• Home
  • Blogs
  • [2023] Use Real GIAC Dumps - 100% Free GCIH Exam Dumps [Q113-Q137]

[2023] Use Real GIAC Dumps - 100% Free GCIH Exam Dumps [Q113-Q137]

Share

[2023] Use Real GIAC Dumps - 100% Free GCIH Exam Dumps

Realistic GCIH Dumps Latest GIAC Practice Tests Dumps


GIAC GCIH Exam Syllabus Topics:

TopicDetails
Topic 1
  • Understanding Of Various Client Attacks And How To Defend Against Them
  • Emonstrate A Detailed Understanding Of What Worms, Bots And Bot-Nets Are, And How To Protect Against Them
Topic 2
  • Understanding Of Public And Open Source Reconnaissance Techniques
  • Understanding Of The General Approaches To Get Rid Of The Attacker's Artifacts On Compromised Machines
Topic 3
  • Demonstrate An Understanding Of What Incident Handling Is, Why It Is Important
Topic 4
  • Understanding Of Tools And Techniques Used To Perform Session Hijacking And Cache Poisoning
  • Sql Injection, Cross-Site Scripting And Other Web Session Attacks
Topic 5
  • Demonstrate An Understanding Of The Value Of The Open Web Application Security Project (Owasp)
Topic 6
  • Demonstrate An Understanding Of The Techniques And Tools Used In Scanning, And How To Respond To And Prepare Against Scanning
Topic 7
  • Understanding Of Best Practices To Take In Preparation For An Incident
  • Understanding Of Various Network Attacks And How To Defend Against Them
Topic 8
  • Comprehensive Understanding Of The Different Kinds Of Denial Of Service Attacks And How To Defend Against Them
Topic 9
  • Demonstrate An Understanding Of How Attackers Use Tunneling And Covert Channels To Cover Their Tracks On A Network
Topic 10
  • Understanding Of Scanning Fundamentals; To Discover And Map Networks And Hosts, And Reveal Services And Vulnerabilities
Topic 11
  • Demonstrate An Understanding Of Important Strategies To Gather Events, Analyze Them, And Determine If We Have An Incident

 

NEW QUESTION 113
Which of the following virus is a script that attaches itself to a file or template?

  • A. Boot sector
  • B. E-mail virus
  • C. Macro virus
  • D. Trojan horse

Answer: C

Explanation:
Section: Volume C

 

NEW QUESTION 114
Which of the following protocols is a maintenance protocol and is normally considered a part of the IP layer, but has also been used to conduct denial-of-service attacks?

  • A. L2TP
  • B. NNTP
  • C. ICMP
  • D. TCP

Answer: C

Explanation:
Section: Volume C

 

NEW QUESTION 115
Which of the following types of attacks slows down or stops a server by overloading it with requests?

  • A. Impersonation attack
  • B. DoS attack
  • C. Vulnerability attack
  • D. Network attack

Answer: B

Explanation:
Section: Volume C

 

NEW QUESTION 116
Which of the following terms describes an attempt to transfer DNS zone data?

  • A. Spam
  • B. Encapsulation
  • C. Dumpster diving
  • D. Reconnaissance

Answer: D

 

NEW QUESTION 117
Adam, a novice computer user, works primarily from home as a medical professional. He just bought a brand new Dual Core Pentium computer with over 3 GB of RAM. After about two months of working on his new computer, he notices that it is not running nearly as fast as it used to. Adam uses antivirus software, anti-spyware software, and keeps the computer up-to-date with Microsoft patches. After another month of working on the computer, Adam finds that his computer is even more noticeably slow. He also notices a window or two pop-up on his screen, but they quickly disappear. He has seen these windows show up, even when he has not been on the Internet. Adam notices that his computer only has about 10 GB of free space available. Since his hard drive is a 200 GB hard drive, Adam thinks this is very odd.
Which of the following is the mostly likely the cause of the problem?

  • A. Computer is infected with the Stealth Trojan Virus.
  • B. Computer is infected with the Self-Replication Worm.
  • C. Computer is infected with stealth virus.
  • D. Computer is infected with the stealth kernel level rootkit.

Answer: D

 

NEW QUESTION 118
Rick works as a Computer Forensic Investigator for BlueWells Inc. He has been informed that some confidential information is being leaked out by an employee of the company. Rick suspects that someone is sending the information through email. He checks the emails sent by some employees to other networks. Rick finds out that Sam, an employee of the Sales department, is continuously sending text files that contain special symbols, graphics, and signs. Rick suspects that Sam is using the Steganography technique to send data in a disguised form. Which of the following techniques is Sam using?
Each correct answer represents a part of the solution. Choose all that apply.

