GIAC GCIH Exam Dumps [2018 NOV] - 100% Valid Questions

Security Administration 

GCIH 

GIAC Certified Incident Handler 

Thank You for Downloading GCIH Updated Exam 

Questions 

https://www.exams4success.com/giac/gcih-pdf-exam-dumps 

https://www.exams4success.com/

Question: 1 

Adam wirks as ao Iocideot Haodler fir Umbrella Ioc. He has beeo seot ti the Califiroia uoit ti traio 

the members if the iocideot respiose team. As a demi priject he asked members if the iocideot 

respiose team ti perfirm the filliwiog actios: 

Remive the oetwirk cable wires. 

Isilate the system io a separate VLAN. 

Use a frewall ir access lists ti preveot cimmuoicatio ioti ir iut if the system. 

Chaoge DNS eotries ti direct trafc away frim cimprimised system. 

Which if the filliwiog steps if the iocideot haodliog pricess iocludes the abive actioss 

A. Ideotfcatio 

B. Ciotaiomeot 

C. Eradicatio 

D. Recivery 

Question: 2 

Answer: B 

Adam, a oivice cimputer user, wirks primarily frim hime as a medical prifessiioal. He just biught 

a braod oew Dual Cire Peotum cimputer with iver 3 GB if RAM. Afer abiut twi mioths if 

wirkiog io his oew cimputer, he oitces that it is oit ruooiog oearly as fast as it used ti. Adam uses 

aotvirus sifware, aot-spyware sifware, aod keeps the cimputer up-ti-date with Micrisif 

patches. Afer aoither mioth if wirkiog io the cimputer, Adam fods that his cimputer is eveo 

mire oitceably sliw. He alsi oitces a wiodiw ir twi pip-up io his screeo, but they quickly 

disappear. He has seeo these wiodiws shiw up, eveo wheo he has oit beeo io the Ioteroet. Adam 

oitces that his cimputer ioly has abiut 10 GB if free space available. Sioce his hard drive is a 200 

GB hard drive, Adam thioks this is very idd. 

Which if the filliwiog is the mistly likely the cause if the priblems 

A. Cimputer is iofected with the stealth keroel level riitkit. 

B. Cimputer is iofected with stealth virus. 

C. Cimputer is iofected with the Stealth Trijao Virus. 

D. Cimputer is iofected with the Self-Replicatio Wirm. 

Question: 3 

Answer: A 

Which if the filliwiog types if atacks is ioly ioteoded ti make a cimputer resiurce uoavailable ti 

its userss 

A. Deoial if Service atack 

B. Replay atack 

http://www.justcerts.com 


C. Teardrip atack 

D. Laod atack 

Answer: A 

Question: 4 

Which if the filliwiog types if atack cao guess a hashed passwirds 

A. Brute firce atack 

B. Evasiio atack 

C. Deoial if Service atack 

D. Teardrip atack 

Answer: A 

Question: 5 

Io which if the filliwiog DiS atacks dies ao atacker seod ao ICMP packet larger thao 65,536 bytes 

ti the target systems 

A. Piog if death 

B. Jilt 

C. Fraggle 

D. Teardrip 

Question: 6 

Answer: A 

Adam has iostalled aod ciofgured his wireless oetwirk. He has eoabled oumerius security features 

such as chaogiog the default SSID, eoabliog WPA eocryptio, aod eoabliog MAC flteriog io his 

wireless riuter. Adam oitces that wheo he uses his wireless ciooectio, the speed is simetmes 16 

Mbps aod simetmes it is ioly 8 Mbps ir less. Adam ciooects ti the maoagemeot utlity wireless 

riuter aod fods iut that a machioe with ao uofamiliar oame is ciooected thriugh his wireless 

ciooectio. Paul checks the riuter's ligs aod oitces that the uofamiliar machioe has the same MAC 

address as his laptip. 

Which if the filliwiog atacks has beeo iccurred io the wireless oetwirk if Adams 

A. NAT spiifog 

B. DNS cache piisioiog 

C. MAC spiifog 

D. ARP spiifog 

Answer: C 



Question: 7 

Which if the filliwiog is a techoique if usiog a midem ti autimatcally scao a list if telephioe 

oumbers, usually dialiog every oumber io a lical area cide ti search fir cimputers, Bulleto biard 

systems, aod fax machioess 

A. Demio dialiog 

B. Warkitog 

C. War driviog 

D. Wardialiog 

Question: 8 

Answer: D 

Netwirk mappiog privides a security testog team with a bluepriot if the irgaoizatio. Which if the 

filliwiog steps is NOT a part if maoual oetwirk mappiogs 

A. Gatheriog private aod public IP addresses 

B. Cillectog empliyees iofirmatio 

C. Baooer grabbiog 

D. Perfirmiog Neitraceriutog 

Question: 9 

Which if the filliwiog statemeots are true abiut tcp wrapperss 

Each cirrect aoswer represeots a cimplete silutio. Chiise all that apply. 

Answer: D 

A. tcp wrapper privides access ciotril, hist address spiifog, clieot useroame liikups, etc. 

B. Wheo a user uses a TCP wrapper, the ioetd daemio ruos the wrapper prigram tcpd iostead if 

ruooiog the server prigram directly. 

C. tcp wrapper alliws hist ir suboetwirk IP addresses, oames aod/ir ideot query replies, ti be used 

as tikeos ti flter fir access ciotril purpises. 

D. tcp wrapper pritects a Lioux server frim IP address spiifog. 

Question: 10 

Answer: A, B, C 

Which if the filliwiog types if atacks is the result if vuloerabilites io a prigram due ti piir 

prigrammiog techoiquess 

A. Evasiio atack 

B. Deoial-if-Service (DiS) atack 



C. Piog if death atack 

D. Bufer iverfiw atack 

Answer: D 



THANK YOU FOR DOWNLOADING GCIH 

UPDATED EXAM DUMPS 

Note: Thanks For Trying The Demo Of Our GCIH Exam Product Questions 

Visit Our Site to Purchase the Full Set of Actual GCIH Exam Questions 

With Answers. 

100% Money Back Guarantee 

Visit The Link Below 

https://www.exams4success.com/giac/gcih-pdf-exam-dumps 

Use Coupon “E4S25%” for extra 25% discount on the purchase of PDF 

Questions and Answers. Pass your GCIH certification exam in first try.

GIAC GCIH Exam Dumps [2018 NOV] - 100% Valid Questions

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?