Eccouncil 312-49 Exam Practice Test Instant Access

Question 1

You are the network administrator for a small bank in Dallas, Texas. To ensure network security, you enact a security policy that requires all users to have 14 character passwords. After giving your users 2 weeks notice, you change the Group Policy to force 14 character passwords. A week later you dump the SAM database from the standalone server and run a password-cracking tool against it. Over 99% of the passwords are broken within an hour. Why were these passwords cracked so Quickly?

APasswords of 14 characters or less are broken up into two 7-character hashes

BA password Group Policy change takes at least 3 weeks to completely replicate throughout a network

CNetworks using Active Directory never use SAM databases so the SAM database pulled was empty

DThe passwords that were cracked are local accounts on the Domain Controller

Answer : A

Question 2

Which forensic investigation methodology believes that criminals commit crimes solely to benefit their criminal enterprises?

AScientific Working Group on Digital Evidence

BDaubert Standard

CEnterprise Theory of Investigation

DFyre Standard

Answer : C

Question 3

When using an iPod and the host computer is running Windows, what file system will be used?

AiPod+

BHFS

CFAT16

DFAT32

Answer : D

Question 4

A packet is sent to a router that does not have the packet destination address in its route table.

How will the packet get to its proper destination?

ARoot Internet servers

BBorder Gateway Protocol

CGateway of last resort

DReverse DNS

Answer : C

Question 5

When examining a file with a Hex Editor, what space does the file header occupy?

Athe last several bytes of the file

Bthe first several bytes of the file

Cnone, file headers are contained in the FAT

Done byte at the beginning of the file

Answer : D

Question 6

Which of the following directory contains the binary files or executables required for system maintenance and administrative tasks on a Linux system?

A/sbin

B/bin

C/usr

D/lib

Answer : A

Question 7

When cataloging digital evidence, the primary goal is to

AMake bit-stream images of all hard drives

BPreserve evidence integrity

CNot remove the evidence from the scene

DNot allow the computer to be turned off

Answer : B

Eccouncil 312-49 Computer Hacking Forensic Investigator V10 Exam Practice Test