WGU Course C840 -
n n n
Digital Forensics in Cybersecurity 2022
n n n n n n
Solved 100% n n
Thenchief ninformationnofficernofnannaccountingnfirmnbelievesnsensitivendatanisnbeingnexp
osednon nthenlocal nnetwork.nWhichntool nshouldnthenITnstaff nusentongatherndigital nevidence
naboutnthisnsecuritynvulnerability?
AnSniffer
BnDisknanalyzer
CnTracer
DnVirusnscannern-nA
Anpolicendetectiveninvestigatingnanthreatntracesnthensourcentonanhouse.nThencouplenatnth
enhousenshowsnthendetectiventhenonlyncomputernthenfamilynowns,nwhichnisninntheirnson'sn
bedroom.nThencouplenstatesnthatntheirnsonnisnpresentlyninnclassnatnanlocal nmiddlenschool
.
How nshouldnthendetectivenlegallyngain naccessntonthencomputer?
AnObtain nansearch nwarrantnfromnthenpolice
BnSeizenthencomputernundernthenUSAnPatriotnAct
CnObtain nconsentntonsearch nfromnthenparents
DnSeizenthencomputernundernthenComputernSecuritynActn-nC
How nshouldnanforensicnscientistnobtainnthennetworknconfigurationnfromnanWindowsnPCnb
eforenseizingnitnfromnancrimenscene?
AnBynusingnthenipconfigncommandnfromnancommandnpromptnon nthencomputer
BnBynusingnthentracertncommandnfromnancommandnpromptnon nthencomputer
CnBynloggingnintonthenrouterntonwhich nthenPCnisnconnected
DnByninstallingnannetworknpacketnsniffernon nthencomputern-nA
Thenhumannresourcesnmanagernofnansmallnaccountingnfirmnbelievesnhenmaynhavenbeen
nanvictimnof nanphishing nscam.nThenmanagernclickednonnanlinkninnannemail nmessagenthatna
skednhimntonverifynthenlogon ncredentialsnfornthenfirm'snonlinenbanknaccount.
Which ndigital nevidencenshouldnanforensicninvestigatorncollectntoninvestigatenthisnincident
?
AnSystemnlog
BnSecuritynlog
CnDiskncache
DnBrowserncachen-nD
Afternancompany'snsingle-
purpose,ndedicatednmessagingnservernisnhackednbynancybercriminal,nanforensicsnexpert
nisnhired ntoninvestigate nthencrimenandncollectnevidence.
Which ndigital nevidencenshouldnbencollected?
,WGU Course C840 -
n n n
Digital Forensics in Cybersecurity 2022
n n n n n n
Solved 100% n n
AnWebnservernlogs
BnFirewall nlogs
CnPhishingnemails
DnSpamnmessagesn-nB
Thomasnreceivednan nemail nstatingnthatnhenneededntonfollownanlinknandnverifynhisnbankna
ccountninformationntonensurenitnwasnsecure.nShortlynafternfollowingntheninstructions,nTho
masnnoticednmoneynwasnmissingnfromnhisnaccount.
Which ndigital nevidencenshouldnbenconsideredntondeterminenhownThomas'naccountninfor
mation nwasncompromised?
AnSocial nmedianaccounts
BnRouternlogs
CnFlash ndrivencontents
DnEmail nmessagesn-nD
Thenchief nexecutivenofficern(CEO)nof nansmallncomputerncompanynhasnidentifiednanpotent
ialnhackingnattacknfromnan noutsidencompetitor.n
Which ntypenof nevidencenshouldnanforensicsninvestigatornusentonidentifynthensourcenof nthe
nhack?
AnDiskndrivenbackups
BnNetworkntransaction nlogs
CnBrowsernhistory
DnEmail nheadersn-nB
Anforensicnscientistnarrivesnatnancrimenscenentonbegin ncollectingnevidence.
Whatnisnthenfirstnthingnthenforensicnscientistnshouldndo?
AnTurn noff nthenpowerntonthenentirenareanbeingnexamined
BnUnplugnall nnetworknconnectionsnsondatancannotnbendeletednremotely
CnGathernupnall nphysical nevidencenandnmovenitnoutnasnquicklynasnpossible
DnPhotograph nallnevidencenin nitsnoriginal nplacen-nD
Which nmethodnof ncopyingndigital nevidencenensuresnpropernevidencencollection?
