최신 212-89 무료덤프 - EC-COUNCIL EC Council Certified Incident Handler (ECIH v3)
Francis is an incident handler and security expert. He works at MorisonTech Solutions based in Sydney, Australia. He was assigned a task to detect phishing/spam mails for the client organization.
Which of the following tools can assist Francis to perform the required task?
Which of the following tools can assist Francis to perform the required task?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
Eric is an incident responder and is working on developing incident-handling plans and procedures. As part of this process, he is performing an analysis on the organizational network to generate a report and develop policies based on the acquired results. Which of the following tools will help him in analyzing his network and the related traffic?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
Your manager hands you several items of digital evidence and asks you to investigate them in the order of volatility. Which of the following is the MOST volatile?
정답: C
설명: (DumpTOP 회원만 볼 수 있음)
During the vulnerability assessment phase, the incident responders perform various steps as below:
1. Run vulnerability scans using tools
2. Identify and prioritize vulnerabilities
3. Examine and evaluate physical security
4. Perform OSINT information gathering to validate the vulnerabilities
5. Apply business and technology context to scanner results
6. Check for misconfigurations and human errors
7. Create a vulnerability scan report
Identify the correct sequence of vulnerability assessment steps performed by the incident responders.
1. Run vulnerability scans using tools
2. Identify and prioritize vulnerabilities
3. Examine and evaluate physical security
4. Perform OSINT information gathering to validate the vulnerabilities
5. Apply business and technology context to scanner results
6. Check for misconfigurations and human errors
7. Create a vulnerability scan report
Identify the correct sequence of vulnerability assessment steps performed by the incident responders.
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
Johnson an incident handler is working on a recent web application attack faced by the organization. As part of this process, he performed data preprocessing in order to analyzing and detecting the watering hole attack. He preprocessed the outbound network traffic data collected from firewalls and proxy servers and started analyzing the user activities within a certain time period to create time-ordered domain sequences to perform further analysis on sequential patterns.
Identify the data-preprocessing step performed by Johnson.
Identify the data-preprocessing step performed by Johnson.
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
Which of the following terms refers to the personnel that the incident handling and response (IH&R) team must contact to report the incident and obtain the necessary permissions?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
Otis is an incident handler working in Delmont organization. Recently, the organization is facing several setbacks in the business and thereby its revenues are going down. Otis was asked to take the charge and look into the matter. While auditing the enterprise security, he found the traces of an attack, where the proprietary information was stolen from the enterprise network and was passed onto the competitors.
Which of the following information security incidents Delmont organization faced?
Which of the following information security incidents Delmont organization faced?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
SWA Cloud Services added PKI as one of their cloud security controls. What does PKI stand for?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
Which of the following is a technique used by attackers to make a message difficult to understand through the use of ambiguous language?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
ZYX company experienced a DoS/DDoS attack on their network. Upon investigating the incident, they concluded that the attack is an application-layer attack. Which of the following attacks did the attacker use?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)