CHFIv9 Changed 312-49v9 Questions

ECCouncil Computer Hacking Forensic Investigator (V9) Questions and Answers

Question 85

Your company uses Cisco routers exclusively throughout the network. After securing the routers to the best of your knowledge, an outside security firm is brought in to assess the network security.

Although they found very few issues, they were able to enumerate the model, OS version, and capabilities for all your Cisco routers with very little effort. Which feature will you disable to eliminate the ability to enumerate this information on your Cisco routers?

Options:

Border Gateway Protocol

Cisco Discovery Protocol

Broadcast System Protocol

Simple Network Management Protocol

Question 86

One way to identify the presence of hidden partitions on a suspect's hard drive is to:

Options:

Add up the total size of all known partitions and compare it to the total size of the hard drive

Examine the FAT and identify hidden partitions by noting an H in the partition Type field

Examine the LILO and note an H in the partition Type field

It is not possible to have hidden partitions on a hard drive

Question 87

Corporate investigations are typically easier than public investigations because:

Options:

the users have standard corporate equipment and software

the investigator does not have to get a warrant

the investigator has to get a warrant

the users can load whatever they want on their machines

Question 88

You have been asked to investigate after a user has reported a threatening e-mail they have received from an external source. Which of the following are you most interested in when trying to trace the source of the message?

Options:

The X509 Address

The SMTP reply Address

The E-mail Header

The Host Domain Name

Labour Day Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

ECCouncil Computer Hacking Forensic Investigator (V9) Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer: