Precise of 312-49v8 braindumps materials and free demo for EC-Council certification for customers, Real Success Guaranteed with Updated 312-49v8 pdf dumps vce Materials. 100% PASS Computer Hacking Forensic Investigator Exam exam Today!
2021 Nov 312-49v8 torrent
Q61. Which of the following commands shows you the NetBIOS name table each?
A. Option A
B. Option B
C. Option C
D. Option D
Answer: A
Q62. Which one of the following statements is not correct while preparing for testimony?
A. Go through the documentation thoroughly
B. Do not determine the basic facts of the case before beginning and examining the evidence
C. Establish early communication with the attorney
D. Substantiate the findings with documentation and by collaborating with other computer forensics professionals
Answer: B
Q63. Jason, a renowned forensic investigator, is investigating a network attack that resulted in the compromise of several systems in a reputed multinational's network. He started Wireshark to capture the network traffic. Upon investigation, he found that the DNS packets travelling across the network belonged to a non-company configured IP. Which of the following attack Jason can infer from his findings?
A. DNS Poisoning
B. Cookie Poisoning Attack
C. DNS Redirection
D. Session poisoning
Answer: A
Q64. When NTFS Is formatted, the format program assigns the __________ sectors to the boot sectors and to the bootstrap code
A. First 12
B. First 16
C. First 22
D. First 24
Answer: B
Q65. Email spoofing refers to:
A. The forgery of an email header so that the message appears to have originated from someone or somewhere other than the actual source
B. The criminal act of sending an illegitimate email, falsely claiming to be from a legitimate site in an attempt to acquire the user's personal or account information
C. Sending huge volumes of email to an address in an attempt to overflow the mailbox or overwhelm the server where the email address Is hosted to cause a denial-of-service attack
D. A sudden spike of "Reply All" messages on an email distribution list, caused by one misdirected message
Answer: A
Replace 312-49v8 test questions:
Q66. Steganography is a technique of hiding a secret message within an ordinary message and extracting it at the destination to maintain the confidentiality of data.
A. True
B. False
Answer: A
Q67. An Internet standard protocol (built on top of TCP/IP) that assures accurate synchronization to the millisecond of computer clock times in a network of computers. Which of the following statement is true for NTP Stratum Levels?
A. Stratum-0 servers are used on the network; they are not directly connected to computers which then operate as stratum-1 servers
B. Stratum-1 time server is linked over a network path to a reliable source of UTC time such as GPS, WWV, or CDMA transmissions
C. A stratum-2 server is directly linked (not over a network path) to a reliable source of UTC time such as GPS, WWV, or CDMA transmissions
D. A stratum-3 server gets its time over a network link, via NTP, from a stratum-2 server, and so on
Answer: D
Q68. Why is it Important to consider health and safety factors in the work carried out at all stages of the forensic process conducted by the forensic analysts?
A. This is to protect the staff and preserve any fingerprints that may need to be recovered at a later date
B. All forensic teams should wear protective latex gloves which makes them look professional and cool
C. Local law enforcement agencies compel them to wear latest gloves
D. It is a part of ANSI 346 forensics standard
Answer: A
Q69. During first responder procedure you should follow all laws while collecting the evidence, and contact a computer forensic examiner as soon as possible
A. True
B. False
Answer: A
Q70. What is a first sector ("sector zero") of a hard disk?
A. Master boot record
B. System boot record
C. Secondary boot record
D. Hard disk boot record
Answer: A