What will the following URL produce in an unpatched IIS Web Server?
http://www.thetargetsite.com/scripts/..%
co%af../..%co%af../windows/system32/cmd.exe?/c+dir+c:\

• A.Execute a buffer flow in the C: drive of the web server
• B.Insert a Trojan horse into the C: drive of the web server
• C.Directory listing of the C:\windows\system32 folder on the web server
• D.Directory listing of C: drive on the web server

Comment: *

Name: *

Email: *

Verification: *

Chong-lee, a forensics executive, suspects that a malware is continuously making copies of files and folders on a victim system to consume the available disk space. What type of test would confirm his claim?

• A.File fingerprinting
• B.Dynamic analysis
• C.Identifying file obfuscation
• D.Static analysis

Comment: *

Name: *

Email: *

Verification: *

When is it appropriate to use computer forensics?

• A.If employees do not care for their boss?management techniques
• B.If copyright and intellectual property theft/misuse has occurred
• C.If a financial institution is burglarized by robbers
• D.If sales drop off for no apparent reason for an extended period of time

Comment: *

Name: *

Email: *

Verification: *

Why should you note all cable connections for a computer you want to seize as evidence?

• A.to know what outside connections existed
• B.to know what hardware existed
• C.in case other devices were connected
• D.to know what peripheral devices exist

Comment: *

Name: *

Email: *

Verification: *

In Microsoft file structures, sectors are grouped together to form:

• A.Partitions
• B.Bitstreams
• C.Clusters
• D.Drives

Comment: *

Name: *

Email: *

Verification: *