EC1-349 Exam Details

  • Exam Code
    :EC1-349
  • Exam Name
    :Computer Hacking Forensic Investigator (CHFI)
  • Certification
    :EC-COUNCIL Certifications
  • Vendor
    :EC-COUNCIL
  • Total Questions
    :486 Q&As
  • Last Updated
    :Dec 19, 2024

EC-COUNCIL EC1-349 Online Questions & Answers

  • Question 41:

    Your company's network just finished going through a SAS 70 audit. This audit reported that overall, your network is secure, but there are some areas that needs improvement. The major area was SNMP security. The audit company recommended turning off SNMP, but that is not an option since you have so many remote nodes to keep track of. What step could you take to help secure SNMP on your network?

    A. Block access to TCP port 171
    B. Change the default community string names
    C. Block all internal MAC address from using SNMP
    D. Block access to UDP port 171

  • Question 42:

    What is the following command trying to accomplish? C:\> nmap -sU -p445 192.168.0.0/24

    A. Verify that TCP port 445 is open for the 192.168.0.0 network
    B. Verify that UDP port 445 is open for the 192.168.0.0 network
    C. Verify that UDP port 445 is closed for the 192.168.0.0 network
    D. Verify that NETBIOS is running for the 192.168.0.0 network

  • Question 43:

    What is the smallest physical storage unit on a hard drive?

    A. Track
    B. Cluster
    C. Sector
    D. Platter

  • Question 44:

    What encryption technology is used on Blackberry devices?Password Keeper?

    A. 3DES
    B. AES
    C. Blowfish
    D. RC5

  • Question 45:

    At what layer does a cross site scripting attack occur on?

    A. Presentation
    B. Application
    C. Session
    D. Data Link

  • Question 46:

    When NTFS Is formatted, the format program assigns the __________ sectors to the boot sectors and to the bootstrap code

    A. First 12
    B. First 16
    C. First 22
    D. First 24

  • Question 47:

    Meyer Electronics Systems just recently had a number of laptops stolen out of their office. On these laptops contained sensitive corporate information regarding patents and company strategies. A month after the laptops were stolen, a competing company was found to have just developed products that almost exactly duplicated products that Meyer produces. What could have prevented this information from being stolen from the laptops?

    A. DFS Encryption
    B. EFS Encryption
    C. SDW Encryption
    D. IPS Encryption

  • Question 48:

    Kyle is performing the final testing of an application he developed for the accounting department. His last round of testing is to ensure that the program is as secure as possible. Kyle runs the following command. What is he testing at this point? #include #include int main(int argc, char *argv[]) { char buffer[10]; if (argc < 2) { fprintf (stderr, "USAGE: %s string\n", argv[0]); return 1; } strcpy(buffer, argv[1]); return 0; }

    A. SQL injection
    B. Format string bug
    C. Buffer overflow
    D. Kernal injection

  • Question 49:

    George was recently fired from his job as an IT analyst at Pitts and Company in Dallas Texas. His main duties as an analyst were to support the company Active Directory structure and to create network polices. George now wants to break into the company network by cracking some ofcompany? Active Directory structure and to create network polices. George now wants to break into the company? network by cracking some of the service accounts he knows about. Which password cracking technique should George use in this situation?

    A. Brute force attack
    B. Syllable attack
    C. Rule-based attack
    D. Dictionary attack

  • Question 50:

    When investigating a wireless attack, what information can be obtained from the DHCP logs?

    A. The operating system of the attacker and victim computersThe operating system of the attacker and victim? computers
    B. IP traffic between the attacker and the victim
    C. MAC address of the attacker If any computers on the network are running in promiscuous mode

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only EC-COUNCIL exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your EC1-349 exam preparations and EC-COUNCIL certification application, do not hesitate to visit our Vcedump.com to find your solutions here.