2023 Correct and Up-to-date EC-COUNCIL 312-49v10 BrainDumps
Current 312-49v10 dumps Preparation through Our Practice Test
EC-COUNCIL 312-49v10 Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Topic 1 |
|
| Topic 2 |
|
| Topic 3 |
|
| Topic 4 |
|
NEW QUESTION 268
What will the following Linux command accomplish?
dd if=/dev/mem of=/home/sam/mem.bin bs=1024
- A. Copy the contents of the system folder to a file
- B. Copy the running memory to a file
- C. Copy the master boot record to a file
- D. Copy the memory dump file to an image file
Answer: B
NEW QUESTION 269
James is dealing with a case regarding a cybercrime that has taken place in Arizona, USA.
James needs to lawfully seize the evidence from an electronic device without affecting the user's anonymity. Which of the following law should he comply with, before retrieving the evidence?
- A. First Amendment of the U.S. Constitution
- B. Fourth Amendment of the U.S. Constitution
- C. Fifth Amendment of the U.S. Constitution
- D. Third Amendment of the U.S. Constitution
Answer: C
NEW QUESTION 270
Choose the layer in iOS architecture that provides frameworks for iOS app development?
- A. Core OS
- B. Cocoa Touch
- C. Core services
- D. Media services
Answer: C
NEW QUESTION 271
Buffer overflow vulnerability of a web application occurs when it fails to guard its buffer properly and allows writing beyond its maximum size. Thus, it overwrites the_________. There are multiple forms of buffer overflow, including a Heap Buffer Overflow and a Format String Attack.
- A. Adjacent buffer locations
- B. Adjacent memory locations
- C. Adjacent string locations
- D. Adjacent bit blocks
Answer: B
NEW QUESTION 272
Which of the following Android libraries are used to render 2D (SGL) or 3D (OpenGL/ES) graphics content to the screen?
- A. Surface Manager
- B. WebKit
- C. OpenGL/ES and SGL
- D. Media framework
Answer: C
NEW QUESTION 273
Which of the following files DOES NOT use Object Linking and Embedding (OLE) technology to embed and link to other objects?
- A. MS-office Word PowerPoint
- B. MS-office Word OneNote
- C. MS-office Word Document
- D. Portable Document Format
Answer: D
NEW QUESTION 274
After suspecting a change in MS-Exchange Server storage archive, the investigator has analyzed it. Which of the following components is not an actual part of the archive?
- A. PRIV.EDB
- B. PRIV.STM
- C. PUB.STM
- D. PUB.EDB
Answer: C
NEW QUESTION 275
Terri works for a security consulting firm that is currently performing a penetration test on First National Bank in Tokyo. Terri's duties include bypassing firewalls and switches to gain access to the network. Terri sends an IP packet to one of the company's switches with ACK bit and the source address of her machine set. What is Terri trying to accomplish by sending this IP packet?
- A. Poison the switch's MAC address table by flooding it with ACK bits
- B. Enable tunneling feature on the switch
- C. Trick the switch into thinking it already has a session with Terri's computer
- D. Crash the switch with a DoS attack since switches cannot send ACK bits
Answer: C
NEW QUESTION 276
Which US law does the interstate or international transportation and receiving of child pornography fall under?
- A. §18. U.S.C 252
- B. §18. U.S.C. 1466A
- C. §18. U.S.C 146A
- D. §18. U.S.C 2252
Answer: D
NEW QUESTION 277
Steve received a mail that seemed to have come from her bank. The mail has instructions for Steve to click on a link and provide information to avoid the suspension of her account. The link in the mail redirected her to a form asking for details such as name, phone number, date of birth, credit card number or PIN, CW code, SNNs, and email address. On a closer look, Steve realized that the URL of the form in not the same as that of her bank's. Identify the type of external attack performed by the attacker In the above scenario?
- A. Brute-force
- B. Aphishing
- C. Taiigating
- D. Espionage
Answer: B
NEW QUESTION 278
Hackers can gain access to Windows Registry and manipulate user passwords, DNS settings, access rights or others features that they may need in order to accomplish their objectives. One simple method for loading an application at startup is to add an entry (Key) to the following Registry Hive:
- A. HKEY_LOCAL_MACHINE\hardware\windows\start
- B. HKEY_LOCAL_MACHINE\Software\Microsoft\CurrentVersion\Run
- C. HKEY_CURRENT_USER\Microsoft\Default
- D. HKEY_LOCAL_USERS\Software\Microsoft\old\Version\Load
Answer: B
NEW QUESTION 279
Gary, a computer technician, is facing allegations of abusing children online by befriending them and sending them illicit adult images from his office computer. What type of investigation does this case require?