AnMakenthencopynusingnfilentransfer
BnCopynfilesnusingndragnandndrop
CnMakenthencopynatnthenbit-level
DnCopynthenlogical npartitionsn-nC
,WGU Course C840 -
n n n
Digital Forensics in Cybersecurity 2022
n n n n n n
Solved 100% n n
Ancomputerninvolvedninnancrimenisninfectednwithnmalware.nThencomputernisnonnandnconn
ectedntonthencompany'snnetwork.nThenforensicninvestigatornarrivesnatnthenscene.
Which naction nshouldnbentheninvestigator'snfirstnstep?
AnRemoventhenmalwarenandnsecurenthencomputer.
BnUnplugnthencomputer'snpowerncord.
CnUnplugnthencomputer'snEthernetncable.
DnLabel nall nthenattachmentsnandnsecurenthencomputer.n-nC
Whatnarenthenthreenbasicntasksnthatnansystemsnforensicnspecialistnmustnkeepnin nmindnw
hen nhandlingnevidencenduringnancybercrimeninvestigation?
Answernoptionsnmaynbenusednmorenthannoncenornnotnatnall.nSelectnyournanswersnfromnth
enpull-down nlist.
1nPreservenevidence
2nCatalognevidence
3nPreparenevidence
4nMakenmultiplencopiesnof nevidence
5nDisseminatenevidence
6nPreparenevidencenreport
7nFindnevidence
An1,3,7
Bn2,3,7n-nA
How ndonforensicnspecialistsnshow nthatndigital nevidencenwasnhandledninnanprotected,nsec
urenmannernduringnthenprocessnof ncollectingnandnanalyzingnthenevidence?
AnForensicnlabnlogbooks
BnForensicnsoftwarenlogs
CnChain nof ncustody
DnChain nof nemailnmessagesn-nC
Which ncharacteristicnappliesntonmagneticndrivesncomparedntonsolid-
statendrivesn(SSDs)?
AnLowerncapacity
BnBetterndurability
CnLowernpowernconsumption
DnLowerncostn-nD
Which ncharacteristicnappliesntonsolid-
statendrivesn(SSDs)ncomparedntonmagneticndrives?
, WGU Course C840 -
n n n
Digital Forensics in Cybersecurity 2022
n n n n n n
Solved 100% n n
AnTheynhavenslowernstart-upntimes.
BnTheyncostnless.
CnTheynarenlessnsusceptiblentondamage.
DnTheynusenmorenpower.n-nC
Which ntypenof nstoragenformatnshouldnbentransportedninnanspecialnbagntonreducenelectros
taticninterference?
AnSolid-statendrives
BnMagneticnmedia
CnDigital naudiontapes
DnOptical nmedian-nB
Which nWindowsncomponentnisnresponsiblenfornreadingnthenboot.ini nfilenandndisplayingnt
henbootnloadernmenu non nWindowsnXPnduringnthenbootnprocess?
AnWin32nsubsystem
BnNTLDR
CnNTOSKRNL
DnWindowsnRegistryn-nB
Thenfollowingnlinenofncodenisnannexamplenof nhowntonmakenanforensicncopynof nansuspectnd
rive:ddnif=/dev/memnof=/evidence/image.memory1
Which noperatingnsystemnshouldnbenusedntonrun nthisncommand?
AnChrome
BnBlackBerry
CnWindows
DnLinuxn-nD
Which nfilensystemnisnsupportednbynMac?
AnHierarchical nFilenSystemnPlusn(HFS+)
BnExtendednFilenSystemn(Ext)
CnBerkeleynFastnFilenSystemn(FFS)
DnReisernFilenSystemn(ReiserFS)n-nA
Which nlaw nrequiresnboth npartiesntonconsentntonthenrecordingnof nanconversation?
AnHealth nInsurancenPortabilitynandnAccountabilitynActn(HIPAA)
BnUSAnPatriotnAct
CnCommunicationsnAssistancentonLawnEnforcementnActn(CALEA)
DnElectronicnCommunicationsnPrivacynActn(ECPA)n-nD
n n n
Digital Forensics in Cybersecurity 2022
n n n n n n
Solved 100% n n
Thenchief ninformationnofficernofnannaccountingnfirmnbelievesnsensitivendatanisnbeingnexp
osednon nthenlocal nnetwork.nWhichntool nshouldnthenITnstaff nusentongatherndigital nevidence
naboutnthisnsecuritynvulnerability?
AnSniffer
BnDisknanalyzer
CnTracer
DnVirusnscannern-nA
Anpolicendetectiveninvestigatingnanthreatntracesnthensourcentonanhouse.nThencouplenatnth
enhousenshowsnthendetectiventhenonlyncomputernthenfamilynowns,nwhichnisninntheirnson'sn
bedroom.nThencouplenstatesnthatntheirnsonnisnpresentlyninnclassnatnanlocal nmiddlenschool
.
How nshouldnthendetectivenlegallyngain naccessntonthencomputer?
AnObtain nansearch nwarrantnfromnthenpolice
BnSeizenthencomputernundernthenUSAnPatriotnAct
CnObtain nconsentntonsearch nfromnthenparents
DnSeizenthencomputernundernthenComputernSecuritynActn-nC
How nshouldnanforensicnscientistnobtainnthennetworknconfigurationnfromnanWindowsnPCnb
eforenseizingnitnfromnancrimenscene?
AnBynusingnthenipconfigncommandnfromnancommandnpromptnon nthencomputer
BnBynusingnthentracertncommandnfromnancommandnpromptnon nthencomputer
CnBynloggingnintonthenrouterntonwhich nthenPCnisnconnected
DnByninstallingnannetworknpacketnsniffernon nthencomputern-nA
Thenhumannresourcesnmanagernofnansmallnaccountingnfirmnbelievesnhenmaynhavenbeen
nanvictimnof nanphishing nscam.nThenmanagernclickednonnanlinkninnannemail nmessagenthatna
skednhimntonverifynthenlogon ncredentialsnfornthenfirm'snonlinenbanknaccount.
Which ndigital nevidencenshouldnanforensicninvestigatorncollectntoninvestigatenthisnincident
?
AnSystemnlog
BnSecuritynlog
CnDiskncache
DnBrowserncachen-nD
Afternancompany'snsingle-
purpose,ndedicatednmessagingnservernisnhackednbynancybercriminal,nanforensicsnexpert
nisnhired ntoninvestigate nthencrimenandncollectnevidence.
Which ndigital nevidencenshouldnbencollected?
,WGU Course C840 -
n n n
Digital Forensics in Cybersecurity 2022
n n n n n n
Solved 100% n n
AnWebnservernlogs
BnFirewall nlogs
CnPhishingnemails
DnSpamnmessagesn-nB
Thomasnreceivednan nemail nstatingnthatnhenneededntonfollownanlinknandnverifynhisnbankna
ccountninformationntonensurenitnwasnsecure.nShortlynafternfollowingntheninstructions,nTho
masnnoticednmoneynwasnmissingnfromnhisnaccount.
Which ndigital nevidencenshouldnbenconsideredntondeterminenhownThomas'naccountninfor
mation nwasncompromised?
AnSocial nmedianaccounts
BnRouternlogs
CnFlash ndrivencontents
DnEmail nmessagesn-nD
Thenchief nexecutivenofficern(CEO)nof nansmallncomputerncompanynhasnidentifiednanpotent
ialnhackingnattacknfromnan noutsidencompetitor.n
Which ntypenof nevidencenshouldnanforensicsninvestigatornusentonidentifynthensourcenof nthe
nhack?
AnDiskndrivenbackups
BnNetworkntransaction nlogs
CnBrowsernhistory
DnEmail nheadersn-nB
Anforensicnscientistnarrivesnatnancrimenscenentonbegin ncollectingnevidence.
Whatnisnthenfirstnthingnthenforensicnscientistnshouldndo?
AnTurn noff nthenpowerntonthenentirenareanbeingnexamined
BnUnplugnall nnetworknconnectionsnsondatancannotnbendeletednremotely
CnGathernupnall nphysical nevidencenandnmovenitnoutnasnquicklynasnpossible
DnPhotograph nallnevidencenin nitsnoriginal nplacen-nD
Which nmethodnof ncopyingndigital nevidencenensuresnpropernevidencencollection?
AnMakenthencopynusingnfilentransfer
BnCopynfilesnusingndragnandndrop
CnMakenthencopynatnthenbit-level
DnCopynthenlogical npartitionsn-nC
,WGU Course C840 -
n n n
Digital Forensics in Cybersecurity 2022
n n n n n n
Solved 100% n n
Ancomputerninvolvedninnancrimenisninfectednwithnmalware.nThencomputernisnonnandnconn
ectedntonthencompany'snnetwork.nThenforensicninvestigatornarrivesnatnthenscene.
Which naction nshouldnbentheninvestigator'snfirstnstep?
AnRemoventhenmalwarenandnsecurenthencomputer.
BnUnplugnthencomputer'snpowerncord.
CnUnplugnthencomputer'snEthernetncable.
DnLabel nall nthenattachmentsnandnsecurenthencomputer.n-nC
Whatnarenthenthreenbasicntasksnthatnansystemsnforensicnspecialistnmustnkeepnin nmindnw
hen nhandlingnevidencenduringnancybercrimeninvestigation?
Answernoptionsnmaynbenusednmorenthannoncenornnotnatnall.nSelectnyournanswersnfromnth
enpull-down nlist.
1nPreservenevidence
2nCatalognevidence
3nPreparenevidence
4nMakenmultiplencopiesnof nevidence
5nDisseminatenevidence
6nPreparenevidencenreport
7nFindnevidence
An1,3,7
Bn2,3,7n-nA
How ndonforensicnspecialistsnshow nthatndigital nevidencenwasnhandledninnanprotected,nsec
urenmannernduringnthenprocessnof ncollectingnandnanalyzingnthenevidence?
AnForensicnlabnlogbooks
BnForensicnsoftwarenlogs
CnChain nof ncustody
DnChain nof nemailnmessagesn-nC
Which ncharacteristicnappliesntonmagneticndrivesncomparedntonsolid-
statendrivesn(SSDs)?
AnLowerncapacity
BnBetterndurability
CnLowernpowernconsumption
DnLowerncostn-nD
Which ncharacteristicnappliesntonsolid-
statendrivesn(SSDs)ncomparedntonmagneticndrives?
, WGU Course C840 -
n n n
Digital Forensics in Cybersecurity 2022
n n n n n n
Solved 100% n n
AnTheynhavenslowernstart-upntimes.
BnTheyncostnless.
CnTheynarenlessnsusceptiblentondamage.
DnTheynusenmorenpower.n-nC
Which ntypenof nstoragenformatnshouldnbentransportedninnanspecialnbagntonreducenelectros
taticninterference?
AnSolid-statendrives
BnMagneticnmedia
CnDigital naudiontapes
DnOptical nmedian-nB
Which nWindowsncomponentnisnresponsiblenfornreadingnthenboot.ini nfilenandndisplayingnt
henbootnloadernmenu non nWindowsnXPnduringnthenbootnprocess?
AnWin32nsubsystem
BnNTLDR
CnNTOSKRNL
DnWindowsnRegistryn-nB
Thenfollowingnlinenofncodenisnannexamplenof nhowntonmakenanforensicncopynof nansuspectnd
rive:ddnif=/dev/memnof=/evidence/image.memory1
Which noperatingnsystemnshouldnbenusedntonrun nthisncommand?
AnChrome
BnBlackBerry
CnWindows
DnLinuxn-nD
Which nfilensystemnisnsupportednbynMac?
AnHierarchical nFilenSystemnPlusn(HFS+)
BnExtendednFilenSystemn(Ext)
CnBerkeleynFastnFilenSystemn(FFS)
DnReisernFilenSystemn(ReiserFS)n-nA
Which nlaw nrequiresnboth npartiesntonconsentntonthenrecordingnof nanconversation?
AnHealth nInsurancenPortabilitynandnAccountabilitynActn(HIPAA)
BnUSAnPatriotnAct
CnCommunicationsnAssistancentonLawnEnforcementnActn(CALEA)
DnElectronicnCommunicationsnPrivacynActn(ECPA)n-nD
