Login / Register   My Cart (0)
  • Home
  • Articles
  • 2022 Realistic GCIH Dumps Exam Tips Test Pdf Exam Material [Q44-Q64]

2022 Realistic GCIH Dumps Exam Tips Test Pdf Exam Material [Q44-Q64]

Share

2022 Realistic GCIH Dumps Exam Tips Test Pdf Exam Material

Powerful GCIH PDF Dumps for GCIH Questions

NEW QUESTION 44
You work as a Network Administrator for Marioxnet Inc. You have the responsibility of handling two routers with BGP protocol for the enterprise's network. One of the two routers gets flooded with an unexpected number of data packets, while the other router starves with no packets reaching it. Which of the following attacks can be a potential cause of this?

  • A. Packet manipulation
  • B. Denial-of-Service
  • C. Spoofing
  • D. Eavesdropping

Answer: B

 

NEW QUESTION 45
Which of the following Linux rootkits allows an attacker to hide files, processes, and network connections?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Adore
  • B. Beastkit
  • C. Knark
  • D. Phalanx2

Answer: A,C

Explanation:
Section: Volume C

 

NEW QUESTION 46
Victor works as a professional Ethical Hacker for SecureNet Inc. He wants to use Steganographic file system method to encrypt and hide some secret information. Which of the following disk spaces will he use to store this secret information?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Dumb space
  • B. Slack space
  • C. Hidden partition
  • D. Unused Sectors

Answer: B,C,D

Explanation:
Section: Volume C

 

NEW QUESTION 47
Fill in the blank with the appropriate term.
______ is a technique used to make sure that incoming packets are actually from the networks that they claim to be from.

Answer:

Explanation:
Ingress filtering

 

NEW QUESTION 48
An Active Attack is a type of steganography attack in which the attacker changes the carrier during the communication process. Which of the following techniques is used for smoothing the transition and controlling contrast on the hard edges, where there is significant color transition?

  • A. Rotate
  • B. Sharpen
  • C. Blur
  • D. Soften

Answer: C

 

NEW QUESTION 49
Victor is a novice Ethical Hacker. He is learning the hacking process, i.e., the steps taken by malicious hackers to
perform hacking. Which of the following steps is NOT included in the hacking process?

  • A. Preparation
  • B. Reconnaissance
  • C. Scanning
  • D. gaining access

Answer: A

 

NEW QUESTION 50
Brutus is a password cracking tool that can be used to crack the following authentications:
* HTTP (Basic Authentication)
* HTTP (HTML Form/CGI)
* POP3 (Post Office Protocol v3)
* FTP (File Transfer Protocol)
* SMB (Server Message Block)
* Telnet
Which of the following attacks can be performed by Brutus for password cracking?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Dictionary attack
  • B. Brute force attack
  • C. Hybrid attack
  • D. Man-in-the-middle attack
  • E. Replay attack

Answer: A,B,C

 

NEW QUESTION 51
John works as a professional Ethical Hacker. He has been assigned a project to test the security of www.we-are-
secure.com. On the We-are-secure login page, he enters ='or''=' as a username and successfully logs in to the user
page of the Web site. The We-are-secure login page is vulnerable to a __________.

  • A. SQL injection attack
  • B. Dictionary attack
  • C. Land attack
  • D. Replay attack

Answer: A

 

NEW QUESTION 52
Which of the following statements is true about a Trojan engine?

  • A. It specifies the signatures that keep a watch for a host or a network sending multiple packets to a
    single host or a single network.
  • B. It analyzes the nonstandard protocols, such as TFN2K and BO2K.
  • C. It limits the system resource usage.
  • D. It specifies events that occur in a related manner within a sliding time interval.

Answer: B

 

NEW QUESTION 53
John works as a professional Ethical Hacker. He has been assigned a project to test the security of www.we-are-
secure.com. He performs Web vulnerability scanning on the We-are-secure server. The output of the scanning test is
as follows:
C:\whisker.pl -h target_IP_address
-- whisker / v1.4.0 / rain forest puppy / www.wiretrip.net -- = - = - = - = - =
= Host: target_IP_address
= Server: Apache/1.3.12 (Win32) ApacheJServ/1.1
mod_ssl/2.6.4 OpenSSL/0.9.5a mod_perl/1.22
+ 200 OK: HEAD /cgi-bin/printenv
John recognizes /cgi-bin/printenv vulnerability ('Printenv' vulnerability) in the We_are_secure server. Which of the
following statements about 'Printenv' vulnerability are true?
Each correct answer represents a complete solution. Choose all that apply.

