2023年最新のGCFA試験問題集で最近更新された318問題 [Q184-Q199]

2023年最新のGCFA試験問題集で最近更新された318問題

GIAC GCFAリアル2023年最新のブレーン問題集で模擬試験問題集

質問 # 184
Which of the following sections of an investigative report covers the background and summary of the report including the outcome of the case and the list of allegations?

A. Section 4
B. Section 2
C. Section 3
D. Section 1

正解：B

質問 # 185
Which of the following Acts enacted in United States amends Civil Rights Act of 1964, providing technical changes affecting the length of time allowed to challenge unlawful seniority provisions, to sue the federal government for discrimination and to bring age discrimination claims?

A. PROTECT Act
B. Civil Rights Act of 1991
C. Sexual Predators Act
D. The USA Patriot Act of 2001

正解：B

質問 # 186
John, a novice web user, makes a new E-mail account and keeps his password as "apple", his favorite fruit. John's password is vulnerable to which of the following password cracking attacks?
Each correct answer represents a complete solution. Choose all that apply.

A. Hybrid attack
B. Dictionary attack
C. Brute Force attack
D. Rule based attack

正解：A、B、C

質問 # 187
In 2001, the Council of Europe passed a convention on cybercrime. It was the first international treaty seeking to address computer crime and Internet crimes by harmonizing national laws, improving investigative techniques, and increasing cooperation among nations. On 1 March 2006, the Additional Protocol to the Convention on Cybercrime came into force. Which of the following statements clearly describes this protocol?

A. The convention of cybercrime should immediately be put on hold until there is an inclusion of a new or amended article.
B. The convention of cybercrime is only applied within Europe.
C. It requires participating states to criminalize the dissemination of racist and xenophobic material through computer systems.
D. English speaking states in Europe such as Ireland and the United Kingdom should sign the convention.

正解：C

質問 # 188
Which of the following is used to store configuration settings and options on Microsoft Windows operating systems?

A. Windows Registry
B. Windows setting
C. Windows Config file
D. Group policy editor

正解：A

解説：
Section: Volume B

質問 # 189
You are a professional Computer Hacking forensic investigator. You have been called to collect the evidences of Buffer Overflows or Cookie snooping attack. Which of the following logs will you review to accomplish the task?
Each correct answer represents a complete solution. Choose all that apply.

A. Program logs
B. Web server logs
C. System logs
D. Event logs

正解：A、C、D

質問 # 190
Adam works as a professional Computer Hacking Forensic Investigator. A project has been assigned to him to investigate the main server of SecureEnet Inc. The server runs on Debian Linux operating system.
Adam wants to investigate and review the GRUB configuration file of the server system.
Which of the following files will Adam investigate to accomplish the task?

A. /boot/grub/grub.conf
B. /grub/grub.com
C. /boot/grub/menu.lst
D. /boot/boot.conf

正解：C

質問 # 191
In the United States, Title VII of the 1964 Civil Rights Act was formulated to protect an employee from discrimination on the basis of religion, color, race, national origin, and sex. This law makes discrimination in employment illegal. Which of the following was the original emphasis of the Act?

A. Prevent child pornography
B. Protect fundamental rights of an employee
C. Protect woman in the workplace
D. Equal position to all employees

正解：C

質問 # 192
John works as a professional Ethical Hacker. He has been assigned a project to test the security of www.we-are-secure.com. He enters the following command on the Linux terminal:
chmod 741 secure.c
Considering the above scenario, which of the following statements are true?
Each correct answer represents a complete solution. Choose all that apply.

A. John is providing all rights to the owner of the file.
B. By the octal representation of the file access permission, John is restricting the group members to only read the secure.c file.
C. The textual representation of the file access permission of 741 will be -rwxr--rw-.
D. John is restricting a guest to only write or execute the secure.c file.

正解：A、B

質問 # 193
Which of the following standard technologies is not used to interface hard disk with the computer?

A. IDE/ATA
B. PS/2
C. USB
D. SCSI

正解：B

質問 # 194
You are the Security Consultant and have been hired to check security for a client's network. Your client has stated that he has many concerns but the most critical is the security of Web applications on their Web server. What should be your highest priority then in checking his network?

A. Setting up IDS
B. Vulnerability scanning
C. Setting up a honey pot
D. Port scanning

正解：B

質問 # 195
Brutus is a password cracking tool that can be used to crack the following authentications:
HTTP (Basic Authentication)

HTTP (HTML Form/CGI)

POP3 (Post Office Protocol v3)

FTP (File Transfer Protocol)

SMB (Server Message Block)

Telnet

Which of the following attacks can be performed by Brutus for password cracking?
Each correct answer represents a complete solution. Choose all that apply.

A. Hybrid attack
B. Man-in-the-middle attack
C. Dictionary attack
D. Brute force attack
E. Replay attack

正解：A、C、D

質問 # 196
You are the Security Consultant working with a client who uses a lot of outdated systems. Many of their clients PC's still have Windows 98. You are concerned about the security of passwords on a Windows 98 machine.
What algorithm is used in Windows 98 to hash passwords?

A. LANMAN
B. SHA
C. MD5
D. DES

正解：A

解説：
Section: Volume C

質問 # 197
Maria works as a professional Ethical Hacker. She recently got a project to test the security of www.we-are-secure.com. Arrange the three pre-test phases of the attack to test the security of weare-secure.

正解：

解説：