Free ECCouncil 312-49v9 Practice Exam with Questions & Answers | Set: 5

Under confession, an accused criminal admitted to encrypting child pornography pictures and then hiding them within other pictures. What technique did the accused criminal employ?

Which password cracking technique uses every possible combination of character sets?

Casey has acquired data from a hard disk in an open source acquisition format that allows her to generate compressed or uncompressed image files. What format did she use?

Which of the following tool enables a user to reset his/her lost admin password in a Windows system?

Why would you need to find out the gateway of a device when investigating a wireless attack?

Which of the following tool can the investigator use to analyze the network to detect Trojan activities?

All Blackberry email is eventually sent and received through what proprietary RIM-operated mechanism?

Where does Encase search to recover NTFS files and folders?

In a virtual test environment, Michael is testing the strength and security of BGP using multiple routers to mimic the backbone of the Internet. This project will help him write his doctoral thesis on "bringing down the Internet". Without sniffing the traffic between the routers, Michael sends millions of RESET packets to the routers in an attempt to shut one or all of them down. After a few hours, one of the routers finally shuts itself down. What will the other routers communicate between themselves?

Jack Smith is a forensics investigator who works for Mason Computer Investigation Services. He is investigating a computer that was infected by Ramen Virus.

He runs the netstat command on the machine to see its current connections. In the following screenshot, what do the 0.0.0.0 IP addresses signify?

Why would a company issue a dongle with the software they sell?

Your company's network just finished going through a SAS 70 audit. This audit reported that overall, your network is secure, but there are some areas that needs improvement. The major area was SNMP security. The audit company recommended turning off SNMP, but that is not an option since you have so many remote nodes to keep track of. What step could you take to help secure SNMP on your network?

On an Active Directory network using NTLM authentication, where on the domain controllers are the passwords stored?

What type of attack sends spoofed UDP packets (instead of ping packets) with a fake source address to the IP broadcast address of a large network?

Which of the following tool creates a bit-by-bit image of an evidence media?