GISF Exam Questions

Victor works as a professional Ethical Hacker for SecureNet Inc. He wants to use Steganographicfile system method to encrypt and hide some secret information. Which of the followin...

Firekiller 2000 is an example of a __________.

You work as a Computer Hacking Forensic Investigator for SecureNet Inc. You want to investigateCross-Site Scripting attack on your company's Website. Which of the following methods...

A company would like your consulting firm to review its current network and suggest changes thatwill increase its efficiency and optimize the business processes. To design such a n...

Which two security components should you implement on the sales personnel portable computersto increase security? (Click the Exhibit button on the toolbar to see the case study.) E...

You work as a Software Developer for Mansoft Inc. You, together with a team, develop a distributedapplication that processes orders from multiple types of clients. The application...

Which of the following tools can be used for stress testing of a Web server? Each correct answer represents a complete solution. Choose two.

You work as a Product manager for Marioiss Inc. You have been tasked to start a project for securingthe network of your company. You want to employ configuration management to effi...

John works as a Network Security Professional. He is assigned a project to test the security Which of the following attacking methods can he use to send the dangerous software prot...

You work as a Consumer Support Technician for ABC Inc. The company provides troubleshootingsupport to users. You are troubleshooting a computer of a user who is working on Windows...

You work in an enterprise as a Network Engineer. Your enterprise has a secure internal network. You want to apply an additional network packet filtering device that is intermediate...

You work as a Network Administrator for McRoberts Inc. You are required to upgrade a clientcomputer on the company's network to Windows Vista Ultimate. During installation, the com...

John works as a professional Ethical Hacker. He has been assigned a project to test the security hecan bypass the firewall of the We-are-secure server. Which of the following tools...

You are the project manager of a new project to install new hardware for your organization'scomputer network. You have never worked with networking software or hardware before so y...

You send and receive messages on Internet. A man-in-the-middle attack can be performed tocapture and read your message. Which of the following Information assurance pillars ensures...

You are the Network Administrator for a company that frequently exchanges confidential emailswithout outside parties (clients, vendors, etc.). You want those emails to be encrypted...

Your corporate network uses a Proxy Server for Internet access. The Manufacturing group hasaccess permission for WWW protocol in the Web Proxy service, and access permission for PO...

Which of the following refers to encrypted text?

Which of the following refers to the emulation of the identity of a network computer by anattacking computer?

Which of the following layers of the OSI model corresponds to the Host-to-Host layer of theTCP/IP model?

Which of the following statements about Encapsulating Security Payload (ESP) are true? Each correct answer represents a complete solution. Choose two.

Which of the following best describes the identification, analysis, and ranking of risks?

You work as a Network Administrator for ABC Inc. The company uses a secure wireless network. John complains to you that his computer is not working properly. What type of security...

Which of the following types of firewall functions by creating two different communications, onebetween the client and the firewall, and the other between the firewall and the end...

The Incident handling process implemented in an enterprise is responsible to deal with all the incidentsregarding the enterprise. Which of the following procedures will be involved...

Which of the following types of firewall functions at the Session layer of OSI model?

You work as an executive manager for Mariotx.Inc. You entered into a business contract with a firmcalled Helfixnet.Inc. You passed on the contract details to Helfixnet.Inc and also...

Which of the following refers to a condition in which a hacker sends a bunch of packets that leaveTCP ports half open?

Which of the following is used to determine whether or not a principal is allowed to perform arequested action?

Which of the following prevents malicious programs from attacking a system?

You work as an Incident handler in Mariotrixt.Inc. You have followed the Incident handling processto handle the events and incidents. You identify Denial of Service attack (DOS) fr...

John works as a Network Security Professional. He is assigned a project to test the security anIntrusion Detection System on the We-are-secure server so that he can receive alerts...

Shoulder surfing is a type of in-person attack in which the attacker gathers information about thepremises of an organization. This attack is often performed by looking surreptitio...

Which of the following components are usually found in an Intrusion detection system (IDS)? Each correct answer represents a complete solution. Choose two.

You work as a Security manager for Orangesect Inc. The enterprise is using the OODA loop strategy tocounter the security issues in the enterprise. Some of the IP addresses of the e...

Which of the following refers to a small space having two sets of interlocking doors such that thefirst set of doors must close before the second set opens?

You have been tasked with finding an encryption methodology for your company's network. Thesolution must use public key encryption which is keyed to the users email address. Which...

Which of the following statements are true about TCP/IP model? Each correct answer represents a complete solution. Choose all that apply.

Which of the following are used as primary technologies to create a layered defense for givingprotection to a network? Each correct answer represents a complete solution. Choose al...

The Klez worm is a mass-mailing worm that exploits a vulnerability to open an executable attachmenteven in Microsoft Outlook's preview pane. The Klez worm gathers email addresses f...

Victor works as a professional Ethical Hacker for SecureEnet Inc. He wants to scan the wirelessnetwork of the company. He uses a tool that is a free open-source utility for network...

Configuration Management (CM) is an Information Technology Infrastructure Library (ITIL) IT ServiceManagement (ITSM) process. Configuration Management is used for which of the foll...

You work as a Network Administrator for Tech World Inc. The company has a TCP/IP- basedrouter. You have configured a router on your network. You want to accomplish the following go...

The workstations on your network utilize Windows XP (service pack 2 or later). Many users take theirlaptops on the road. You are very concerned about the security and want to have...

You are hired by Techmart Inc. to upgrade its existing network. You have prepared a case study for planningthe network. According to your study, how many domains are required to se...

Which of the following types of firewalls looks deep into packets and makes granular accesscontrol decisions?

You are the Administrator for a corporate network. You are concerned about denial of service attacks. Which of the following measures would be most helpful in defending against a D...

You work as a Network Security Analyzer. You got a suspicious email while working on a forensic project. Now, you want toknow the IP address of the sender so that you can analyze v...

Web applications play a vital role in deploying different databases with user accessibility on theInternet. Which of the following allows an attacker to get unauthorized access to...

You work as a Network Administrator for NetTech Inc. The company wants to encrypt its e-mails. Which of the following will you use to accomplish this?