最新的GIAC Cloud Forensics Responder (GCFR) - GCFR免費考試真題
問題1
An analyst is reviewing a case involving an actor who leveraged PowerShell Cloud Shell to achieve their goals. Where can the analyst And logs depleting this activity?
正確答案: D
問題2
What information do AWS VPC flow logs collect?
正確答案: D
問題3
An engineer has set up log forwarding for a new data source and wants to use that data to run reports and create dashboards in Kiban a. What needs to be created in order to properly handle these logs?
正確答案: D
問題4
What logical AWS structure type is used to chain together accounts in a trust relationship which allows for single sign-on and cross-account management?
正確答案: D
問題5
What is shown in the screenshot?
正確答案: D
問題6
An investigator is evaluating a client's Microsoft 365 deployment using the web portals and has identified that the Purview compliance portal states that the Unified Audit Logs are not enabled. Based on the additional Information gathered below, what is most likely the cause of this configuration message?
Subscription creation date: December 4, 2021 Number of administrators: 2 Number of non-administrative user accounts: 74 Last tenant administration change: December 4,2021
Subscription creation date: December 4, 2021 Number of administrators: 2 Number of non-administrative user accounts: 74 Last tenant administration change: December 4,2021
正確答案: A
問題7
What is the lowest level of GCP organization that consists of a logical grouping of services?
正確答案: B
問題8
Which cloud service provider produces sampled flow logs?
正確答案: A
問題9
A data exfiltration investigation of a GCP storage bucket is limited to the information logged by default in the Cost Table of Google's Cloud Billing. What information will investigators be able to gather?
正確答案: D
