incident checklists.
  • C. Appoint someone else to check the procedures.
  • D. Create incident manual read it every time incident occurs.

Answer: B

 

NEW QUESTION 38
You work as a System Administrator in SunSoft Inc. You are running a virtual machine on Windows Server
2003. The virtual machine is protected by DPM. Now, you want to move the virtual machine to another host. Which of the following steps can you use to accomplish the task?
Each correct answer represents a part of the solution. Choose all that apply.

  • A. Copy the virtual machine to the new server.
  • B. Run consistency check.
  • C. Remove the original virtual machine from the old server and stop the protection for the original virtual machine.
  • D. Add the copied virtual machine to a protection group.

Answer: A,C,D

 

NEW QUESTION 39
Which of the following DoS attacks affects mostly Windows computers by sending corrupt UDP packets?

  • A. Smurf
  • B. Ping flood
  • C. Bonk
  • D. Fraggle

Answer: C

 

NEW QUESTION 40
You work as a Network Penetration tester in the Secure Inc. Your company takes the projects to test the security of various companies. Recently, Secure Inc. has assigned you a project to test the security of a Web site. You go to the Web site login page and you run the following SQL query:
SELECT email, passwd, login_id, full_name
FROM members
WHERE email = '[email protected]'; DROP TABLE members; --'
What task will the above SQL query perform?

  • A. Deletes the database in which members table resides.
  • B. Deletes the entire members table.
  • C. Deletes the rows of members table where email id is '[email protected]' given.
  • D. Performs the XSS attacks.

Answer: B

Explanation:
Section: Volume B

 

NEW QUESTION 41
Rick works as a Professional Ethical Hacker for PassGuide Inc. The company has opened a new branch that uses
Windows-based computers. Rick has been assigned a project to check the network security of the new branch office.
He wants to ensure that the company is free from remote hacking attacks.
Choose the appropriate steps that Rick should perform to accomplish the task.

Answer:

Explanation:

 

NEW QUESTION 42
Which of the following attacking methods allows the bypassing of access control lists on servers or routers, either hiding a computer on a network or allowing it to impersonate another computer by changing the Media Access Control address?

  • A. VLAN hoping
  • B. IP address spoofing
  • C. MAC spoofing
  • D. ARP spoofing

Answer: C

Explanation:
Section: Volume C

 

NEW QUESTION 43
Which of the following protocols uses only User Datagram Protocol (UDP)?

  • A. POP3
  • B. FTP
  • C. ICMP
  • D. TFTP

Answer: D

 

NEW QUESTION 44
Which of the following types of malware does not replicate itself but can spread only when the
circumstances are beneficial?

  • A. Blended threat
  • B. Worm
  • C. Mass mailer
  • D. Trojan horse

Answer: D

 

NEW QUESTION 45
Which of the following types of attacks is targeting a Web server with multiple compromised computers that are simultaneously sending hundreds of FIN packets with spoofed IP source IP addresses?

  • A. Insertion attack
  • B. Dictionary attack
  • C. DDoS attack
  • D. Evasion attack

Answer: C

 

NEW QUESTION 46
Mark works as a Network Administrator for Perfect Inc. The company has both wired and wireless networks. An attacker attempts to keep legitimate users from accessing services that they require. Mark uses IDS/IPS sensors on the wired network to mitigate the attack. Which of the following attacks best describes the attacker's intentions?

  • A. Reconnaissance attack
  • B. DoS attack
  • C. Internal attack
  • D. Land attack

Answer: B

 

NEW QUESTION 47
Which of the following is a computer worm that caused a denial of service on some Internet hosts and dramatically
slowed down general Internet traffic?

  • A. Beast
  • B. Code red
  • C. Klez
  • D. SQL Slammer

Answer: D

 

NEW QUESTION 48
Which of the following is executed when a predetermined event occurs?

  • A. Logic bomb
  • B. Trojan horse
  • C. Worm
  • D. MAC

Answer: A

Explanation:
Section: Volume B
Explanation/Reference:

 

NEW QUESTION 49
Adam, a malicious hacker, wants to perform a reliable scan against a remote target. He is not concerned about being stealth at this point.
Which of the following type of scans would be most accurate and reliable?

  • A. TCP Connect scan
  • B. Fin scan
  • C. ACK scan
  • D. UDP sacn

Answer: A

Explanation:
Section: Volume A

 

NEW QUESTION 50
You work as an Incident handling manager for a company. The public relations process of the company includes an
event that responds to the e-mails queries. But since few days, it is identified that this process is providing a way to
spammers to perform different types of e-mail attacks. Which of the following phases of the Incident handling process
will now be involved in resolving this process and find a solution?
Each correct answer represents a part of the solution. Choose all that apply.

  • A. Eradication
  • B. Recovery
  • C. Preparation
  • D. Identification
  • E. Contamination

Answer: A,B,E

 

NEW QUESTION 51
Adam works as a Security Administrator for the Umbrella Inc. A project has been assigned to him to strengthen the security policies of the company, including its password policies. However, due to some old applications, Adam is only able to enforce a password group policy in Active Directory with a minimum of 10 characters. He informed the employees of the company, that the new password policy requires that everyone must have complex passwords with at least 14 characters. Adam wants to ensure that everyone is using complex passwords that meet the new security policy requirements. He logged on to one of the network's domain controllers and runs the following command:

Which of the following actions will this command take?

  • A. Dumps the SAM password hashes to pwd.txt
  • B. Dumps the Active Directory password hashes to pwd.txt
  • C. The password history file is transferred to pwd.txt
  • D. Dumps the SAM password file to pwd.txt

Answer: A

 

NEW QUESTION 52
Which of the following rootkits is able to load the original operating system as a virtual machine, thereby enabling it
to intercept all hardware calls made by the original operating system?

  • A. Hypervisor rootkit
  • B. Kernel level rootkit
  • C. Library rootkit
  • D. Boot loader rootkit

Answer: A

 

NEW QUESTION 53
Adam works as an Incident Handler for Umbrella Inc. He is informed by the senior authorities that the server of the
marketing department has been affected by a malicious hacking attack. Supervisors are also claiming that some
sensitive data are also stolen.
Adam immediately arrived to the server room of the marketing department and identified the event as an incident.
He isolated the infected network from the remaining part of the network and started preparing to image the entire
system. He captures volatile data, such as running process, ram, and network connections.
Which of the following steps of the incident handling process is being performed by Adam?

  • A. Eradication
  • B. Recovery
  • C. Containment
  • D. Identification

Answer: C

 

NEW QUESTION 54
......

New GIAC GCIH Dumps & Questions: https://www.braindumpsvce.com/GCIH_exam-dumps-torrent.html

Dumps to Pass your GCIH Exam with 100% Real Questions and Answers: https://drive.google.com/open?id=1Q53gcJerfmWW3fhLVjCmCxZ7rKfqk2DB

Related Articles

more
GIAC GCIH Certification Practice Exam