Winter Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: s2p65

Easiest Solution 2 Pass Your Certification Exams

GCIH GIAC Certified Incident Handler Free Practice Exam Questions (2025 Updated)

Prepare effectively for your GIAC GCIH GIAC Certified Incident Handler certification with our extensive collection of free, high-quality practice questions. Each question is designed to mirror the actual exam format and objectives, complete with comprehensive answers and detailed explanations. Our materials are regularly updated for 2025, ensuring you have the most current resources to build confidence and succeed on your first attempt.

GIAC GCIH Premium Access     Download Demo    
Page: 2 / 5
Total 328 questions

Which of the following attacks saturates network resources and disrupts services to a specific computer?

A.

Replay attack

B.

Teardrop attack

C.

Denial-of-Service (DoS) attack

D.

Polymorphic shell code attack

Which of the following refers to a condition in which a hacker sends a bunch of packets that leave TCP ports half open?

A.

Spoofing

B.

Hacking

C.

SYN attack

D.

PING attack

Which of the following types of skills are required in the members of an incident handling team?

Each correct answer represents a complete solution. Choose all that apply.

A.

Organizational skills

B.

Diplomatic skills

C.

Methodical skills

D.

Technical skills

John works as a Network Security Professional. He is assigned a project to test the security of

www.we-are-secure.com. He establishes a connection to a target host running a Web service with netcat and sends a bad html request in order to retrieve information about the service on the host.

Which of the following attacks is John using?

A.

Sniffing

B.

Eavesdropping

C.

War driving

D.

Banner grabbing

Which of the following applications is NOT used for passive OS fingerprinting?

A.

Networkminer

B.

Satori

C.

p0f

D.

Nmap

Which of the following statements about threats are true?

Each correct answer represents a complete solution. Choose all that apply.

A.

A threat is a weakness or lack of safeguard that can be exploited by vulnerability, thus causing harm to the information systems or networks.

B.

A threat is a potential for violation of security which exists when there is a circumstance, capability, action, or event that could breach security and cause harm.

C.

A threat is a sequence of circumstances and events that allows a human or other agent to cause an information-related misfortune by exploiting vulnerability in an IT product.

D.

A threat is any circumstance or event with the potential of causing harm to a system in the form of destruction, disclosure, modification of data, or denial of service.

Fill in the blank with the appropriate term.

______ is a technique used to make sure that incoming packets are actually from the networks that they claim to be from.

Which of the following statements are correct about spoofing and session hijacking?

Each correct answer represents a complete solution. Choose all that apply.

A.

Spoofing is an attack in which an attacker can spoof the IP address or other identity of the target and the valid user cannot be active.

B.

Spoofing is an attack in which an attacker can spoof the IP address or other identity of the target but the valid user can be active.

C.

Session hijacking is an attack in which an attacker takes over the session, and the valid user's session is disconnected.

D.

Session hijacking is an attack in which an attacker takes over the session, and the valid user's session is not disconnected.

Which of the following procedures is designed to enable security personnel to identify, mitigate, and recover from malicious computer incidents, such as unauthorized access to a system or data, denialof-service, or unauthorized changes to system hardware, software, or data?

A.

Disaster Recovery Plan

B.

Cyber Incident Response Plan

C.

Crisis Communication Plan

D.

Occupant Emergency Plan

Which of the following attacks capture the secret value like a hash and reuse it later to gain access to a system without ever decrypting or decoding the hash?

A.

Cross Site Scripting attack

B.

Replay attack

C.

Rainbow attack

D.

Hashing attack

Which of the following is the method of hiding data within another media type such as graphic or document?

A.

Spoofing

B.

Steganography

C.

Packet sniffing

D.

Cryptanalysis

You want to connect to your friend's computer and run a Trojan on it. Which of the following tools will you use to accomplish the task?

A.

PSExec

B.

Remoxec

C.

Hk.exe

D.

GetAdmin.exe

Which of the following would allow you to automatically close connections or restart a server or service when a DoS attack is detected?

A.

Signature-based IDS

B.

Network-based IDS

C.

Passive IDS

D.

Active IDS

You work as a System Administrator in SunSoft Inc. You are running a virtual machine on Windows Server 2003. The virtual machine is protected by DPM. Now, you want to move the virtual machine to another host. Which of the following steps can you use to accomplish the task?

Each correct answer represents a part of the solution. Choose all that apply.

A.

Remove the original virtual machine from the old server and stop the protection for the original virtual machine.

B.

Run consistency check.

C.

Add the copied virtual machine to a protection group.

D.

Copy the virtual machine to the new server.

Which of the following are open-source vulnerability scanners?

A.

Nessus

B.

Hackbot

C.

NetRecon

D.

Nikto

Which of the following reads and writes data across network connections by using the TCP/IP protocol?

A.

Fpipe

B.

NSLOOKUP

C.

Netcat

D.

2Mosaic

Which of the following attacks can be overcome by applying cryptography?

A.

Buffer overflow

B.

Web ripping

C.

Sniffing

D.

DoS

Victor works as a professional Ethical Hacker for SecureEnet Inc. He has been assigned a job to test an image, in which some secret information is hidden, using Steganography. Victor performs the following techniques to accomplish the task:

1. Smoothening and decreasing contrast by averaging the pixels of the area where significant color transitions occurs.

2. Reducing noise by adjusting color and averaging pixel value.

3. Sharpening, Rotating, Resampling, and Softening the image.

Which of the following Steganography attacks is Victor using?

A.

Stegdetect Attack

B.

Chosen-Stego Attack

C.

Steg-Only Attack

D.

Active Attacks

Which of the following statements about reconnaissance is true?

A.

It describes an attempt to transfer DNS zone data.

B.

It is a computer that is used to attract potential intruders or attackers.

C.

It is any program that allows a hacker to connect to a computer without going through the normal authentication process.

D.

It is also known as half-open scanning.

Your friend plans to install a Trojan on your computer. He knows that if he gives you a new version of chess.exe, you will definitely install the game on your computer. He picks up a Trojan and joins it with chess.exe. Which of the following tools are required in such a scenario?

Each correct answer represents a part of the solution. Choose three.

A.

NetBus

B.

Absinthe

C.

Yet Another Binder

D.

Chess.exe

GIAC GCIH Premium Access     Download Demo    
Page: 2 / 5
Total 328 questions
Copyright © 2014-2025 Solution2Pass. All Rights Reserved