Pass the GIAC Forensics GCFA Questions and answers with ExamsMirror

Which of the following is the correct order of digital investigations Standard Operating Procedure (SOP)?

Which of the following is the correct order of loading system files into the main memory of the system, when the computer is running on Microsoft's Windows XP operating system?

Which of the following articles defines illegal access to the computer or network in Chapter 2 of Section 1, i.e., Substantive criminal law of the Convention on Cybercrime passed by the Council of Europe?

You work as a Network Administrator for Perfect Solutions Inc. The company has a Linux-based network. You are working as a root user on the Linux operating system. While performing some security investigation, you want to see the hostname and IP address from where users logged in.

Which of the following commands will you use to accomplish the task?

Which of the following steps are generally followed in computer forensic examinations?

Each correct answer represents a complete solution. Choose three.

Which of the following registry hives stores information about the file extensions that are mapped to their corresponding applications?

Which of the following types of virus makes changes to a file system of a disk?

John works as a Network Security Professional. He is assigned a project to test the security of www.we-are-secure.com. He is working on the Linux operating system and wants to install an Intrusion Detection System on the We-are-secure server so that he can receive alerts about any hacking attempts. Which of the following tools can John use to accomplish the task?

Each correct answer represents a complete solution. Choose all that apply.

Which of the following is used to back up forensic evidences or data folders from the network or locally attached hard disk drives?

You want to change the attribute of a file named ACE.TXT to Hidden. Which command line will enable you to set the attribute?