  • A. The countermeasure to 'printenv' vulnerability is to remove the CGI script.
  • B. With the help of 'printenv' vulnerability, an attacker can input specially crafted links and/or other malicious scripts.
  • C. This vulnerability helps in a cross site scripting attack.
  • D. 'Printenv' vulnerability maintains a log file of user activities on the Website, which may be useful for the attacker.

Answer: A,B,C

 

NEW QUESTION 54
Adam works as a Security Administrator for the Umbrella Inc. A project has been assigned to him to strengthen the security policies of the company, including its password policies. However, due to some old applications, Adam is only able to enforce a password group policy in Active Directory with a minimum of 10 characters. He informed the employees of the company, that the new password policy requires that everyone must have complex passwords with at least 14 characters. Adam wants to ensure that everyone is using complex passwords that meet the new security policy requirements. He logged on to one of the network's domain controllers and runs the following command:

Which of the following actions will this command take?

  • A. Dumps the SAM password file to pwd.txt
  • B. Dumps the SAM password hashes to pwd.txt
  • C. Dumps the Active Directory password hashes to pwd.txt
  • D. The password history file is transferred to pwd.txt

Answer: B

Explanation:
Section: Volume B

 

NEW QUESTION 55
Adam, a malicious hacker purposely sends fragmented ICMP packets to a remote target. The total size of this ICMP
packet once reconstructed is over 65,536 bytes. On the basis of above information, which of the following types of
attack is Adam attempting to perform?

  • A. Ping of death attack
  • B. Land attack
  • C. SYN Flood attack
  • D. Fraggle attack

Answer: A

 

NEW QUESTION 56
CORRECT TEXT
Fill in the blank with the appropriate name of the attack.
______ takes best advantage of an existing authenticated connection

Answer:

Explanation:
session hijacking

 

NEW QUESTION 57
Which of the following tools is used for vulnerability scanning and calls Hydra to launch a dictionary attack?

  • A. Nmap
  • B. SARA
  • C. Whishker
  • D. Nessus

Answer: D

 

NEW QUESTION 58
Which of the following types of malware can an antivirus application disable and destroy?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Crimeware
  • B. Rootkit
  • C. Trojan
  • D. Virus
  • E. Adware
  • F. Worm

Answer: B,C,D,F

Explanation:
Section: Volume B

 

NEW QUESTION 59
Which of the following types of attacks is mounted with the objective of causing a negative impact on the performance of a computer or network?

  • A. Vulnerability attack
  • B. Impersonation attack
  • C. Man-in-the-middle attack
  • D. Denial-of-Service (DoS) attack

Answer: D

Explanation:
Section: Volume A

 

NEW QUESTION 60
Which of the following virus is a script that attaches itself to a file or template?

  • A. Boot sector
  • B. E-mail virus
  • C. Trojan horse
  • D. Macro virus

Answer: D

 

NEW QUESTION 61
Which of the following is the process of comparing cryptographic hash functions of system executables and configuration files?

  • A. Shoulder surfing
  • B. Reconnaissance
  • C. File integrity auditing
  • D. Spoofing

Answer: C

Explanation:
Section: Volume B
Explanation

 

NEW QUESTION 62
Which of the following tools will you use to prevent from session hijacking?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Rlogin
  • B. Telnet
  • C. SSL
  • D. OpenSSH

Answer: C,D

Explanation:
Section: Volume B

 

NEW QUESTION 63
Andrew, a bachelor student of Faulkner University, creates a gmail account. He uses 'Faulkner' as the password for the gmail account. After a few days, he starts receiving a lot of e-mails stating that his gmail account has been hacked. He also finds that some of his important mails have been deleted by someone.
Which of the following methods has the attacker used to crack Andrew's password?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Social engineering
  • B. Buffer-overflow attack
  • C. Zero-day attack
  • D. Denial-of-service (DoS) attack
  • E. Brute force attack
  • F. Password guessing
  • G. Rainbow attack
  • H. Dictionary-based attack

Answer: A,E,F,G,H

Explanation:
Section: Volume B

 

NEW QUESTION 64
......

Guaranteed Accomplishment with Newest Mar-2022 FREE: https://testking.testpassed.com/GCIH-pass-rate.html

Related Articles

more
GIAC GCIH Certification Practice Exam

If you choose TestPassed test questions, you will pass test and gain success surely! Top-level faculty and excellent educational experts guarantee high-quality test questions which make users pass exam certainly.

Latest Test Passed

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 TestPassed NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy