Digital Forensics/Cyber Security

Question 1

Computer Forensics has been gaining in popularity as

Answer 1

society increasingly is dependent on technology. While is has been around for awhile, it is still seen as an emerging science.

Question 2

Computer Forensics uses specialized tools and techniques for

Answer 2

(like FTK toolkits) preserving, analyzing, recovering and authenticating electronic data such as files.

Question 3

MD5 while a valuable tool for digital forensics, is

Answer 3

is no longer uses today because of its vulnerabilities that hackers can exploit.

Question 4

MD5 stand for

Answer 4

Message Digest 5 and is a digital hash, that uses 128 bits displayed in Hex. and does a cyclical redundancy check.

Question 5

Digital evidence can be used for

Answer 5

hacking, narcotics trafficking, murder, data theft, and conspiracy.

Question 6

Digital evidence can take the form of

Answer 6

hard drives, floppy, zip, jazz drives, CDs, DVDs, Blu Ray, tapes, memory cards, USB sticks, printers and fax machines.

Question 7

Two key responsibilities of a DFE

Answer 7

is to protect and authenticate.

Question 8

Digital scientist can usually find

Answer 8

hidden files, deleted files, encrypted files and steganographic files

Question 9

Malware is a catch all term to describe

Answer 9

malicious software threats and social engineering tools designed to vandalize or compromised computer systems.

Question 10

Spyware is used to

Answer 10

monitor a user’s activity without their knowledge and sends that information to someone else.

Question 11

Trojans are

Answer 11

hidden malware that is downloaded by a user unintentionally when they are trying to install a normal program.

Question 12

If you use encryption on a file, you can

Answer 12

generally prevent someone from trying to circumvent file and folder security.

Question 13

When someone eavesdrops on a network, they

Answer 13

have the ability to capture and reading data packets as they move across a network

Question 14

A program virus is a

Answer 14

sequence of code that insert themselves into another executable program.

Question 15

A network firewall filters packets to prevent unauthorized access by

Answer 15

direction, IP address and TCP or UDP port number.

Question 16

three properties secure information should have.

Answer 16

Confidentiality, Integrity and availability

Question 17

Footprinting is the

Answer 17

process of information gathering in which the attacker attempts to learn about the configuration and the networking and security systems.

Question 18

Authorization creates

Answer 18

one or more barriers around the resource such that only authenticated users can gain access.