1051 お客様のコメント
質問 1:
Which tool allows dumping the contents of process memory without stopping the process?
A. pdump.exe
B. processdump.exe
C. psdump.exe
D. pmdump.exe
正解:D
質問 2:
What stage of the incident handling process involves reporting events?
A. Identification
B. Follow-up
C. Containment
D. Recovery
正解:A
質問 3:
While searching through a computer under investigation, you discover numerous files that appear to have had the first letter of the file name replaced by the hex code byte 5h. What does this indicate on the computer?
A. The files have been marked as read-only
B. The files are corrupt and cannot be recovered
C. The files have been marked as hidden
D. The files have been marked for deletion
正解:D
質問 4:
Consider that you are investigating a machine running an Windows OS released prior to Windows Vist a. You are trying to gather information about the deleted files by examining the master database file named INFO2 located at C:\Recycler\<USER SID>\. You read an entry named "Dd5.exe". What does Dd5.exe mean?
A. D drive, fourth file deleted, a .exe file
B. D drive. fifth file deleted, a .exe file
C. D drive, fourth file restored, a .exe file
D. D drive, sixth file deleted, a .exe file
正解:C
質問 5:
You are trying to locate Microsoft Outlook Web Access Default Portal using Google search on the Internet. What search string will you use to locate them?
A. locate:"logon page"
B. outlook:"search"
C. allinurl:"exchange/logon.asp"
D. intitle:"exchange server"
正解:C
質問 6:
Which of the following refers to the data that might still exist in a cluster even though the original file has been overwritten by another file?
A. Sector
B. Metadata
C. MFT
D. Slack Space
正解:D
質問 7:
Which of the following file system is used by Mac OS X?
A. NFS
B. HFS+
C. EXT2
D. EFS
正解:B
質問 8:
Which of the following Android libraries are used to render 2D (SGL) or 3D (OpenGL/ES) graphics content to the screen?
A. WebKit
B. Surface Manager
C. Media framework
D. OpenGL/ES and SGL
正解:D
Which tool allows dumping the contents of process memory without stopping the process?
A. pdump.exe
B. processdump.exe
C. psdump.exe
D. pmdump.exe
正解:D
質問 2:
What stage of the incident handling process involves reporting events?
A. Identification
B. Follow-up
C. Containment
D. Recovery
正解:A
質問 3:
While searching through a computer under investigation, you discover numerous files that appear to have had the first letter of the file name replaced by the hex code byte 5h. What does this indicate on the computer?
A. The files have been marked as read-only
B. The files are corrupt and cannot be recovered
C. The files have been marked as hidden
D. The files have been marked for deletion
正解:D
質問 4:
Consider that you are investigating a machine running an Windows OS released prior to Windows Vist a. You are trying to gather information about the deleted files by examining the master database file named INFO2 located at C:\Recycler\<USER SID>\. You read an entry named "Dd5.exe". What does Dd5.exe mean?
A. D drive, fourth file deleted, a .exe file
B. D drive. fifth file deleted, a .exe file
C. D drive, fourth file restored, a .exe file
D. D drive, sixth file deleted, a .exe file
正解:C
質問 5:
You are trying to locate Microsoft Outlook Web Access Default Portal using Google search on the Internet. What search string will you use to locate them?
A. locate:"logon page"
B. outlook:"search"
C. allinurl:"exchange/logon.asp"
D. intitle:"exchange server"
正解:C
質問 6:
Which of the following refers to the data that might still exist in a cluster even though the original file has been overwritten by another file?
A. Sector
B. Metadata
C. MFT
D. Slack Space
正解:D
質問 7:
Which of the following file system is used by Mac OS X?
A. NFS
B. HFS+
C. EXT2
D. EFS
正解:B
質問 8:
Which of the following Android libraries are used to render 2D (SGL) or 3D (OpenGL/ES) graphics content to the screen?
A. WebKit
B. Surface Manager
C. Media framework
D. OpenGL/ES and SGL
正解:D
桐沢** -
間違い選択肢についても確認できる。
いろいろ問題集が出てますが、圧倒的に良いと思います。