Volatile information can be easily modified or lost when the system is shut down or rebooted. It helps to determine a logical timeline of the security incident and the users who would be responsible.
A. False
B. True
正解:B
質問 2:
Which one of the following is not a consideration in a forensic readiness planning checklist?
A. Identify the potential evidence available
B. Define the business states that need digital evidence
C. Take permission from all employees of the organization
D. Decide the procedure for securely collecting the evidence that meets the requirement fn a forensically sound manner
正解:C
質問 3:
When a file or folder is deleted, the complete path, including the original file name, is stored in a special hidden file called "INF02" in the Recycled folder. If the INF02 file is deleted, it is re-created when you___________.
A. Restart Windows
B. Run the antivirus tool on the system
C. Run the anti-spyware tool on the system
D. Kill the running processes in Windows task manager
正解:A
質問 4:
Which of the following would you consider an aspect of organizational security, especially focusing on IT security?
A. Application security
B. Information copyright security
C. Biometric information security
D. Security from frauds
正解:A
質問 5:
Attackers can manipulate variables that reference files with "dot-dot-slash (./)" sequences and their variations such as http://www.juggyDoy.corn/GET/process.php./././././././././etc/passwd.
Identify the attack referred.
A. File injection
B. XSS attack
C. SQL Injection
D. Directory traversal
正解:D
質問 6:
What is static executable file analysis?
A. It is a process that consists of collecting information about and from an executable file by launching an executable file in a controlled and monitored environment
B. It is a process that consists of collecting information about and from an executable file by launching the file under any circumstances
C. It is a process that consists of collecting information about and from an executable file without actually launching an executable file in a controlled and monitored environment
D. It is a process that consists of collecting information about and from an executable file without actually launching the file under any circumstances
正解:D
質問 7:
You can interact with the Registry through intermediate programs. Graphical user interface (GUI) Registry editors such as Regedit.exe or Regedt32 exe are commonly used as intermediate programs in Windows 7. Which of the following is a root folder of the registry editor?
A. HKEY_LOCAL_ADMIN
B. HKEY_CLASSES_ADMIN
C. HKEY_CLASSES_SYSTEM
D. HKEY_USERS
正解:D
質問 8:
Data compression involves encoding the data to take up less storage space and less bandwidth for transmission. It helps in saving cost and high data manipulation in many business applications.
Which data compression technique maintains data integrity?
A. Lossless compression
B. Lossy video compression
C. Speech encoding compression
D. Lossy compression
正解:A



0 お客様のコメント