312-49V9 Exam Questions

The objective of this act was to protect consumers personal financial information held by financial institutions and their service providers.

Jim performed a vulnerability analysis on his network and found no potential problems. He runs another utility that executes exploits against his system to verify the results of th...

It takes _____________ mismanaged case/s to ruin your professional reputation as a computer forensics examiner?

You work as an IT security auditor hired by a law firm in Boston to test whether you can gain access to sensitive information about the company clients. You have rummaged through t...

What header field in the TCP/IP protocol stack involves the hacker exploit known as the Ping of Death?

If a suspect computer is located in an area that may have toxic chemicals, you must:

Julie is a college student majoring in Information Systems and Computer Science. She is currently writing an essay for her computer crimes class. Julie paper focuses on white- coll...

Jason is the security administrator of ACMA metal Corporation. One day he notices the company's Oracle database server has been compromised and the customer information along with...

If you plan to startup a suspect's computer, you must modify the ___________ to ensure that you do not contaminate or alter data on the suspect's hard drive by booting to the hard...

Why would a company issue a dongle with the software they sell?

A honey pot deployed with the IP 172.16.1.108 was compromised by an attacker . Given below is an excerpt from a Snort binary capture of the attack. Decipher the activity carried ou...

Melanie was newly assigned to an investigation and asked to make a copy of all the evidence from the compromised system. Melanie did a DOS copy of all the files on the system. What...

Harold is finishing up a report on a case of network intrusion, corporate spying, and embezzlement that he has been working on for over six months. He is trying to find the right t...

Lance wants to place a honeypot on his network. Which of the following would be your recommendations?

What is the following command trying to accomplish? C:\> nmap -sU -p445 192.168.0.0/24

Simon is a former employee of Trinitron XML Inc. He feels he was wrongly terminated and wants to hack into his former company's network. Since Simon remembers some of the server na...

You are working for a local police department that services a population of 1,000,000 people and you have been given the task of building a computer forensics lab. How many law-enf...

Tyler is setting up a wireless network for his business that he runs out of his home. He has followed all the directions from the ISP as well as the wireless router manual. He does...

An Expert witness gives an opinion if:

What will the following command produce on a website login page? SELECT email, passwd, login_id, full_name FROM members WHERE email = '[email protected]'; DROP TABLE members; -...

All Blackberry email is eventually sent and received through what proprietary RIM-operated mechanism?

At what layer of the OSI model do routers function on?

In a virtual test environment, Michael is testing the strength and security of BGP using multiple routers to mimic the backbone of the Internet. This project will help him write hi...

If you see the files Zer0.tar.gz and copy.tar.gz on a Linux system while doing an investigation, what can you conclude?

George is performing security analysis for Hammond and Sons LLC. He is testing security vulnerabilities of their wireless network. He plans on remaining as "stealthy" as possible d...

One technique for hiding information is to change the file extension from the correct one to one that might not be noticed by an investigator. For example, changing a .jpg extensio...

Larry is an IT consultant who works for corporations and government agencies. Larry plans on shutting down the city's network using BGP devices and zombies? What type of Penetratio...

____________________ is simply the application of Computer Investigation and analysis techniques in the interests of determining potential legal evidence.

Which of the following should a computer forensics lab used for investigations have?

Jonathan is a network administrator who is currently testing the internal security of his network. He is attempting to hijack a session, using Ettercap, of a user connected to his...

When reviewing web logs, you see an entry for esource not found?in the HTTP status code field. What is the actual error code that you wouldWhen reviewing web logs, you see an entry...

What encryption technology is used on Blackberry devices?Password Keeper?

Printing under a Windows Computer normally requires which one of the following files types to be created?

Which program is the oot loader?when Windows XP starts up?Which program is the ?oot loader?when Windows XP starts up?

Corporate investigations are typically easier than public investigations because:

The rule of thumb when shutting down a system is to pull the power plug. However, it has certain drawbacks. Which of the following would that be?

You have been called in to help with an investigation of an alleged network intrusion. After questioning the members of the company ITYou have been called in to help with an invest...

A computer forensics investigator is inspecting the firewall logs for a large financial institution that has employees working 24 hours a day, 7 days a week. What can the investiga...

As a security analyst you setup a false survey website that will reQuire users to create a username and a strong password. You send the link to all the employees of the company. Wh...

The police believe that Mevin Matthew has been obtaining unauthorized access to computers belonging to numerous computer software and computer operating systems manufacturers, cell...

Sniffers that place NICs in promiscuous mode work at what layer of the OSI model?

A state department site was recently attacked and all the servers had their disks erased. The incident response team sealed the area and commenced investigation. During evidence co...

This is the original file structure database that Microsoft originally designed for floppy disks. It is written to the outermost track of a disk and contains information about each...

Which federal computer crime law specifically refers to fraud and related activity in connection with access devices like routers?

How many sectors will a 125 KB file use in a FAT32 file system?

Office documents (Word, Excel, PowerPoint) contain a code that allows tracking the MAC, or unique identifier, of the machine that created the document. What is that code called?

You are a security analyst performing reconnaissance on a company you will be carrying out a penetration test for. You conduct a search for IT jobs on Dice.com and find the followi...

Using Internet logging software to investigate a case of malicious use of computers, the investigator comes across some entries that appear odd. From the log, the investigator can...

Frank is working on a vulnerability assessment for a company on the West coast. The company hired Frank to assess its network security through scanning, pen tests, and vulnerabilit...

You have been asked to investigate after a user has reported a threatening e-mail they have received from an external source. Which of the following are you most interested in when...