Your success in GIAC GCIH is our sole target and we develop all our GCIH braindumps in a way that facilitates the attainment of this target. Not only is our GCIH study material the best you can find, it is also the most detailed and the most updated. GCIH Practice Exams for GIAC GCIH are written to the highest standards of technical accuracy.

Free GCIH Demo Online For GIAC Certifitcation:

NEW QUESTION 1
Choose and reorder the steps of an incident handling process in their correct order.
GCIH dumps exhibit


Solution:
GCIH dumps exhibit

Does this meet the goal?
  • A. Yes
  • B. Not Mastered

Answer: A

NEW QUESTION 2
5.2.92:4079 ---------FIN--------->192.5.2.110:23


Solution:


Does this meet the goal?
  • A. Yes
  • B. Not Mastered

Answer: A

NEW QUESTION 3
John works as an Ethical Hacker for Exambible Inc. He wants to find out the ports that are open in Exambible's server using a port scanner. However, he does not want to establish a full TCP connection.
Which of the following scanning techniques will he use to accomplish this task?

  • A. TCP FIN
  • B. TCP SYN/ACK
  • C. TCP SYN
  • D. Xmas tree

Answer: C

NEW QUESTION 4
Which of the following applications is NOT used for passive OS fingerprinting?

  • A. Networkminer
  • B. Satori
  • C. p0f
  • D. Nmap

Answer: D

NEW QUESTION 5
You are the Administrator for a corporate network. You are concerned about denial of service attacks.
Which of the following would be the most help against Denial of Service (DOS) attacks?

  • A. Packet filtering firewall
  • B. Network surveys.
  • C. Honey pot
  • D. Stateful Packet Inspection (SPI) firewall

Answer: D

NEW QUESTION 6
Which of the following statements about Denial-of-Service (DoS) attack are true?
Each correct answer represents a complete solution. Choose three.

  • A. It disrupts services to a specific computer.
  • B. It changes the configuration of the TCP/IP protocol.
  • C. It saturates network resources.
  • D. It disrupts connections between two computers, preventing communications between services.

Answer: ACD

NEW QUESTION 7
Which of the following penetration testing phases involves gathering data from whois, DNS, and network scanning, which helps in mapping a target network and provides valuable information regarding the operating system and applications running on the systems?

  • A. Post-attack phase
  • B. On-attack phase
  • C. Attack phase
  • D. Pre-attack phase

Answer: D

NEW QUESTION 8
Which of the following statements is true about the difference between worms and Trojan horses?

  • A. Trojan horses are a form of malicious codes while worms are not.
  • B. Trojan horses are harmful to computers while worms are not.
  • C. Worms can be distributed through emails while Trojan horses cannot.
  • D. Worms replicate themselves while Trojan horses do not.

Answer: D

NEW QUESTION 9
Which of the following is spy software that records activity on Macintosh systems via snapshots, keystrokes, and Web site logging?

  • A. Spector
  • B. Magic Lantern
  • C. eblaster
  • D. NetBus

Answer: A

NEW QUESTION 10
203 ms 22.670 ms 20.111 ms 13 0.so-2-0-0.TL1.NYC8.ALTER.NET (152.63.0.153) 30.929 ms 24.858 ms


Solution:


Does this meet the goal?
  • A. Yes
  • B. Not Mastered

Answer: A

NEW QUESTION 11
You check performance logs and note that there has been a recent dramatic increase in the amount of broadcast traffic. What is this most likely to be an indicator of?

  • A. Virus
  • B. Syn flood
  • C. Misconfigured router
  • D. DoS attack

Answer: D

NEW QUESTION 12
Which of the following types of attacks come under the category of hacker attacks?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Smurf
  • B. IP address spoofing
  • C. Teardrop
  • D. Password cracking

Answer: BD

NEW QUESTION 13
Which of the following tools uses common UNIX/Linux tools like the strings and grep commands to search core system programs for signatures of the rootkits?

  • A. rkhunter
  • B. OSSEC
  • C. chkrootkit
  • D. Blue Pill

Answer: C

NEW QUESTION 14
Buffer overflows are one of the major errors used for exploitation on the Internet today. A buffer overflow occurs when a particular operation/function writes more data into a variable than the variable was designed to hold.
Which of the following are the two popular types of buffer overflows?
Each correct answer represents a complete solution. Choose two.

  • A. Dynamic buffer overflows
  • B. Stack based buffer overflow
  • C. Heap based buffer overflow
  • D. Static buffer overflows

Answer: BC

NEW QUESTION 15
Network mapping provides a security testing team with a blueprint of the organization. Which of the following steps is NOT a part of manual network mapping?

  • A. Gathering private and public IP addresses
  • B. Collecting employees information
  • C. Banner grabbing
  • D. Performing Neotracerouting

Answer: D

NEW QUESTION 16
Which of the following is designed to protect the Internet resolvers (clients) from forged DNS data created by DNS cache poisoning?

  • A. Stub resolver
  • B. BINDER
  • C. Split-horizon DNS
  • D. Domain Name System Extension (DNSSEC)

Answer: D

NEW QUESTION 17
Which of the following services CANNOT be performed by the nmap utility?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Passive OS fingerprinting
  • B. Sniffing
  • C. Active OS fingerprinting
  • D. Port scanning

Answer: AB

NEW QUESTION 18
......

Recommend!! Get the Full GCIH dumps in VCE and PDF From Thedumpscentre.com, Welcome to Download: https://www.thedumpscentre.com/GCIH-dumps/ (New 328 Q&As Version)