  • A. Perceptual masking
  • B. Technical steganography
  • C. Text Semagrams
  • D. Linguistic steganography

Answer: C,D

 

NEW QUESTION 119
A user is sending a large number of protocol packets to a network in order to saturate its resources and to disrupt connections to prevent communications between services. Which type of attack is this?

  • A. Impersonation attack
  • B. Denial-of-Service attack
  • C. Vulnerability attack
  • D. Social Engineering attack

Answer: B

Explanation:
Section: Volume B

 

NEW QUESTION 120
You want to perform passive footprinting against we-are-secure Inc. Web server. Which of the following tools will you
use?

  • A. Netcraft
  • B. Nmap
  • C. Ethereal
  • D. Ettercap

Answer: A

 

NEW QUESTION 121
Which of the following statements is true about the difference between worms and Trojan horses?

  • A. Trojan horses are a form of malicious codes while worms are not.
  • B. Worms replicate themselves while Trojan horses do not.
  • C. Trojan horses are harmful to computers while worms are not.
  • D. Worms can be distributed through emails while Trojan horses cannot.

Answer: B

 

NEW QUESTION 122
Which of the following describes network traffic that originates from the inside of a network perimeter and progresses towards the outside?

  • A. Inwards network
  • B. Egress network
  • C. Ingress network
  • D. Outwards network

Answer: B

Explanation:
Explanation/Reference:

 

NEW QUESTION 123
Which of the following programs can be used to detect stealth port scans performed by a malicious hacker?
Each correct answer represents a complete solution. Choose all that apply.

  • A. portsentry
  • B. libnids
  • C. nmap
  • D. scanlogd

Answer: A,B,D

Explanation:
Section: Volume B

 

NEW QUESTION 124
Jason, a Malicious Hacker, is a student of Baker university. He wants to perform remote hacking on the server of
DataSoft Inc. to hone his hacking skills. The company has a Windows-based network. Jason successfully enters the
target system remotely by using the advantage of vulnerability. He places a Trojan to maintain future access and then
disconnects the remote session. The employees of the company complain to Mark, who works as a Professional
Ethical Hacker for DataSoft Inc., that some computers are very slow. Mark diagnoses the network and finds that some
irrelevant log files and signs of Trojans are present on the computers. He suspects that a malicious hacker has
accessed the network. Mark takes the help from Forensic Investigators and catches Jason.
Which of the following mistakes made by Jason helped the Forensic Investigators catch him?

  • A. Jason did not perform OS fingerprinting.
  • B. Jason did not perform covering tracks.
  • C. Jason did not perform foot printing.
  • D. Jason did not perform port scanning.
  • E. Jason did not perform a vulnerability assessment.

Answer: B

 

NEW QUESTION 125
Rick works as a Professional Ethical Hacker for PassGuide Inc. The company has opened a new branch that uses
Windows-based computers. Rick has been assigned a project to check the network security of the new branch office.
He wants to ensure that the company is free from remote hacking attacks.
Choose the appropriate steps that Rick should perform to accomplish the task.

Answer:

Explanation:

 

NEW QUESTION 126
You work as a professional Ethical Hacker. You are assigned a project to test the security of www.weare- secure.com. You somehow enter in we-are-secure Inc. main server, which is Windows based.
While you are installing the NetCat tool as a backdoor in the we-are-secure server, you see the file credit.dat having the list of credit card numbers of the company's employees. You want to transfer the credit.dat file in your local computer so that you can sell that information on the internet in the good price. However, you do not want to send the contents of this file in the clear text format since you do not want that the Network Administrator of the we-are-secure Inc. can get any clue of the hacking attempt. Hence, you decide to send the content of the credit.dat file in the encrypted format.
What steps should you take to accomplish the task?

  • A. You will use CryptCat instead of NetCat.
  • B. You will use the ftp service.
  • C. You will use brutus.
  • D. You will use Wireshark.

Answer: A

Explanation:
Section: Volume C

 

NEW QUESTION 127
Adam works as a Security Administrator for Umbrella Technology Inc. He reported a breach in security to his senior members, stating that "security defenses has been breached and exploited for 2 weeks by hackers." The hackers had accessed and downloaded 50,000 addresses containing customer credit cards and passwords. Umbrella Technology was looking to law enforcement officials to protect their intellectual property.
The intruder entered through an employee's home machine, which was connected to Umbrella Technology's corporate VPN network. The application called BEAST Trojan was used in the attack to open a "back door" allowing the hackers undetected access. The security breach was discovered when customers complained about the usage of their credit cards without their knowledge.
The hackers were traced back to Shanghai, China through e-mail address evidence. The credit card information was sent to that same e-mail address. The passwords allowed the hackers to access Umbrella Technology's network from a remote location, posing as employees.
Which of the following actions can Adam perform to prevent such attacks from occurring in future?

