WGU C702 | Exam 2026/2027 | Questions and Complete Solutions |
Already Graded A+ | 100% Verified |pass!!
FAT32 -answer-Utilizes space 10-15% more effectively: smaller clusters
Lesser failure rate than FAT16 devices
No restriction on number of root folder entries
OS replaces the first letter of the deleted file name with E5H
New Technology File System (NTFS) -answer-The preferred file system, largely
because it supports a much larger hard disk (up to 16 exabytes), long file names, and
enhanced security.
- Self-repairing; file security, auditing
- Supports RAID
- Encrypt/decrypt data, Unicode for multi-language
- Supports files up to 16GB
- OS marks the index field of the MFT with a special code
Linux File System -answer-User Space
Kernel Space
GNUC Library (glibc)
User Space -answer-The protected memory area where the user processes run and
this are contains the available memory
Kernel Space -answer-The memory space where the system supplies all kernel
services through kernel processes.
GNUC Library (glibc) -answer-Sits between the user space and kernel space and
provides the system call interface that connects the kernel to the user-space
applications
/ (Linux) -answer-Root directory for FHS
/bin (Linux) -answer-Command binaries
/boot (Linux) -answer-Boot loader files
,/dev (Linux) -answer-Essential device files; /dev/null
/etc (Linux) -answer-Host configuration files
/home (Linux) -answer-User's home directories
/lib (Linux) -answer-Libraries for the binaries in /bin and /sbin
/media (Linux) -answer-Mount points for removable media
/mnt (Linux) -answer-Temporarily mounted filesystems
/opt (Linux) -answer-Optional application software packages
/proc (Linux) -answer-Virtual filesystem providing process and kernel info
/root (Linux) -answer-Home directory for root
/run (Linux) -answer-Run-time variable data
/sbin (Linux) -answer-Essential system binaries, fsck, init, route
/srv (Linux) -answer-Data server by this system: data and scripts for web servers
/sys (Linux) -answer-Devices, drivers, and some kernel info
/tmp (Linux) -answer-Temporary files
/usr (Linux) -answer-Read only user data
/var (Linux) -answer-Variable data. Logs, spool files, etc
Extended File System (EXT) -answer-First file system (1992) created specifically for
Linux where the metadata and file structure is based on the Unix File system
Second Extended File System (EXT2) -answer-Successful file system for linux
Basis for all Linux Distros
Data is stored in blocks of the same length during creation
Third Extended File System (EXT3) -answer-Journaling file system used in GNU/Linux
OS (enhanced EXT2)
Improves reliability/integrity and speed
Can convert from EXT2 to EXT3 or vice versa
, Fourth Extended File System (EXT4) -answer-A Linux file system that added support
for partitions larger than 16 TB, improved management of large files, and offered a more
flexible approach to adding file system features.
RAID 0 -answer-Disk Stripping
Simples RAID level
No Redundancy
Fragments the file into stripe size of the array then sends stripes to every disk in the
array
RAID 1 -answer-Disk mirroring
Copies the drive data on to two different drives
Requires a minimum of 2 drives
RAID 2 -answer-No Disk parity
Mirroring or Striping
includes splitting of data at the bit level and distributing it to numerous data disks and
redundancy disks
RAID 3 -answer-Striping with a parity disk, which stores checksum
RAID 5 -answer-Level data striping across multiple drives, and distributes the parity
information
Minimum of 3 drives
RAID 10 (1+0) -answer-Data is distributed as a stripe of mirrors requiring a minimum of
four (4) disks to be implemented; good performance with fault tolerance (no parity
blocks)
NIST SP 800-88 -answer-Guidelines for Media Sanitization
Clear, Purge, Destroy
Data Acquisition -answer-the process of obtaining, cleaning, organizing, relating, and
cataloging source data
First pro-active step; extract every bit of information present on the victim's hard disk
Live Data Acquisition -answer-Process of acquiring volatile data from a working
computer that is powered on
Static Data Acquistion -answer-Process of acquiring the non-volatile data remains in
the system even after shutdown
Advanced Forensics Format (AFF) -answer-No size restrictions and space for
metadata
Advance Forensics Framework 4 (AFF4) -answer-Supports more file formats than AFF
Already Graded A+ | 100% Verified |pass!!
FAT32 -answer-Utilizes space 10-15% more effectively: smaller clusters
Lesser failure rate than FAT16 devices
No restriction on number of root folder entries
OS replaces the first letter of the deleted file name with E5H
New Technology File System (NTFS) -answer-The preferred file system, largely
because it supports a much larger hard disk (up to 16 exabytes), long file names, and
enhanced security.
- Self-repairing; file security, auditing
- Supports RAID
- Encrypt/decrypt data, Unicode for multi-language
- Supports files up to 16GB
- OS marks the index field of the MFT with a special code
Linux File System -answer-User Space
Kernel Space
GNUC Library (glibc)
User Space -answer-The protected memory area where the user processes run and
this are contains the available memory
Kernel Space -answer-The memory space where the system supplies all kernel
services through kernel processes.
GNUC Library (glibc) -answer-Sits between the user space and kernel space and
provides the system call interface that connects the kernel to the user-space
applications
/ (Linux) -answer-Root directory for FHS
/bin (Linux) -answer-Command binaries
/boot (Linux) -answer-Boot loader files
,/dev (Linux) -answer-Essential device files; /dev/null
/etc (Linux) -answer-Host configuration files
/home (Linux) -answer-User's home directories
/lib (Linux) -answer-Libraries for the binaries in /bin and /sbin
/media (Linux) -answer-Mount points for removable media
/mnt (Linux) -answer-Temporarily mounted filesystems
/opt (Linux) -answer-Optional application software packages
/proc (Linux) -answer-Virtual filesystem providing process and kernel info
/root (Linux) -answer-Home directory for root
/run (Linux) -answer-Run-time variable data
/sbin (Linux) -answer-Essential system binaries, fsck, init, route
/srv (Linux) -answer-Data server by this system: data and scripts for web servers
/sys (Linux) -answer-Devices, drivers, and some kernel info
/tmp (Linux) -answer-Temporary files
/usr (Linux) -answer-Read only user data
/var (Linux) -answer-Variable data. Logs, spool files, etc
Extended File System (EXT) -answer-First file system (1992) created specifically for
Linux where the metadata and file structure is based on the Unix File system
Second Extended File System (EXT2) -answer-Successful file system for linux
Basis for all Linux Distros
Data is stored in blocks of the same length during creation
Third Extended File System (EXT3) -answer-Journaling file system used in GNU/Linux
OS (enhanced EXT2)
Improves reliability/integrity and speed
Can convert from EXT2 to EXT3 or vice versa
, Fourth Extended File System (EXT4) -answer-A Linux file system that added support
for partitions larger than 16 TB, improved management of large files, and offered a more
flexible approach to adding file system features.
RAID 0 -answer-Disk Stripping
Simples RAID level
No Redundancy
Fragments the file into stripe size of the array then sends stripes to every disk in the
array
RAID 1 -answer-Disk mirroring
Copies the drive data on to two different drives
Requires a minimum of 2 drives
RAID 2 -answer-No Disk parity
Mirroring or Striping
includes splitting of data at the bit level and distributing it to numerous data disks and
redundancy disks
RAID 3 -answer-Striping with a parity disk, which stores checksum
RAID 5 -answer-Level data striping across multiple drives, and distributes the parity
information
Minimum of 3 drives
RAID 10 (1+0) -answer-Data is distributed as a stripe of mirrors requiring a minimum of
four (4) disks to be implemented; good performance with fault tolerance (no parity
blocks)
NIST SP 800-88 -answer-Guidelines for Media Sanitization
Clear, Purge, Destroy
Data Acquisition -answer-the process of obtaining, cleaning, organizing, relating, and
cataloging source data
First pro-active step; extract every bit of information present on the victim's hard disk
Live Data Acquisition -answer-Process of acquiring volatile data from a working
computer that is powered on
Static Data Acquistion -answer-Process of acquiring the non-volatile data remains in
the system even after shutdown
Advanced Forensics Format (AFF) -answer-No size restrictions and space for
metadata
Advance Forensics Framework 4 (AFF4) -answer-Supports more file formats than AFF
