Vce 412-79 Questions Latest

EC-Council Certified Security Analyst (ECSA) Questions and Answers

Question 25

When conducting computer forensic analysis, you must guard against ______________ So that you remain focused on the primary job and insure that the level of work does not increase beyond what was originally expecteD.

Options:

Hard Drive Failure

Scope Creep

Unauthorized expenses

Overzealous marketing

Question 26

If you see the files Zer0.tar.gz and copy.tar.gz on a Linux system while doing an investigation, what can you conclude?

Options:

The system files have been copied by a remote attacker

The system administrator has created an incremental backup

The system has been compromised using a t0rnrootkit

Nothing in particular as these can be operational files

Question 27

The rule of thumb when shutting down a system is to pull the power plug. However, it has certain drawbacks. Which of the following would that be?

Options:

Any data not yet flushed to the system will be lost

All running processes will be lost

The /tmp directory will be flushed

Power interruption will corrupt the pagefile

Question 28

You should make at least how many bit-stream copies of a suspect drive?

Winter Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

EC-Council Certified Security Analyst (ECSA) Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

CompTIA

Fortinet

Microsoft

Salesforce