312-49v10 Free Practice Test

- (Exam Topic 3)
Steve, a forensic investigator, was asked to investigate an email incident in his organization. The organization has Microsoft Exchange Server deployed for email communications. Which among the following files will Steve check to analyze message headers, message text, and standard attachments?

1. A. PUB.EDB
2. B. PRIV.EDB
3. C. PUB.STM
4. D. PRIV.STM

Correct Answer: B

- (Exam Topic 2)
Files stored in the Recycle Bin in its physical location are renamed as Dxy.ext, where “x” represents the ________.

1. A. Drive name
2. B. Original file name’s extension
3. C. Sequential number
4. D. Original file name

Correct Answer: A

- (Exam Topic 3)
Buffer overflow vulnerabilities, of web applications, occurs when the application fails to guard its buffer properly and allows writing beyond its maximum size. Thus, it overwrites the ______. There are multiple forms of buffer overflow, including a Heap Buffer Overflow and a Format String Attack.

1. A. Adjacent buffer locations
2. B. Adjacent string locations
3. C. Adjacent bit blocks
4. D. Adjacent memory locations

Correct Answer: D

- (Exam Topic 2)
What is one method of bypassing a system BIOS password?

1. A. Removing the processor
2. B. Removing the CMOS battery
3. C. Remove all the system memory
4. D. Login to Windows and disable the BIOS password

Correct Answer: B

- (Exam Topic 2)
Which of the following technique creates a replica of an evidence media?

1. A. Data Extraction
2. B. Backup
3. C. Bit Stream Imaging
4. D. Data Deduplication

Correct Answer: C