EC1-349 Exam Details

  • Exam Code
    :EC1-349
  • Exam Name
    :Computer Hacking Forensic Investigator (CHFI)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :486 Q&As
  • Last Updated
    :Dec 19, 2024

EC-COUNCIL EC1-349 Online Questions & Answers

  • Question 461:

    You are a security analyst performing a penetration tests for a company in the Midwest. After some initial reconnaissance, you discover the IP addresses of some Cisco routers used by the company. You type in the following URL that includes the IP address of one of the routers:

    http://172.168.4.131/level/99/exec/show/config

    After typing in this URL, you are presented with the entire configuration file for that router. What have you discovered?

    A. URL Obfuscation Arbitrary Administrative Access Vulnerability
    B. HTML Configuration Arbitrary Administrative Access Vulnerability
    C. Cisco IOS Arbitrary Administrative Access Online Vulnerability
    D. HTTP Configuration Arbitrary Administrative Access Vulnerability

  • Question 462:

    When needing to search for a website that is no longer present on the Internet today but was online few years back, what site can be used to view the website collection of pages?view the website? collection of pages?

    A. Proxify.net
    B. Dnsstuff.com
    C. Samspade.org
    D. Archive.org

  • Question 463:

    When conducting computer forensic analysis, you must guard against ______________ So that you remain focused on the primary job and insure that the level of work does not increase beyond what was originally expected.

    A. Hard Drive Failure
    B. Scope Creep
    C. Unauthorized expenses
    D. Overzealous marketing

  • Question 464:

    How do you define forensic computing?

    A. It is the science of capturing, processing, and investigating data security incidents and making it acceptable to a court of law.
    B. It is a methodology of guidelines that deals with the process of cyber investigation
    C. It Is a preliminary and mandatory course necessary to pursue and understand fundamental principles of ethical hacking
    D. It is the administrative and legal proceeding in the process of forensic investigation

  • Question 465:

    Email spoofing refers to:

    A. The forgery of an email header so that the message appears to have originated from someone or somewhere other than the actual source
    B. The criminal act of sending an illegitimate email, falsely claiming to be from a legitimate site in an attempt to acquire the user's personal or account information
    C. Sending huge volumes of email to an address in an attempt to overflow the mailbox or overwhelm the server where the email address Is hosted to cause a denial-of-service attack
    D. A sudden spike of "Reply All" messages on an email distribution list, caused by one misdirected message

  • Question 466:

    To preserve digital evidence, an investigator should ____________

    A. Make two copies of each evidence item using a single imaging tool
    B. Make a single copy of each evidence item using an approved imaging tool
    C. Make two copies of each evidence item using different imaging tools
    D. Only store the original evidence item

  • Question 467:

    Office documents (Word, Excel, PowerPoint) contain a code that allows tracking the MAC, or unique identifier, of the machine that created the document. What is that code called?

    A. the Microsoft Virtual Machine Identifier
    B. the Personal Application Protocol
    C. the Globally Unique ID
    D. the Individual ASCII String

  • Question 468:

    Which federal computer crime law specifically refers to fraud and related activity in connection with access devices like routers?

    A. 18 U.S.C. 1029
    B. 18 U.S.C. 1362
    C. 18 U.S.C. 2511
    D. 18 U.S.C. 2703

  • Question 469:

    Attackers can manipulate variables that reference files with "dot-dot-slash (./)" sequences and their variations such as http://www.juggyDoy.corn/GET/process.php./././././././././etc/passwd. Identify the attack referred.

    A. Directory traversal
    B. SQL Injection
    C. XSS attack
    D. File injection

  • Question 470:

    Larry is an IT consultant who works for corporations and government agencies. Larry plans on shutting down the city's network using BGP devices and zombies? What type of Penetration Testing is Larry planning to carry out?

    A. Router Penetration Testing
    B. DoS Penetration Testing
    C. Internal Penetration Testing
    D. Firewall Penetration Testing

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC1-349 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.