312-49v9 Free Questions – ECCouncil Computer Hacking Forensic Investigator (V9)

ECCouncil certification 312-49v9 exam has become a very popular test in the IT industry, but in order to pass the exam you need to spend a lot of time and effort to master relevant IT professional knowledge. Passquestion provides 312-49v9 Free Questions, which only needs less time to complete and help you well consolidate the related IT professional knowledge to let you have a good preparation for your first time to participate in ECCouncil Computer Hacking Forensic Investigator (V9) 312-49v9 exam.

312-49v9 Free Questions – ECCouncil Computer Hacking Forensic Investigator (V9)

1. What is the First Step required in preparing a computer for forensics investigation?

 
 
 
 

2. Network forensics can be defined as the sniffing, recording, acquisition and analysis of the network traffic and event logs in order to investigate a network security incident.

 
 

3. Which of the following commands shows you the names of all open shared files on a server and number of file locks on each file?

 
 
 
 

4. The Recycle Bin exists as a metaphor for throwing files away, but it also allows user to retrieve and restore files. Once the file is moved to the recycle bin, a record is added to the log file that exists in the Recycle Bin.

Which of the following files contains records that correspond to each deleted file in the Recycle Bin?

 
 
 
 

5. Email archiving is a systematic approach to save and protect the data contained in emails so that it can be accessed fast at a later date. There are two main archive types, namely Local Archive and Server Storage Archive. Which of the following statements is correct while dealing with local archives?

 
 
 
 

6. Which of the following email headers specifies an address for mailer-generated errors, like “no such user” bounce messages, to go to (instead of the sender’s address)?

 
 
 
 

7. Which of the following commands shows you all of the network services running on Windows-based servers?

 
 
 
 

8. Email archiving is a systematic approach to save and protect the data contained in emails so that it can tie easily accessed at a later date.

 
 

9. Which of the following commands shows you the NetBIOS name table each?

 
 
 
 

10. Windows Security Accounts Manager (SAM) is a registry file which stores passwords in a hashed format.

SAM file in Windows is located at:

 
 
 
 

11. FAT32 is a 32-bit version of FAT file system using smaller clusters and results in efficient storage capacity. What is the maximum drive size supported?

 
 
 
 

12. In which step of the computer forensics investigation methodology would you run MD5 checksum on the evidence?

 

 
 
 
 

13. Network forensics allows Investigators to inspect network traffic and logs to identify and locate the attack system

Network forensics can reveal: (Select three answers)

 
 
 
 

14. TCP/IP (Transmission Control Protocol/Internet Protocol) is a communication protocol used to connect different hosts in the Internet. It contains four layers, namely the network interface layer. Internet layer, transport layer, and application layer.

Which of the following protocols works under the transport layer of TCP/IP?

 
 
 
 

15. Which of the following statements does not support the case assessment?

 
 
 
 

16. Wireless access control attacks aim to penetrate a network by evading WLAN access control measures, such as AP MAC filters and Wi-Fi port access controls.

Which of the following wireless access control attacks allows the attacker to set up a rogue access point outside the corporate perimeter, and then lure the employees of the organization to connect to it?

 
 
 
 

17. File deletion is a way of removing a file from a computer’s file system. What happens when a file is deleted in windows7?

 
 
 
 

18. What is cold boot (hard boot)?

 
 
 
 

19. When a file or folder is deleted, the complete path, including the original file name, is stored in a special hidden file called “INF02” in the Recycled folder. If the INF02 file is deleted, it is re-created when you___________.

 
 
 
 

20. WPA2 provides enterprise and Wi-Fi users with stronger data protection and network access control which of the following encryption algorithm is used DVWPA2?

 
 
 
 

ECSAv10 Free Questions - EC-Council Certified Security Analyst
CEH v10 312-50v10 free questions Online- Certified Ethical Hacker

Leave a Reply

Your email address will not be published. Required fields are marked *