Bill is the accounting manager for Grummon and Sons LLC in Chicago. On a regular basis, he needs to send PDF documents containing sensitive information through E-mail to his customers. Bill protects the PDF documents with a password and sends them to their intended recipients. Why PDF passwords do not offer maximum protection?

• A.PDF passwords can easily be cracked by software brute force tools
• B.PDF passwords are not considered safe by Sarbanes-Oxley
• C.PDF passwords are converted to clear text when sent through E-mail
• D.When sent through E-mail, PDF passwords are stripped from the document completely

Comment: *

Name: *

Email: *

Verification: *

You are called in to assist the police in an investigation involving a suspected drug dealer.
The police searched the suspect house after aYou are called in to assist the police in an investigation involving a suspected drug dealer. The police searched the suspect? house after a warrant was obtained and they located a floppy disk in the suspect bedroom. The disk contains several files, but they appear to be passwordwarrant was obtained and they located a floppy disk in the suspect? bedroom. The disk contains several files, but they appear to be password protected. What are two common methods used by password cracking software that you could use to obtain the password?

• A.Maximum force and thesaurus attack
• B.Limited force and library attack
• C.Minimum force and appendix attack
• D.Brute force and dictionary attack

Comment: *

Name: *

Email: *

Verification: *

What is the location of a Protective MBR in a GPT disk layout?

• A.Logical Block Address (LBA) 0
• B.Logical Block Address (LBA) 3
• C.Logical Block Address (LBA) 1
• D.Logical Block Address (LBA) 2

Comment: *

Name: *

Email: *

Verification: *

You are working as an independent computer forensics investigator and receive a call from a systems administrator for a local school system requesting your assistance. One of the students at the local high school is suspected of downloading inappropriate images from the Internet to a PC in the Computer Lab. When you arrive at the school, the systems administrator hands you a hard drive and tells you that he made a implePC in the
Computer Lab. When you arrive at the school, the systems administrator hands you a hard drive and tells you that he made a ?imple backup copy?of the hard drive in the PC and put it on this drive and requests that you examine the drive for evidence of the suspected images. You inform him that a imple backup copy?will not provide deleted files or recover file fragments. What type of copy do you need to make toYou inform him that a ?imple backup copy?will not provide deleted files or recover file fragments. What type of copy do you need to make to ensure that the evidence found is complete and admissible in future proceedings?

• A.Incremental backup copy
• B.Full backup copy
• C.Bit-stream copy
• D.Robust copy

Comment: *

Name: *

Email: *

Verification: *

Jason has set up a honeypot environment by creating a DMZ that has no physical or logical access to his production network. In this honeypot, he has placed a server running Windows Active Directory. He has also placed a Web server in the DMZ that services a number of web pages that offer visitors a chance to download sensitive information by clicking on a button. A week later, Jason finds in his network logs how an intruder accessed the honeypot and downloaded sensitive information. Jason uses the logs to try and prosecute the intruder for stealing sensitive corporate information. Why will this not be viable?

• A.Intruding into a honeypot is not illegal
• B.Enticement
• C.Entrapment
• D.Intruding into a DMZ is not illegal

Comment: *

Name: *

Email: *

Verification: *