312-49v10 Free Practice Test

- (Exam Topic 2)
What must be obtained before an investigation is carried out at a location?

1. A. Search warrant
2. B. Subpoena
3. C. Habeas corpus
4. D. Modus operandi

Correct Answer: A

- (Exam Topic 2)
To which phase of the Computer Forensics Investigation Process does the Planning and Budgeting of a Forensics Lab belong?

1. A. Post-investigation Phase
2. B. Reporting Phase
3. C. Pre-investigation Phase
4. D. Investigation Phase

Correct Answer: C

- (Exam Topic 2)
What feature of Decryption Collection allows an investigator to crack a password as quickly as possible?

1. A. Cracks every password in 10 minutes
2. B. Distribute processing over 16 or fewer computers
3. C. Support for Encrypted File System
4. D. Support for MD5 hash verification

Correct Answer: B

- (Exam Topic 2)
What type of attack sends spoofed UDP packets (instead of ping packets) with a fake source address to the IP broadcast address of a large network?

1. A. Fraggle
2. B. Smurf scan
3. C. SYN flood
4. D. Teardrop

Correct Answer: A

- (Exam Topic 2)
Data is striped at a byte level across multiple drives, and parity information is distributed among all member drives.

What RAID level is represented here?

1. A. RAID Level 0
2. B. RAID Level 5
3. C. RAID Level 3
4. D. RAID Level 1

Correct Answer: B