Act now and download your GIAC GCIH test today! Do not waste time for the worthless GIAC GCIH tutorials. Download Up to date GIAC GIAC Certified Incident Handler exam with real questions and answers and begin to learn GIAC GCIH with a classic professional.
Online GCIH free questions and answers of New Version:
NEW QUESTION 1
Maria works as a professional Ethical Hacker. She is assigned a project to test the security of www.we-are-secure.com. She wants to test a DoS attack on the We-are-secure server. She finds that the firewall of the server is blocking the ICMP messages, but it is not checking the UDP packets. Therefore, she sends a large amount of UDP echo request traffic to the IP broadcast addresses. These UDP requests have a spoofed source address of the We-are-secure server. Which of the following DoS attacks is Maria using to accomplish her task?
- A. Ping flood attack
- B. Fraggle DoS attack
- C. Teardrop attack
- D. Smurf DoS attack
Answer: B
NEW QUESTION 2
A user is sending a large number of protocol packets to a network in order to saturate its resources and to disrupt connections to prevent communications between services. Which type of attack is this?
- A. Vulnerability attack
- B. Impersonation attack
- C. Social Engineering attack
- D. Denial-of-Service attack
Answer: D
NEW QUESTION 3
John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He has successfully completed the following steps of the pre- attack phase:
l Information gathering
l Determining network range
l Identifying active machines
l Finding open ports and applications
l OS fingerprinting
l Fingerprinting services
Now John wants to perform network mapping of the We-are-secure network. Which of the following tools can he use to accomplish his task?
Each correct answer represents a complete solution. Choose all that apply.
- A. Ettercap
- B. Traceroute
- C. Cheops
- D. NeoTrace
Answer: BCD
NEW QUESTION 4
Which of the following attacks involves multiple compromised systems to attack a single target?
- A. Brute force attack
- B. Replay attack
- C. Dictionary attack
- D. DDoS attack
Answer: D
NEW QUESTION 5
When you conduct the XMAS scanning using Nmap, you find that most of the ports scanned do not give a response. What can be the state of these ports?
- A. Filtered
- B. Open
- C. Closed
Answer: B
NEW QUESTION 6
Adam, a malicious hacker is running a scan. Statistics of the scan is as follows:
Scan directed at open port: ClientServer
Solution:
Does this meet the goal?
- A. Yes
- B. Not Mastered
Answer: A
NEW QUESTION 7
In the DNS Zone transfer enumeration, an attacker attempts to retrieve a copy of the entire zone file for a domain from a DNS server. The information provided by the DNS zone can help an attacker gather user names, passwords, and other valuable information. To attempt a zone transfer, an attacker must be connected to a DNS server that is the authoritative server for that zone. Besides this, an attacker can launch a Denial of Service attack against the zone's DNS servers by flooding them with a lot of requests. Which of the following tools can an attacker use to perform a DNS zone transfer?
Each correct answer represents a complete solution. Choose all that apply.
- A. Host
- B. Dig
- C. DSniff
- D. NSLookup
Answer: ABD
NEW QUESTION 8
You enter the netstat -an command in the command prompt and you receive intimation that port number 7777 is open on your computer. Which of the following Trojans may be installed on your computer?
- A. NetBus
- B. QAZ
- C. Donald Dick
- D. Tini
Answer: D
NEW QUESTION 9
Which of the following techniques is used when a system performs the penetration testing with the objective of accessing unauthorized information residing inside a computer?
- A. Van Eck Phreaking
- B. Phreaking
- C. Biometrician
- D. Port scanning
Answer: D
NEW QUESTION 10
You work as a System Administrator in SunSoft Inc. You are running a virtual machine on Windows Server 2003. The virtual machine is protected by DPM. Now, you want to move the virtual machine to another host. Which of the following steps can you use to accomplish the task?
Each correct answer represents a part of the solution. Choose all that apply.
- A. Remove the original virtual machine from the old server and stop the protection for the original virtual machine.
- B. Run consistency check.
- C. Add the copied virtual machine to a protection group.
- D. Copy the virtual machine to the new server.
Answer: ACD
NEW QUESTION 11
Which of the following Nmap commands is used to perform a UDP port scan?
- A. nmap -sY
- B. nmap -sS
- C. nmap -sN
- D. nmap -sU
Answer: D
NEW QUESTION 12
Which of the following netcat parameters makes netcat a listener that automatically restarts itself when a connection is dropped?
- A. -u
- B. -l
- C. -p
- D. -L
Answer: D
NEW QUESTION 13
Adam works as an Incident Handler for Umbrella Inc. His recent actions towards the incident are not up to the standard norms of the company. He always forgets some steps and procedures while handling responses as they are very hectic to perform.
Which of the following steps should Adam take to overcome this problem with the least administrative effort?
- A. Create incident manual read it every time incident occurs.
- B. Appoint someone else to check the procedures.
- C. Create incident checklists.
- D. Create new sub-team to keep check.
Answer: C
NEW QUESTION 14
Which of the following tools combines two programs, and also encrypts the resulting package in an attempt to foil antivirus programs?
- A. Trojan Man
- B. EliteWrap
- C. Tiny
- D. NetBus
Answer: A
NEW QUESTION 15
Which of the following attacks can be overcome by applying cryptography?
- A. Buffer overflow
- B. Web ripping
- C. Sniffing
- D. DoS
Answer: C
NEW QUESTION 16
Which of the following statements about buffer overflow are true?
Each correct answer represents a complete solution. Choose two.
- A. It is a situation that occurs when a storage device runs out of space.
- B. It is a situation that occurs when an application receives more data than it is configured to accept.
- C. It can improve application performance.
- D. It can terminate an application.
Answer: BD
NEW QUESTION 17
Which of the following techniques can be used to map 'open' or 'pass through' ports on a gateway?
- A. Traceport
- B. Tracefire
- C. Tracegate
- D. Traceroute
Answer: D
NEW QUESTION 18
......
P.S. DumpSolutions.com now are offering 100% pass ensure GCIH dumps! All GCIH exam questions have been updated with correct answers: https://www.dumpsolutions.com/GCIH-dumps/ (328 New Questions)