212-89 exam

Eric is an incident responder and is working on developing incident-handling plans and procedures. As part of this process, he is performing an analysis on the organizational network to generate a report and develop policies based on the acquired results. Which of the following tools will help him in analyzing...

Which one of the following is the correct flow of the stages in an incident handling and response (IH&R) process?A . Preparation Incident recording Incident triage Containment Eradication Recovery Post-incident activitiesB . Incident recording Preparation Containment Incident triage Recovery Eradication Post-incident activitiesC . Containment Incident recording Incident triage Preparation Recovery...

Bob, an incident responder at CyberTech Solutions, is investigating a cybercrime attack that occurred in the client company. He acquired the evidence data, preserved it, and started performing analysis on the acquired evidentiary data to identify the source of the crime and the culprit behind the incident. Identify the forensic...

In which of the following phases of incident handling and response (IH&R) process are the identified security incidents analyzed, validated, categorized, and prioritized?A . Incident triageB . NotificationC . Incident recording and assignmentD . ContainmentView AnswerAnswer: A

Identify the malicious program that is masked as a genuine harmless program and gives the attacker unrestricted access to the users information and system. These programs may unleash dangerous programs that may erase the unsuspecting user's disk and send the victim's credit card numbers and passwords to a stranger.A ....

Adam is an incident handler who intends to use DBCCLOG command to analyze a database and retrieve the active transaction logfiles for the specified database. The syntax of DBCC LG command is DBCC LOG (<database name>, <output>), where the output parameter specifies the level of information an incident handler wants...

Create a vulnerability scan report Identify the correct sequence of vulnerability assessment steps performed by the incident responders.A . 4-->1-->2->3->6->5-->7B . 3-->6-->1->2->5->4-->7C . 1-->3-->2->4->5->6-->7D . 2-->1-->4->7->5->6-->3View AnswerAnswer: B

Marley was asked by his incident handing and response (IH&R) team lead to collect volatile data such as system information and network information present in the registries, cache, and RAM of victim's system. Identify the data acquisition method Marley must employ to collect volatile data.A . Live data acquisitionB ....

Marley was asked by his incident handing and response (IH&R) team lead to collect volatile data such as system information and network information present in the registries, cache, and RAM of victim's system. Identify the data acquisition method Marley must employ to collect volatile data.A . Live data acquisitionB ....

Clark is investigating a cybercrime at TechSoft Solutions. While investigating the case, he needs to collect volatile information such as running services, their process IDs, start mode, state, and status. Which of the following commands will help Clark to collect such information from running services?A . netstat-abB . net fileC...