  • A. Allow VPN access but replace the standard authentication with biometric authentication
  • B. Replace the VPN access with dial-up modem access to the company's network
  • C. Apply different security policy to make passwords of employees more complex
  • D. Disable VPN access to all employees of the company from home machines

Answer: D

 

NEW QUESTION 128
Which of the following languages are vulnerable to a buffer overflow attack?
Each correct answer represents a complete solution. Choose all that apply.

  • A. C++
  • B. C
  • C. Java
  • D. Action script

Answer: A,B

 

NEW QUESTION 129
John visits an online shop that stores the IDs and prices of the items to buy in a cookie. After selecting the items that he wants to buy, the attacker changes the price of the item to 1.
Original cookie values:
ItemID1=2
ItemPrice1=900
ItemID2=1
ItemPrice2=200
Modified cookie values:
ItemID1=2
ItemPrice1=1
ItemID2=1
ItemPrice2=1
Now, he clicks the Buy button, and the prices are sent to the server that calculates the total price.
Which of the following hacking techniques is John performing?

  • A. Computer-based social engineering
  • B. Cookie poisoning
  • C. Cross site scripting
  • D. Man-in-the-middle attack

Answer: B

Explanation:
Section: Volume B

 

NEW QUESTION 130
Which of the following are the limitations for the cross site request forgery (CSRF) attack?
Each correct answer represents a complete solution. Choose all that apply.

  • A. The attacker must determine the right values for all the form inputs.
  • B. The attacker must target a site that doesn't check the referrer header.
  • C. The target site should authenticate in GET and POST parameters, not only cookies.
  • D. The target site should have limited lifetime authentication cookies.

Answer: A,B

Explanation:
Section: Volume C

 

NEW QUESTION 131
Which of the following tools is used to attack the Digital Watermarking?

  • A. Active Attacks
  • B. Gifshuffle
  • C. 2Mosaic
  • D. Steg-Only Attack

Answer: C

 

NEW QUESTION 132
John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He wants to perform a stealth scan to discover open ports and applications running on the We-are-secure server. For this purpose, he wants to initiate scanning with the IP address of any third party. Which of the following scanning techniques will John use to accomplish his task?

  • A. RPC
  • B. TCP SYN/ACK
  • C. UDP
  • D. IDLE

Answer: D

 

NEW QUESTION 133
Session splicing is an IDS evasion technique in which an attacker delivers data in multiple small-sized packets to the
target computer. Hence, it becomes very difficult for an IDS to detect the attack signatures of such attacks. Which of
the following tools can be used to perform session splicing attacks?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Nessus
  • B. Whisker
  • C. Fragroute
  • D. Y.A.T.

Answer: A,B

 

NEW QUESTION 134
Which of the following are the automated tools that are used to perform penetration testing?
Each correct answer represents a complete solution. Choose two.

  • A. Nessus
  • B. Pwdump
  • C. EtherApe
  • D. GFI LANguard

Answer: A,D

 

NEW QUESTION 135
Which of the following are countermeasures to prevent unauthorized database access attacks?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Input sanitization
  • B. Applying strong firewall rules
  • C. Removing all stored procedures
  • D. Session encryption

Answer: A,B,C,D

 

NEW QUESTION 136
You work as a System Administrator in SunSoft Inc. You are running a virtual machine on Windows Server
2003. The virtual machine is protected by DPM. Now, you want to move the virtual machine to another host.
Which of the following steps can you use to accomplish the task?
Each correct answer represents a part of the solution. Choose all that apply.

  • A. Remove the original virtual machine from the old server and stop the protection for the original virtual machine.
  • B. Run consistency check.
  • C. Add the copied virtual machine to a protection group.
  • D. Copy the virtual machine to the new server.

Answer: A,C,D

Explanation:
Section: Volume B
Explanation

 

NEW QUESTION 137
......


Conclusion

A candidate’s success in the GIAC GCIH evaluation is determined by his/her ability to combine different types of preparation materials and organize an effective training routine. Apart from following the exam blueprint, the test-takers will improve their chances to pass this test if they use the books available on Amazon and enroll in the official classes provided by the training provider.

 

GCIH Dumps PDF - GCIH Real Exam Questions Answers: https://www.easy4engine.com/GCIH-test-engine.html

GCIH Exam [2023] Dumps GIAC PDF Questions: https://drive.google.com/open?id=1UnW58SkSQLT_wSGj1ym5beJxfqnnvGOA

Related Blogs

more
GIAC GCIH Certification Practice Exam

The best valid training material for better understanding of the actual test. Study and prepare efficiently with the products of Easy4engine.

Latest Update

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 EASY4ENGINE.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor. Privacy Policy