Vivid of GCIA free practice test materials and free exam for GIAC certification for IT professionals, Real Success Guaranteed with Updated GCIA pdf dumps vce Materials. 100% PASS GIAC Certified Intrusion Analyst exam Today!
Check GCIA free dumps before getting the full version:
NEW QUESTION 1
Which of the following is a reason to implement security logging on a DNS server?
- A. For recording the number of queries resolved
- B. For preventing malware attacks on a DNS server
- C. For measuring a DNS server's performance
- D. For monitoring unauthorized zone transfer
Answer: D
NEW QUESTION 2
Which of the following IP packet elements is responsible for authentication while using IPSec?
- A. Internet Key Exchange (IKE)
- B. Authentication Header (AH)
- C. Layer 2 Tunneling Protocol (L2TP)
- D. Encapsulating Security Payload (ESP)
Answer: B
NEW QUESTION 3
Allen works as a professional Computer Hacking Forensic Investigator. A project has been assigned to him to investigate a computer, which is used by the suspect to sexually harass the victim using instant messenger program. Suspect's computer runs on Windows operating system. Allen wants to recover password from instant messenger program, which suspect is using, to collect the evidence of the crime. Allen is using Helix Live for this purpose. Which of the following utilities of Helix will he use to accomplish the task?
- A. Asterisk Logger
- B. Access PassView
- C. Mail Pass View
- D. MessenPass
Answer: D
NEW QUESTION 4
Which of the following are the two sub-layers present in Data Link layer of the OSI Reference model?
- A. Logical Link control and Media Access control
- B. Logical control and Link control
- C. Machine Link control and Logical Link control
- D. Data control and Media Access control
Answer: A
NEW QUESTION 5
Which of the following is the default port used by Simple Mail Transfer Protocol (SMTP)?
- A. 80
- B. 25
- C. 20
- D. 21
Answer: B
NEW QUESTION 6
Which of the following utilities is used to verify the existence of a host in a network?
- A. IPCONFIG
- B. NETSTAT
- C. CHKDSK
- D. PING
Answer: D
NEW QUESTION 7
John works as a Network Administrator for DigiNet Inc. He wants to investigate failed logon attempts to a network. He uses Log Parser to detail out the failed logons over a specific time frame. He uses the following commands and query to list all failed logons on a specific date:
logparser.exe file:FailedLogons.sql -i:EVT -o:datagrid
SELECT
timegenerated AS LogonTime,
extract_token(strings, 0, '|') AS UserName
FROM Security
WHERE EventID IN (529;
530;
531;
532;
533;
534;
535;
537;
539)
AND to_string(timegenerated,'yyyy-MM-dd HH:mm:ss') like '2004-09%'
After investigation, John concludes that two logon attempts were made by using an expired account. Which of the following EventID refers to this failed logon?
- A. 532
- B. 531
- C. 534
- D. 529
Answer: A
NEW QUESTION 8
Which of the following is a valid IP address for class B Networks?
- A. 225.128.98.7
- B. 80.33.5.7
- C. 212.136.45.8
- D. 172.157.88.3
Answer: D
NEW QUESTION 9
Which of the following can be applied as countermeasures against DDoS attacks?
Each correct answer represents a complete solution. Choose all that apply.
- A. Limiting the amount of network bandwidt
- B. Blocking IP addres
- C. Using LM hashes for password
- D. Using Intrusion detection system
- E. Using the network-ingress filterin
Answer: ABDE
NEW QUESTION 10
Which of the following statements is true about ICMP packets?
Each correct answer represents a complete solution. Choose all that apply.
- A. The PING utility uses them to verify connectivity between two host
- B. They guarantee the delivery of datagram
- C. They are encapsulated within IP datagram
- D. They use UDP datagram
- E. They are used to report errors if a problem in IP processing occur
Answer: ACE
NEW QUESTION 11
Which of the following partitions contains the system files that are used to start the operating system?
- A. Boot partition
- B. System partition
- C. Secondary partition
- D. Primary partition
Answer: A
NEW QUESTION 12
Which of the following wireless security features provides the best wireless security mechanism?
- A. WPA
- B. WPA with Pre Shared Key
- C. WPA with 802.1X authentication
- D. WEP
Answer: C
NEW QUESTION 13
Which of the following determines which protocols can be used by clients to access the Internet in an ISA Server enabled network?
- A. SMTP filter
- B. POP intrusion detection filter
- C. Site and content rule
- D. Protocol rule
Answer: D
NEW QUESTION 14
Which of the following tools is used to store the contents of a TDB (Trivial Database) file to the standard output when debugging problems with TDB files?
- A. tcpdump
- B. pdbedit
- C. Winbindd
- D. tdbdump
Answer: D
NEW QUESTION 15
Peter, a malicious hacker, obtains e-mail addresses by harvesting them from postings, blogs, DNS listings, and Web pages. He then sends large number of unsolicited commercial e-mail (UCE) messages on these addresses. Which of the following e-mail crimes is Peter committing?
- A. E-mail spoofing
- B. E-mail bombing
- C. E-mail Storm
- D. E-mail Spam
Answer: D
NEW QUESTION 16
Which of the following ports is used by e-mail clients to send request to connect to the server?
- A. Port 23
- B. Port 21
- C. Port 25
- D. Port 20
Answer: C
NEW QUESTION 17
Ryan, a malicious hacker submits Cross-Site Scripting (XSS) exploit code to the Website of Internet forum for online discussion. When a user visits the infected Web page, code gets automatically executed and Ryan can easily perform acts like account hijacking, history theft etc. Which of the following types of Cross-Site Scripting attack Ryan intends to do?
- A. SAX
- B. Persistent
- C. Document Object Model (DOM)
- D. Non persistent
Answer: B
NEW QUESTION 18
Which method would provide the highest level of protection for all data transmitted on the internal network only? (Click the Exhibit button on the toolbar to see the case study.)
- A. IPSec tunnel mode
- B. SSL
- C. PPTP
- D. SMB
- E. IPSec transport mode
Answer: E
NEW QUESTION 19
John works as a Network Security Professional. He is assigned a project to test the security of www.we-are-secure.com. He is working on the Linux operating system and wants to install an Intrusion Detection System on the We-are-secure server so that he can receive alerts about any hacking attempts. Which of the following tools can John use to accomplish the task?
Each correct answer represents a complete solution. Choose all that apply.
- A. SARA
- B. Snort
- C. Samhain
- D. Tripwire
Answer: BC
NEW QUESTION 20
You work as a Desktop Support Technician for umbrella Inc. The company uses a Windows-based network. An employee of the production department is facing the problem in the IP configuration of the network connection.
He called you to resolve the issue. You suspect that the IP configuration is not configured properly. You want to use the ping command to ensure that IPv4 protocol is working on a computer. While running the ping command from the command prompt, you find that Windows Firewall is blocking the ping command. You enter the following command in the elevated command prompt on the computer:
netsh advfirewall firewall add rule name="ICMPv4" protocol=icmpv4:any,any dir=in action=allow
Which of the following actions will this command perform?
- A. Permit ICMPv4 packet to pass through the firewal
- B. Permit ICMPv4 Echo Reques
- C. Enable packet filtering by Windows Firewal
- D. Disable Firewall temporaril
Answer: A
NEW QUESTION 21
......
P.S. Surepassexam now are offering 100% pass ensure GCIA dumps! All GCIA exam questions have been updated with correct answers: https://www.surepassexam.com/GCIA-exam-dumps.html (508 New Questions)