최신 212-89 무료덤프 - EC-COUNCIL EC Council Certified Incident Handler (ECIH v3)

문제1

Shiela is working at night as an incident handler. During a shift, servers were affected by a massive cyberattack. After she classified and prioritized the incident, she must report the incident, obtain necessary permissions, and perform other incident response functions. What list should she check to notify other responsible personnel?

A. Point of contact

B. HR log book

C. Phone number list

D. Email list

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제2

Which of the following terms refers to an organization's ability to make optimal use of digital evidence in a limited period of time and with minimal investigation costs?

A. Data analysis

B. Forensic readiness

C. Risk assessment

D. Threat assessment

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제3

In which of the following types of insider threats an insider who is uneducated on potential security threats or simply bypasses general security procedures to meet workplace efficiency?

A. Professional insider

B. Malicious insider

C. Compromised insider

D. Negligent insider

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제4

Oscar receives an email from an unknown source containing his domain name oscar.com. Upon checking the link, he found that it contains a malicious URL that redirects to the website evilsite.org. What type of vulnerability is this?

A. Unvalidated redirects and forwards

B. Malware

C. SQL injection

D. Bolen

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제5

Which of the following details are included in the evidence bags?

A. Error messages that contain sensitive information and files containing passworos

B. Software version information and web application source code

C. Date and time of seizure, exhibit number, anc name of incident responder

D. Sensitive cirectories, personal, and organizational email adcress

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제6

After a recent email attack, Harry is analyzing the incident to obtain important information related to the incident. While investigating the incident, he is trying to extract information such as sender identity, mail server, sender's IP address, location, and so on.
Which of the following tools Harry must use to perform this task?

A. Clamwin

B. Sharp

C. Logly

D. Yesware

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제7

An incident handler is analyzing email headers to find out suspicious emails.
Which of the following tools he/she must use in order to accomplish the task?

A. Barracuda Email Security Gateway

B. SPAMfighter

C. Gophish

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제8

Which of the following does NOT reduce the success rate of SQL injection?

A. Close unnecessary application services and ports on the server.

B. Automatically lock a user account after a predefined number of invalid login attempts within a predefined interval.

C. Limit the length of the input field.

D. Constrain legitimate characters to exclude special characters.

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제9

Which of the following tools helps incident responders effectively contain a potential cloud security incident and gather required forensic evidence?

A. CloudPassage Quarantine

B. Cloud Passage Halo

C. Qualys Cloud Platform

D. Alert Logic

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제10

Jason is setting up a computer forensics lab and must perform the following steps: 1. physical location and structural design considerations; 2. planning and budgeting; 3. work area considerations; 4. physical security recommendations; 5. forensic lab licensing; 6. human resource considerations. Arrange these steps in the order of execution.

A. 2->3->l ->4->6->5

B. 3 .> 2 -> 1 -> 4-> 6-> 5

C. 5-> 2-> l-> 3-> 4-> 6

D. 2 -> 1 -> 3 -> 6 -> 4 -> 5

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

최신 212-89 무료덤프 - EC-COUNCIL EC Council Certified Incident Handler (ECIH v3)

우리와 연락하기

유용한 링크

최신 업데이트