1. Home
  2. GIAC Certification
  3. GCIH Exam
  4. GIAC.GCIH.v2022-05-20.q253 Practice Test

Question 171

Which of the following rootkits adds additional code or replaces portions of an operating system, including both the
kernel and associated device drivers?

    • Question 172

    Adam works as a Security Administrator for Umbrella Inc. A project has been assigned to him to test the network security of the company. He created a webpage to discuss the progress of the tests with employees who were interested in following the test. Visitors were allowed to click on a company's icon to mark the progress of the test. Adam successfully embeds a keylogger. He also added some statistics on the webpage.
    The firewall protects the network well and allows strict Internet access.
    How was security compromised and how did the firewall respond?

    • Question 173

    Which of the following tools uses common UNIX/Linux tools like the strings and grep commands to search core system programs for signatures of the rootkits?

    • Question 174

    Which of the following is a version of netcat with integrated transport encryption capabilities?

    • Question 175

    You enter the following URL on your Web browser:
    http://www.we-are-secure.com/scripts/..%co%af../..%co%
    af../windows/system32/cmd.exe?/c+dir+c:\
    What kind of attack are you performing?
    • Other Version
    2640GIAC.GCIH.v2023-05-20.q267
    2532GIAC.GCIH.v2022-09-14.q140
    47GIAC.Actualtestpdf.GCIH.v2022-01-04.by.scott.216q.pdf
    Latest Upload
    159Huawei.H12-811_V1.0.v2025-10-02.q205
    137PMI.PfMP.v2025-10-02.q265
    127EMC.D-NWR-DY-01.v2025-10-02.q145
    150Salesforce.Public-Sector-Solutions.v2025-10-01.q106
    131Microsoft.SC-300.v2025-10-01.q358
    106Snowflake.DSA-C03.v2025-10-01.q105
    111Fortinet.NSE7_SDW-7.2.v2025-10-01.q108
    123Scrum.PAL-I.v2025-09-30.q47
    127SAP.C-C4H22-2411.v2025-09-30.q28
    150LinuxFoundation.CKAD.v2025-09-29.q102