Online Access Free GIAC.GCCC.v2021-09-02.q34 Practice Test (Page 2)

GCCC Exam Question 1

An organization has implemented a policy to continually detect and remove malware from its network. Which of the following is a detective control needed for this?

A.Network Intrusion Detection devices sends alerts when signatures are updated

B.Host-based anti-virus sends alerts to a central security console

C.Network Intrusion Prevention sends alerts when RST packets are received

D.Host-based firewall sends alerts when packets are sent to a closed port

GCCC Exam Question 2

After installing a software package on several workstations, an administrator discovered the software opened network port TCP 23456 on each workstation. The port is part of a software management function that is not needed on corporate workstations. Which actions would best protect the computers with the software package installed?

A.Redirect traffic to and from the software management port to a non-default port

B.Block TCP 23456 at the network perimeter firewall

C.Document the port number and request approval from a change control group

D.Determine which service controls the software management function and opens the port, and disable it

GCCC Exam Question 3

An organization has created a policy that allows software from an approved list of applications to be installed on workstations. Programs not on the list should not be installed. How can the organization best monitor compliance with the policy?

A.Performing regular port scans of workstations on the network

B.Creating an IDS signature to alert based on unknown "User-Agent " strings

C.Auditing Active Directory and alerting when new accounts are created

D.Comparing system snapshots and alerting when changes are made

GCCC Exam Question 4

An auditor is focusing on potential vulnerabilities. Which of the following should cause an alert?

A.Windows host with an uptime of 382 days

B.Server that has zero browser plug-ins

C.Workstation on which a domain admin has never logged in

D.Fully patched guest machine that is not in the asset inventory

GCCC Exam Question 5

Which of the options below will do the most to reduce an organization's attack surface on the internet?

A.Ensure that rotation of duties is used with employees in order to compartmentalize the most important tasks

B.Deploy antivirus software on internet-facing hosts, and ensure that the signatures are updated regularly

C.Ensure only necessary services are running on Internet-facing hosts, and that they are hardened according to best practices

D.Deploy an access control list on the perimeter router and limit inbound ICMP messages to echo requests only

Other Version: 820GIAC.GCCC.v2022-06-01.q34; 34GIAC.Itcertmagic.GCCC.v2022-05-25.by.john.34q.pdf; 111GIAC.Examcollectionpass.GCCC.v2021-08-30.by.harvey.34q.pdf

Latest Upload: 119HP.HPE6-A85.v2025-10-09.q102; 112Oracle.1Z0-1161-1.v2025-10-09.q18; 123Cisco.350-601.v2025-10-09.q638; 120SAP.C_BCBDC_2505.v2025-10-08.q34; 133GAQM.Databricks-Certified-Data-Engineer-Associate.v2025-10-08.q106; 130WGU.Scripting-and-Programming-Foundations.v2025-10-08.q82; 126PRINCE2.PRINCE2Foundation.v2025-10-07.q143; 133Cisco.300-425.v2025-10-07.q109; 109Cisco.200-901.v2025-10-07.q300; 122VMware.3V0-32.23.v2025-10-07.q93

GCCC Exam Question 1

GCCC Exam Question 2

GCCC Exam Question 3

GCCC Exam Question 4

GCCC Exam Question 5

Download PDF File