- A. Criminal Investigation
- B. Civil Investigation
- C. Both Criminal and Administrative Investigation
- D. Administrative Investigation
Answer: A
NEW QUESTION 280
Travis, a computer forensics investigator, is finishing up a case he has been working on for over a month involving copyright infringement and embezzlement. His last task is to prepare an investigative report for the president of the company he has been working for. Travis must submit a hard copy and an electronic copy to this president. In what electronic format should Travis send this report?
- A. WPD
- B. PDF
- C. DOC
- D. TIFF-8
Answer: B
NEW QUESTION 281
In which registry does the system store the Microsoft security IDs?
- A. HKEY_CLASSES_ROOT (HKCR)
- B. HKEY_CURRENT_CONFIG (HKCC)
- C. HKEY_CURRENT_USER (HKCU)
- D. HKEY_LOCAL_MACHINE (HKLM)
Answer: D
NEW QUESTION 282
Frank, a cloud administrator in his company, needs to take backup of the OS disks of two Azure VMs that store business-critical dat a. Which type of Azure blob storage can he use for this purpose?
- A. Page blob
- B. Block blob
- C. Append blob
- D. Medium blob
Answer: A
NEW QUESTION 283
Which network attack is described by the following statement? "At least five Russian major banks came under a continuous hacker attack, although online client services were not disrupted. The attack came from a wide-scale botnet involving at least 24,000 computers, located in 30 countries."
- A. Man-in-the-Middle Attack
- B. Sniffer Attack
- C. DDoS
- D. Buffer Overflow
Answer: C
NEW QUESTION 284
Raw data acquisition format creates _________ of a data set or suspect drive.
- A. Segmented files
- B. Segmented image files
- C. Simple sequential flat files
- D. Compressed image files
Answer: C
NEW QUESTION 285
An investigator has extracted the device descriptor for a 1GB thumb drive that looks like: Disk&Ven_Best_Buy&Prod_Geek_Squad_U3&Rev_6.15. What does the "Geek_Squad" part represent?
- A. Manufacturer Details
- B. Product description
- C. Software or OS used
- D. Developer description
Answer: B
NEW QUESTION 286
Robert is a regional manager working in a reputed organization. One day, he suspected malware attack after unwanted programs started to popup after logging into his computer. The network administrator was called upon to trace out any intrusion on the computer and he/she finds that suspicious activity has taken place within Autostart locations. In this situation, which of the following tools is used by the network administrator to detect any intrusion on a system?
- A. Internet Evidence Finder
- B. Hex Editor
- C. Report Viewer
- D. Process Monitor
Answer: D
NEW QUESTION 287
What type of attack sends spoofed UDP packets (instead of ping packets) with a fake source address to the IP broadcast address of a large network?
- A. Teardrop
- B. Smurf scan
- C. SYN flood
- D. Fraggle
Answer: D
NEW QUESTION 288
The use of warning banners helps a company avoid litigation by overcoming an employee assumed __________________________. When connecting to the company's intranet, network or Virtual Private Network(VPN) and will allow the company's investigators to monitor, search and retrieve information stored within the network.
- A. Right to Internet Access
- B. Right of Privacy
- C. Right of free speech
- D. Right to work
Answer: B
NEW QUESTION 289
In a Linux-based system, what does the command "Last -F" display?
- A. Last functions performed
- B. Last run processes
- C. Login and logout times and dates of the system
- D. Recently opened files
Answer: C
NEW QUESTION 290
In Windows, prefetching is done to improve system performance. There are two types of prefetching: boot prefetching and application prefetching. During boot prefetching, what does the Cache Manager do?
- A. Determines the data associated with value EnablePrefetcher
- B. Checks whether the data is processed
- C. Monitors the first 10 seconds after the process is started
- D. Checks hard page faults and soft page faults
Answer: B
NEW QUESTION 291
Which of the following Windows-based tool displays who is logged onto a computer, either locally or remotely?
- A. Tokenmon
- B. PSLoggedon
- C. TCPView
- D. Process Monitor
Answer: B
NEW QUESTION 292
According to RFC 3227, which of the following is considered as the most volatile item on a typical system?
- A. Temporary system files
- B. Kernel statistics and memory
- C. Registers and cache
- D. Archival media
Answer: C
NEW QUESTION 293
......
100% Reliable Microsoft 312-49v10 Exam Dumps Test Pdf Exam Material: https://vceplus.actualtestsquiz.com/312-49v10-test-torrent.html
