EC-COUNCIL 312-49V10 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-49V10 Online Questions & Answers

• Question 461:

  Attackers can manipulate variables that reference files with "dot-dot-slash (./)" sequences and their variations such as http://www.juggyDoy.corn/GET/process.php./././././././././etc/passwd.

  Identify the attack referred.

  A. Directory traversal
  B. SQL Injection
  C. XSS attack
  D. File injection
  A. Directory traversal

• Question 462:

  A cybercrime investigator is evaluating a data breach in a company's AWS infrastructure. The breached service was categorized as an AWS container service. What primary security aspects were likely managed by the company and not by AWS, which the investigator should first focus on?

  A. Physical infrastructure and foundational services
  B. Network configuration of the container services
  C. Data management and firewall configuration
  D. Application platform and Operating System (OS) security
  C. Data management and firewall configuration

• Question 463:

  A mobile operating system manages communication between the mobile device and other compatible devices like computers, televisions, or printers.

  

  Which mobile operating system architecture is represented here?

  A. webOS System Architecture
  B. Symbian OS Architecture
  C. Android OS Architecture
  D. Windows Phone 7 Architecture
  C. Android OS Architecture

• Question 464:

  With the standard Linux second extended file system (Ext2fs), a file is deleted when the inode internal link count reaches ______

  B. 1
  C. 10
  D. 100
  A

• Question 465:

  Annie is searching for certain deleted files on a system running Windows XP OS. Where will she find the files if they were not completely deleted from the system?

  A. C: $Recycled.Bin
  B. C: \$Recycle.Bin
  C. C:\RECYCLER
  D. C:\$RECYCLER
  B. C: \$Recycle.Bin

• Question 466:

  Analyze the hex representation of mysql-bin.000013 file in the screenshot below. Which of the following will be an inference from this analysis?

  

  A. A user with username bad_guy has logged into the WordPress web application
  B. A WordPress user has been created with the username anonymous_hacker
  C. An attacker with name anonymous_hacker has replaced a user bad_guy in the WordPress database
  D. A WordPress user has been created with the username bad_guy
  D. A WordPress user has been created with the username bad_guy

• Question 467:

  Raw data acquisition format creates ____________of a data set or suspect drive.

  A. Simple sequential flat files
  B. Segmented files
  C. Compressed image files
  D. Segmented image files
  A. Simple sequential flat files

• Question 468:

  Which of the following network attacks refers to sending huge volumes of email to an address in an attempt to overflow the mailbox, or overwhelm the server where the email address is hosted, to cause a denial-of-service attack?

  A. Email spamming
  B. Mail bombing
  C. Phishing
  D. Email spoofing
  B. Mail bombing

• Question 469:

  As a newly appointed Quality Manager in a digital forensics lab, you are reviewing the lab's current Quality Assurance Manual. You notice that the last update to the Quality Management System was four years ago. Which immediate action should you take to ensure compliance with best practices in the industry?

  A. Validate and document the lab equipment
  B. Schedule a proficiency test for investigators
  C. Update and document the Quality Management System
  D. Start the process for ASCLD/LAB accreditation
  C. Update and document the Quality Management System

• Question 470:

  Steve, a forensic investigator, was asked to investigate an email incident in his organization. The organization has Microsoft Exchange Server deployed for email communications. Which among the following files will Steve check to analyze message headers, message text, and standard attachments?

  A. PUB.EDB
  B. PRIV.EDB
  C. PUB.STM
  D. PRIV.STM
  B. PRIV.EDB