EC-COUNCIL Computer Hacking Forensic Investigator - EC1-349 Exam Questions
QUESTION NO: 1
Which of the following passwords are sent over the wire (and wireless) network, or stored on some media as it is typed without any alteration?
Which of the following passwords are sent over the wire (and wireless) network, or stored on some media as it is typed without any alteration?
Correct Answer: A
QUESTION NO: 2
Which of the following commands shows you the NetBIOS name table each?
Which of the following commands shows you the NetBIOS name table each?
Correct Answer: A
QUESTION NO: 3
Mobile phone forensics is the science of recovering digital evidence from a mobile phone under forensically sound conditions.
Mobile phone forensics is the science of recovering digital evidence from a mobile phone under forensically sound conditions.
Correct Answer: A
QUESTION NO: 4
A mobile operating system is the operating system that operates a mobile device like a mobile phone, smartphone, PDA, etc. It determines the functions and features available on mobile devices such as keyboards, applications, email, text messaging, etc. Which of the following mobile operating systems is free and open source?
A mobile operating system is the operating system that operates a mobile device like a mobile phone, smartphone, PDA, etc. It determines the functions and features available on mobile devices such as keyboards, applications, email, text messaging, etc. Which of the following mobile operating systems is free and open source?
Correct Answer: A
QUESTION NO: 5
If a file (readme.txt) on a hard disk has a size of 2600 bytes, how many sectors are normally allocated to this file?
If a file (readme.txt) on a hard disk has a size of 2600 bytes, how many sectors are normally allocated to this file?
Correct Answer: C
QUESTION NO: 6
During the seizure of digital evidence, the suspect can be allowed touch the computer system.
During the seizure of digital evidence, the suspect can be allowed touch the computer system.
Correct Answer: B
QUESTION NO: 7
Which of the following password cracking techniques works like a dictionary attack, but adds some numbers and symbols to the words from the dictionary and tries to crack the password?
Which of the following password cracking techniques works like a dictionary attack, but adds some numbers and symbols to the words from the dictionary and tries to crack the password?
Correct Answer: B
QUESTION NO: 8
The ARP table of a router comes in handy for Investigating network attacks, as the table contains IP addresses associated with the respective MAC addresses.
The ARP table can be accessed using the __________command in Windows 7.
The ARP table of a router comes in handy for Investigating network attacks, as the table contains IP addresses associated with the respective MAC addresses.
The ARP table can be accessed using the __________command in Windows 7.
Correct Answer: A
QUESTION NO: 9
Wireless access control attacks aim to penetrate a network by evading WLAN access control measures, such as AP MAC filters and Wi-Fi port access controls.
Which of the following wireless access control attacks allows the attacker to set up a rogue access point outside the corporate perimeter, and then lure the employees of the organization to connect to it?
Wireless access control attacks aim to penetrate a network by evading WLAN access control measures, such as AP MAC filters and Wi-Fi port access controls.
Which of the following wireless access control attacks allows the attacker to set up a rogue access point outside the corporate perimeter, and then lure the employees of the organization to connect to it?
Correct Answer: C
QUESTION NO: 10
Depending upon the Jurisdictional areas, different laws apply to different incidents. Which of the following law is related to fraud and related activity in connection with computers?
Depending upon the Jurisdictional areas, different laws apply to different incidents. Which of the following law is related to fraud and related activity in connection with computers?
Correct Answer: C
QUESTION NO: 11
Attacker uses vulnerabilities in the authentication or session management functions such as exposed accounts, session IDs, logout, password management, timeouts, remember me. secret question, account update etc. to impersonate users, if a user simply closes the browser without logging out from sites accessed through a public computer, attacker can use the same browser later and exploit the user's privileges. Which of the following vulnerability/exploitation is referred above?
Attacker uses vulnerabilities in the authentication or session management functions such as exposed accounts, session IDs, logout, password management, timeouts, remember me. secret question, account update etc. to impersonate users, if a user simply closes the browser without logging out from sites accessed through a public computer, attacker can use the same browser later and exploit the user's privileges. Which of the following vulnerability/exploitation is referred above?
Correct Answer: C
QUESTION NO: 12
Which of the following approaches checks and compares all the fields systematically and intentionally for positive and negative correlation with each other to determine the correlation across one or multiple fields?
Which of the following approaches checks and compares all the fields systematically and intentionally for positive and negative correlation with each other to determine the correlation across one or multiple fields?
Correct Answer: B
QUESTION NO: 13
What is the first step that needs to be carried out to crack the password?
What is the first step that needs to be carried out to crack the password?
Correct Answer: A
QUESTION NO: 14
What is a bit-stream copy?
What is a bit-stream copy?
Correct Answer: B
