Vivid of GCIA test questions materials and exam dumps for GIAC certification for consumer, Real Success Guaranteed with Updated GCIA pdf dumps vce Materials. 100% PASS GIAC Certified Intrusion Analyst exam Today!
Check GCIA free dumps before getting the full version:
NEW QUESTION 1
Which of the following technologies is used to detect unauthorized attempts to access and manipulate computer systems locally or through the Internet or an intranet?
- A. Demilitarized zone (DMZ)
- B. Intrusion detection system (IDS)
- C. Firewall
- D. Packet filtering
Answer: B
NEW QUESTION 2
Which of the following file systems is designed by Sun Microsystems?
- A. NTFS
- B. CIFS
- C. ZFS
- D. ext2
Answer: C
NEW QUESTION 3
Which of the following tools implements a portable framework in tcpdump for capturing low-level network traffics in UNIX like networks?
- A. SysPcap
- B. libpcap
- C. BinPcap
- D. WinPcap
Answer: B
NEW QUESTION 4
Which of the following tools are used to determine the hop counts of an IP packet?
Each correct answer represents a complete solution. Choose two.
- A. TRACERT
- B. Ping
- C. IPCONFIG
- D. Netstat
Answer: AB
NEW QUESTION 5
Which of the following proxy servers can be used for spamming?
- A. Caching proxy server
- B. Web proxy server
- C. Open proxy server
- D. Anonymizing proxy server
Answer: C
NEW QUESTION 6
The promiscuous mode is a configuration of a network card that makes the card pass all traffic it receives to the central processing unit rather than just packets addressed to it. Which of the following tools works by placing the host system network card into the promiscuous mode?
- A. NetStumbler
- B. Snort
- C. THC-Scan
- D. Sniffer
Answer: D
NEW QUESTION 7
You are planning DNS configuration for your company. You decide to configure an Active Directory integrated DNS.
Which of the following are the benefits of Active Directory integrated DNS configuration?
Each correct answer represents a complete solution. Choose all that apply.
- A. Replication is more efficien
- B. Multi-master environments are more fault toleran
- C. Single-master environment is simpler to administe
- D. It results in enhanced securit
Answer: ABD
NEW QUESTION 8
Which of the following commands displays the IPX routing table entries?
- A. sh ipx traffic
- B. sh ipx route
- C. sh ipx int e0
- D. sho ipx servers
Answer: B
NEW QUESTION 9
Adam works as a Computer Hacking Forensic Investigator in a law firm. He has been assigned with his first project. Adam collected all required evidences and clues. He is now required to write an investigative report to present before court for further prosecution of the case. He needs guidelines to write an investigative report for expressing an opinion. Which of the following are the guidelines to write an investigative report in an efficient way?
Each correct answer represents a complete solution. Choose all that apply.
- A. All ideas present in the investigative report should flow logically from facts to conclusion
- B. Opinion of a lay witness should be included in the investigative repor
- C. The investigative report should be understandable by any reade
- D. There should not be any assumptions made about any facts while writing the investigative repor
Answer: ACD
NEW QUESTION 10
Which of the following methods is a behavior-based IDS detection method?
- A. Knowledge-based detection
- B. Protocol detection
- C. Statistical anomaly detection
- D. Pattern matching detection
Answer: C
NEW QUESTION 11
You work as a Network Administrator for McRobert Inc. Your company has a TCP/IP-based network.
You want to know the statistics of each protocol installed on your computer. Which of the following commands will you use?
- A. NBTSTAT -r
- B. NETSTAT -s
- C. NETSTAT -r
- D. NBTSTAT -s
Answer: B
NEW QUESTION 12
You are using a Windows-based sniffer named ASniffer to record the data traffic of a network. You have extracted the following IP Header information of a randomly chosen packet from the sniffer's log:
45 00 00 28 00 00 40 00 29 06 43 CB D2 D3 82 5A 3B 5E AA 72
Which of the following TTL decimal values and protocols are being carried by the IP Header of this packet?
- A. 41, UDP
- B. 16, ICMP
- C. 41, TCP
- D. 16, UDP
Answer: C
NEW QUESTION 13
Which of the following protocols is used by TFTP as a file transfer protocol?
- A. UDP
- B. SNMP
- C. TCP
- D. SMTP
Answer: A
NEW QUESTION 14
You work as a Network Administrator for Infonet Inc. The company has a Windows Server 2008 domainbased network. The network has three Windows Server 2008 member servers and 150 Windows Vista client computers. According to the company's security policy, you apply Windows firewall setting to the computers on the network. Now, you are troubleshooting a connectivity problem that might be caused by Windows firewall. What will you do to identify connections that Windows firewall allows or blocks?
- A. Configure Internet Protocol Security (IPSec).
- B. Disable Windows firewall loggin
- C. Enable Windows firewall loggin
- D. Configure Network address translation (NAT).
Answer: C
NEW QUESTION 15
A firewall is a combination of hardware and software, used to provide security to a network. It is used to protect an internal network or intranet against unauthorized access from the Internet or other outside networks. It restricts inbound and outbound access and can analyze all traffic between an internal network and the Internet. Users can configure a firewall to pass or block packets from specific IP addresses and ports. Which of the following tools works as a firewall for the Linux 2.4 kernel?
- A. IPTables
- B. OpenSSH
- C. IPChains
- D. Stunnel
Answer: A
NEW QUESTION 16
Which of the following attacks involves multiple compromised systems to attack a single target?
- A. Brute force attack
- B. DDoS attack
- C. Replay attack
- D. Dictionary attack
Answer: B
NEW QUESTION 17
Which of the following statements about User Datagram Protocol (UDP) is true?
- A. It is a hardware protoco
- B. It is a connectionless protoco
- C. It is a tunneling protoco
- D. It is a connection-oriented protoco
Answer: B
NEW QUESTION 18
Peter works as a System Administrator for TechSoft Inc. The company uses Linux-based systems.
Peter's manager suspects that someone is trying to log in to his computer in his absence. Which of the following commands will Peter run to show the last unsuccessful login attempts, as well as the users who have last logged in to the manager's system?
Each correct answer represents a complete solution. Choose two.
- A. lastb
- B. pwd
- C. last
- D. rwho -a
Answer: AC
NEW QUESTION 19
Which of the following programs is used to add words to spam e-mails so that the e-mail is not considered spam and therefore is delivered as if it were a normal message?
- A. Adler-32
- B. Hash filtrer
- C. Hash buster
- D. Checksum
Answer: C
NEW QUESTION 20
This tool is known as __________.
- A. Kismet
- B. Absinthe
- C. NetStumbler
- D. THC-Scan
Answer: C
NEW QUESTION 21
......
P.S. Thedumpscentre.com now are offering 100% pass ensure GCIA dumps! All GCIA exam questions have been updated with correct answers: https://www.thedumpscentre.com/GCIA-dumps/ (508 New Questions)