Free GCIH Exam Dumps

Question 6

Which of the following tools uses common UNIX/Linux tools like the strings and grep commands to search core system programs for signatures of the rootkits?

A. rkhunter
B. OSSEC
C. chkrootkit
D. Blue Pill

Correct Answer:C

Question 7

Firewalking is a technique that can be used to gather information about a remote network protected by a firewall. This technique can be used effectively to perform information gathering attacks. In this technique, an attacker sends a crafted packet with a TTL value that is set to expire one hop past the firewall. Which of the following are pre-requisites for an attacker to conduct firewalking?
Each correct answer represents a complete solution. Choose all that apply.

A. An attacker should know the IP address of a host located behind the firewall.
B. ICMP packets leaving the network should be allowed.
C. There should be a backdoor installed on the network.
D. An attacker should know the IP address of the last known gateway before the firewall.

Correct Answer:ABD

Question 8

Which of the following ensures that the investigation process of incident response team does not break any laws during the response to an incident?

A. Information Security representative
B. Lead Investigator
C. Legal representative
D. Human Resource

Correct Answer:C

Question 9

Which of the following types of attacks is often performed by looking surreptitiously at the keyboard or monitor of an employee's computer?

A. Buffer-overflow attack
B. Shoulder surfing attack
C. Man-in-the-middle attack
D. Denial-of-Service (DoS) attack

Correct Answer:B

Question 10

Which of the following is executed when a predetermined event occurs?

A. Trojan horse
B. Logic bomb
C. MAC
D. Worm

Correct Answer:B