Summer Certification Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = getmirror

Pass the GIAC Cyber Security GCCC Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.
Exam GCCC Premium Access

View all detail and faqs for the GCCC exam

Go to Exam

751 Students Passed

88% Average Score

93% Same Questions
Viewing page 2 out of 3 pages
Viewing questions 11-20 out of questions
Questions # 11:

Allied services have recently purchased NAC devices to detect and prevent non-company owned devices from attaching to their internal wired and wireless network. Corporate devices will be automatically added to the approved device list by querying Active Directory for domain devices. Non-approved devices will be placed on a protected VLAN with no network access. The NAC also offers a web portal that can be integrated with Active Directory to allow for employee device registration which will not be utilized in this deployment. Which of the following recommendations would make NAC installation more secure?

Options:

A.

Enforce company configuration standards for personal mobile devices

B.

Configure Active Directory to push an updated inventory to the NAC daily

C.

Disable the web portal device registration service

D.

Change the wireless password following the NAC implementation

Questions # 12:

Which of the following assigns a number indicating the severity of a discovered software vulnerability?

Options:

A.

CPE

B.

CVE

C.

CCE

D.

CVSS

Questions # 13:

Which activity increases the risk of a malware infection?

Options:

A.

Charging a smartphone using a computer USB port

B.

Editing webpages with a Linux system

C.

Reading email using a plain text email client

D.

Online banking in Incognito mode

Questions # 14:

If an attacker wanted to dump hashes or run wmic commands on a target machine, which of the following tools would he use?

Options:

A.

Mimikatz

B.

OpenVAS

C.

Metasploit

Questions # 15:

An organization has implemented a control for Controlled Use of Administrative Privileges. They are collecting audit data for each login, logout, and location for the root account of their MySQL server, but they are unable to attribute each of these logins to a specific user. What action can they take to rectify this?

Options:

A.

Force the root account to only be accessible from the system console.

B.

Turn on SELinux and user process accounting for the MySQL server.

C.

Force user accounts to use ‘sudo’ f or privileged use.

D.

Blacklist client applications from being run in privileged mode.

Questions # 16:

An organization has failed a test for compliance with a policy of continual detection and removal of malicious software on its network. Which of the following errors is the root cause?

Options:

A.

A host ran malicious software that exploited a vulnerability for which there was no patch

B.

The security console alerted when a host anti-virus ran whitelisted software

C.

The intrusion prevention system failed to update to the newest signature list

D.

A newly discovered vulnerability was not detected by the intrusion detection system

Questions # 17:

Executive management approved the storage of sensitive data on smartphones and tablets as long as they were encrypted. Later a vulnerability was announced at an information security conference that allowed attackers to bypass the device’s authentication process, making the data accessible. The smartphone manufacturer said it would take six months for the vulnerability to be fixed and distributed through the cellular carriers. Four months after the vulnerability was announced, an employee lost his tablet and the sensitive information became public.

What was the failure that led to the information being lost?

Options:

A.

There was no risk acceptance review after the risk changed

B.

The employees failed to maintain their devices at the most current software version

C.

Vulnerability scans were not done to identify the devices that we at risk

D.

Management had not insured against the possibility of the information being lost

Questions # 18:

Which of the following items would be used reactively for incident response?

Options:

A.

A schedule for creating and storing backup

B.

A phone tree used to contact necessary personnel

C.

A script used to verify patches are installed on systems

D.

An IPS rule that prevents web access from international locations

Questions # 19:

As part of a scheduled network discovery scan, what function should the automated scanning tool perform?

Options:

A.

Uninstall listening services that have not been used since the last scheduled scan

B.

Compare discovered ports and services to a known baseline to report deviations

C.

Alert the incident response team on ports and services added since the last scan

D.

Automatically close ports and services not included in the current baseline

Questions # 20:

Given the audit finding below, which CIS Control was being measured?

Question # 20

Options:

A.

Controlled Access Based on the Need to Know

B.

Controlled Use of Administrative Privilege

C.

Limitation and Control of Network Ports, Protocols and Services

D.

Secure Configurations for Hardware and Software on Laptops, Workstations, and Servers

E.

Inventory and Control of Hardware Assets

Viewing page 2 out of 3 pages
Viewing questions 11-20 out of questions
TOP CODES

TOP CODES

Top selling exam codes in the certification world, popular, in demand and updated to help you pass on the first try.

2V0-11.25
ADM-201
Agentforce-Specialist
CMMC-CCP
Data-Cloud-Consultant
PDI
PSE-Strata-Pro-24
Secure-Software-Design
Sharing-and-Visibility-Architect
Workday-Pro-Integrations
ZDTA