312-49v11 Exam Question 41

During a forensic investigation of a compromised Windows system, Investigator Sarah is tasked with extracting artifacts related to the system ' s pagefile.sys . She needs to navigate through the registry to locate this specific information. Which of the following registry paths should Sarah examine to extract pagefile.sys artifacts from the system?
  • 312-49v11 Exam Question 42

    Nora, a forensic investigator, is examining the Windows Registry of a compromised system as part of her investigation into a potential insider threat. She wants to determine which folders were most recently accessed by the user. After reviewing the Registry, she discovers that a particular Registry key stores information about the folders the user recently accessed, including the folder names and their paths in the file system. Based on her findings, which of the following Registry keys contains this information?
  • 312-49v11 Exam Question 43

    During a cybercrime investigation, the forensic team has seized a large number of devices as part of the evidence collection process. After securing all the devices, the team begins evaluating which exhibits to prioritize for analysis first. The team maintains detailed records of both analyzed and non-analyzed exhibits, ensuring that they can track the progress of the investigation and reference any exhibits that were not immediately analyzed.
    Which ENFSI best practice is being followed by the team?
  • 312-49v11 Exam Question 44

    Eliana, a network administrator, is tasked with monitoring FTP traffic on her organization's network. She suspects that there might be ongoing password cracking attempts targeting the FTP server. To effectively monitor the situation, she needs to track all the unsuccessful login attempts on the FTP server. Given the network traffic, which of the following Wireshark display filters should Eliana apply to identify all the failed login attempts on the FTP server?
  • 312-49v11 Exam Question 45

    You ' re a cybersecurity analyst tasked with understanding the functionality of a Web Application Firewall (WAF) and its role in protecting web applications from various attacks. You need to grasp the benefits and limitations of WAFs and learn how to analyze log files generated by WAF tools like ModSecurity to detect web-based attacks.
    What is the primary function of a Web Application Firewall (WAF)?