IISFA II0-001 CIFI Exam Practice Test Instant Access

Question 1

As a private investigator, you are not required to report most crimes discovered during your investigation unless the crime is in the planning stages, is child exploitation, or issues of national security.

ATrue

BFalse

Answer : A

Question 2

Why is it important to have at least a level 2 NTP server running in your environment?

AIn order to provide News Transfer Protocol services

BSo that all logging devices maintain a consistent time

CYou require a level 1 NTP server, not level 2

DYou require a level 2 NNTP server, not NTP server

Answer : B

Question 3

The following are components of an IP Datagram header except:

AType of Service

BTotal Length

CHeader Checksum

DDefault Gateway address

Answer : D

Question 4

Many malicious attacks are sourced to ISP dial up accounts, what makes this type of attack source a challenge for an investigator?

ABecause ISPs refuse to cooperate with investigations

BDial up accounts are too slow for effective countermeasures.

CDial up accounts typically have dynamic IP addresses

DDial up use SLIP not TCP/IP protocol

Answer : C

Question 5

Expertise in a team leader should include:

AStrong process background

BMinor technical knowledge

CSupervisor with at least 2 years experience

DAbility to work with peers

EBrief understanding of legal issues

Answer : A

Question 6

A copy of the MBR is located on the center of a hard drive?

ATrue

BFalse

Answer : B

Question 7

A forensically safe file viewer can cross not only application but OS boundaries, and they offer the added benefit that:

AThey don't tamper with the data in any way. Opening a Word file in a viewer usually changes nothing, for instance, but opening it in Word can change the modification date and other Properties-style information.

BThey don't tamper with the data in any way however they can change the modification date and other Properties-style information.

COpening a Word file in a viewer can change the modification date and other Properties-style information. When opening the same file in Word usually changes nothing.

DThey will tamper with the data in a subtle way.

Answer : A

IISFA Certified Information Forensics Investigator II0-001 CIFI Exam Practice Test