Guaranteed of GCIA test preparation materials and preparation exams for GIAC certification for IT engineers, Real Success Guaranteed with Updated GCIA pdf dumps vce Materials. 100% PASS GIAC Certified Intrusion Analyst exam Today!

Free demo questions for GIAC GCIA Exam Dumps Below:

NEW QUESTION 1
John works as a Professional Ethical Hacker for NetPerfect Inc. The company has a Linux-based network. All client computers are running on Red Hat 7.0 Linux. The Sales Manager of the company complains to John that his system contains an unknown package named as tar.gz and his documents are exploited. To resolve the problem, John uses a Port scanner to enquire about the open ports and finds out that the HTTP server service port on 27374 is open. He suspects that the other computers on the network are also facing the same problem. John discovers that a malicious application is using the synscan tool to randomly generate IP addresses. Which of the following worms has attacked the computer?

  • A. Ramen
  • B. LoveLetter
  • C. Code red
  • D. Nimda

Answer: A

NEW QUESTION 2
You work as a Network Administrator for Net Perfect Inc. The company has a Windows Server 2008- based network. You have created a test domain for testing IPv6 addressing. Which of the following types of addresses are supported by IPv6?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Unicast
  • B. Multicast
  • C. Broadcast
  • D. Anycast

Answer: ABD

NEW QUESTION 3
Which of the following is the unspecified address in IPv6?

  • A. 1:1:1:1:1:1:1:1
  • B. 0:0:0:0:0:0:0:0
  • C. 0:0:0:0:0:0:0:1
  • D. 1:0:0:0:0:0:0:0

Answer: B

NEW QUESTION 4
Which of the following intrusion detection systems (IDS) monitors network traffic and compares it against an established baseline?

  • A. Signature-based
  • B. Network-based
  • C. File-based
  • D. Anomaly-based

Answer: D

NEW QUESTION 5
Which of the following monitors program activities and modifies malicious activities on a system?

  • A. RADIUS
  • B. NIDS
  • C. Back door
  • D. HIDS

Answer: D

NEW QUESTION 6
Which of the following firewalls keeps track of the state of network connections traveling across the network?

  • A. Stateful firewall
  • B. Application-level firewall
  • C. Packet filtering firewall
  • D. Circuit-level firewall

Answer: A

NEW QUESTION 7
Sandra, an expert computer user, hears five beeps while booting her computer that has AMI BIOS; and after that her computer stops responding. Sandra knows that during booting process POST produces different beep codes for different types of errors. Which of the following errors refers to this POST beep code?

  • A. Cache memory test failed
  • B. Mother board timer not operational
  • C. Display memory error
  • D. Processor failure

Answer: D

NEW QUESTION 8
Which of the following software is used for Steganography?

  • A. CryptoForge
  • B. Fort Knox
  • C. Dsniff
  • D. Ethreal

Answer: B

NEW QUESTION 9
What is the name of the group of blocks which contains information used by the operating system in Linux system?

  • A. logblock
  • B. Bootblock
  • C. Superblock
  • D. Systemblock

Answer: C

NEW QUESTION 10
Which of the following UDP ports are used by the Simple Network Management Protocol (SNMP)? Each correct answer represents a complete solution. Choose two.

  • A. UDP port 69
  • B. UDP port 161
  • C. UDP port 137
  • D. UDP port 162

Answer: BD

NEW QUESTION 11
Which of the following can be monitored by using the host intrusion detection system (HIDS)?
Each correct answer represents a complete solution. Choose two.

  • A. Computer performance
  • B. File system integrity
  • C. Storage space on computers
  • D. System files

Answer: BD

NEW QUESTION 12
An attacker makes an attempt against a Web server. The result is that the attack takes the form of URLs. These URLs search for a certain string that identifies an attack against the Web server.
Which IDS/IPS detection method do the URLs use to detect and prevent an attack?

  • A. Anamoly-based detection
  • B. Policy-based detection
  • C. Honey pot detection
  • D. Signature-based detection

Answer: D

NEW QUESTION 13
Adam works as a professional Computer Hacking Forensic Investigator. He wants to investigate a suspicious email that is sent using a Microsoft Exchange server. Which of the following files will he review to accomplish the task?
Each correct answer represents a part of the solution. Choose all that apply.

  • A. Checkpoint files
  • B. EDB and STM database files
  • C. Temporary files
  • D. cookie files

Answer: ABC

NEW QUESTION 14
You work as a Network Administrator for Infonet Inc. The company has a Windows Server 2008 Active Directory-based single forest multiple domain IPv4 network. All the DNS servers on the network run Windows Server 2008. The users in the network use NetBIOS name to connect network application on the network. You have migrated the network to IPv6-enabled network. Now you want to enable DNS Server to perform lookups in GlobalNames Zone. Which of the following commands will you use to accomplish the task?

  • A. Dnscmd <server name> /config /enableglobalnames 1
  • B. Dnscmd <server name> /config /enableglobalnamessupport 0
  • C. Dnscmd <server name> /config /enableglobalnamessupport 1
  • D. Dnscmd <server name> /config /globalnamesqueryorder 0

Answer: C

NEW QUESTION 15
________ is a command-line tool that can check the DNS registration of a domain controller.

  • A. NBTSTAT
  • B. NETSH
  • C. DNSCMD
  • D. DCDIAG

Answer: D

NEW QUESTION 16
This is a Windows-based tool that is used for the detection of wireless LANs using the IEEE 802.11a, 802.11b, and 802.11g standards. The main features of these tools are as follows:
-It displays the signal strength of a wireless network, MAC address, SSID, channel details, etc. -It is commonly used for the following purposes:

  • A. War driving
  • B. Detecting unauthorized access points
  • C. Detecting causes of interference on a WLAN
  • D. WEP ICV error tracking
  • E. Making Graphs and Alarms on 802.11 Data, including Signal Strength

Answer: D

NEW QUESTION 17
Where is the Hypertext Transfer Protocol (HTTP) used?

  • A. On a client/server-based Wide Area Network (WAN).
  • B. On the Internet to download text files and graphic file
  • C. On a peer-to-peer based Local Area Network (LAN).
  • D. On the World Wide Web (WWW) to display SQL database statistic
  • E. On the World Wide Web (WWW) to display Hypertext Markup Language (HTML) page

Answer: E

NEW QUESTION 18
Which of the following types of firewall ensures that the packets are part of the established session?

  • A. Switch-level firewall
  • B. Application-level firewall
  • C. Stateful inspection firewall
  • D. Circuit-level firewall

Answer: C

NEW QUESTION 19
Which of the following methods is used by forensic investigators to acquire an image over the network in a secure manner?

  • A. Linux Live CD
  • B. DOS boot disk
  • C. Secure Authentication for EnCase (SAFE)
  • D. EnCase with a hardware write blocker

Answer: C

NEW QUESTION 20
Which of the following is a hardware/software platform that is designed to analyze, detect, and report on security related events. NIPS is designed to inspect traffic and based on its configuration or security policy, it can drop the malicious traffic?

  • A. NIPS
  • B. HIPS
  • C. NIDS
  • D. HIDS

Answer: A

NEW QUESTION 21
......

P.S. DumpSolutions.com now are offering 100% pass ensure GCIA dumps! All GCIA exam questions have been updated with correct answers: https://www.dumpsolutions.com/GCIA-dumps/ (508 New Questions)