← Back to exam page

GCIH GIAC Certified Incident Handler

Loading demo links...

Showing 10–12 of 20 questions

Question 10 (Volume A)

Which of the following statements are true about firewalking?

Each correct answer represents a complete solution. (Choose all that apply.)

Select all that apply, then click Submit answer.

  • To use firewalking, the attacker needs the IP address of the last known gateway before the firewall and the IP address of a host located behind the firewall.

  • In this technique, an attacker sends a crafted packet with a TTL value that is set to expire one hop past the firewall.

  • A malicious attacker can use firewalking to determine the types of ports/protocols that can bypass the firewall.

  • Firewalking works on the UDP packets.
Question 11 (Volume B)

What is the purpose of configuring a password protected screen saver on a computer?

Select an option, then click Submit answer.

  • For preventing unauthorized access to a system.

  • For preventing a system from a Denial of Service (DoS) attack.

  • For preventing a system from a social engineering attack.

  • For preventing a system from a back door attack.
Question 12 (Volume C)

Which of the following attacks allows an attacker to sniff data frames on a local area network (LAN) or stop the traffic altogether?

Select an option, then click Submit answer.

  • Port scanning

  • ARP spoofing

  • Man-in-the-middle

  • Session hijacking