GIAC Certified Incident Handler - GCIH Exam Practice Test

Which of the following describes network traffic that originates from the inside of a network perimeter and progresses towards the outside?
Correct Answer: B Vote an answer
You work as a System Engineer for Cyber World Inc. Your company has a single Active Directory domain.
All servers in the domain run Windows Server 2008. The Microsoft Hyper-V server role has been installed on one of the servers, namely uC1. uC1 hosts twelve virtual machines. You have been given the task to configure the Shutdown option for uC1, so that each virtual machine shuts down before the main Hyper-V server shuts down. Which of the following actions will you perform to accomplish the task?
Correct Answer: D Vote an answer
Which of the following applications is an example of a data-sending Trojan?
Correct Answer: B Vote an answer
US Garments wants all encrypted data communication between corporate office and remote location.
They want to achieve following results:
l Authentication of users
l Anti-replay
l Anti-spoofing
l IP packet encryption
They implemented IPSec using Authentication Headers (AHs). Which results does this solution provide?
Each correct answer represents a complete solution. Choose all that apply.
Correct Answer: C,D Vote an answer
Your company has been hired to provide consultancy, development, and integration services for a company named Brainbridge International. You have prepared a case study to plan the upgrade for the company. Based on the case study, which of the following steps will you suggest for configuring WebStore1?
Each correct answer represents a part of the solution. Choose two.
Correct Answer: A,D Vote an answer
You are concerned about rootkits on your network communicating with attackers outside your network.
Without using an IDS how can you detect this sort of activity?
Correct Answer: C Vote an answer
Which of the following techniques is used when a system performs the penetration testing with the objective of accessing unauthorized information residing inside a computer?
Correct Answer: D Vote an answer
Adam works as a Network administrator for Umbrella Inc. He noticed that an ICMP ECHO requests is coming from some suspected outside sources. Adam suspects that some malicious hacker is trying to perform ping sweep attack on the network of the company. To stop this malicious activity, Adam blocks the ICMP ECHO request from any outside sources.
What will be the effect of the action taken by Adam?
Correct Answer: B Vote an answer
What is the major difference between a worm and a Trojan horse?
Correct Answer: C Vote an answer
Which of the following are countermeasures to prevent unauthorized database access attacks?
Each correct answer represents a complete solution. Choose all that apply.
Correct Answer: A,B,C,D Vote an answer