[2024] GCFR.pdf - Questions Answers PDF Sample Questions Reliable

GIAC GCFR Dumps PDF Are going to be The Best Score

NEW QUESTION # 10
Using the SOF-ELK instance at 10.0.1.7:5601, inspect the netflow logs related to the ip 5.62.19.62.
Which of the ports seen in the netflow logs associated with the ip 5.62.19.62 has the lowest count?
Hint: Use a wide time frame such as 20 years to ensure all the relevant data is in the scope.

• A. 0
• B. 1
• C. 2
• D. 3
• E. 4
• F. 5
• G. 6
• H. 7
• I. 8
• J. 9

Answer: F

NEW QUESTION # 11
The Azure PowerShell output below is an example of which of the following?

• A. Role definition
• B. Service principal
• C. Managed identity
• D. Role assignment

Answer: C

NEW QUESTION # 12
Which statement describes a zld.metal EC2 instance?

• A. It Is an accelerated computing system with a GPU or I PGA
• B. The system is optimized for a high CPU-to-memory ratio
• C. The system can be configured to add resources at a trigger point
• D. It is a high-frequency system with very fast RAM access

Answer: D

NEW QUESTION # 13
A threat actor conducts brute force attacks against SSH services to gain Initial access. This attack technique falls under which category of the Google Workspace MITRE ATT&CK matrix?

• A. Collection
• B. Credential access
• C. Defense evasion
• D. Discovery

Answer: B

NEW QUESTION # 14
What type of AWS log is the following snippet an example of?

• A. Load Balancer Log
• B. Route 53 Query Log
• C. Web Application firewall Log
• D. VPC Flow Log

Answer: D

NEW QUESTION # 15
Which of the following is the smallest unit of computing hardware in Kubernetes?

• A. Pod
• B. Node
• C. Container
• D. Cluster

Answer: A

NEW QUESTION # 16
Which of the following Windows agents would need to be configured on an Azure VM for an investigator to query Its operating system logs sent to Azure Storage?

• A. Diagnostic Extension
• B. Dependency
• C. Azure Monitor
• D. Log Analytics

Answer: A

NEW QUESTION # 17
At what point of the OAuth delegation process does the Resource Owner approve the scope of access to be allowed?

• A. Before user credentials are sent to the Authentication Server
• B. When the Resource Server receives the OAuth token
• C. After user credentials are accepted by the Authorization Server
• D. Once the OAuth token is accepted by the Application

Answer: C

NEW QUESTION # 18
How is storage account, cs21003200042c87633, created in an Azure resource group?

• A. Azure CLI was used from a Windows machine
• B. PowerShell Cloud Shell audit logging was enabled
• C. A Bash Cloud Shell was used
• D. PowerShelI Cloud Shell was used

Answer: C

NEW QUESTION # 19
What is the example AWS data below an example of?

• A. EC2 Configuration
• B. S3 Configuration
• C. Network Security Group
• D. IAM Policy

Answer: D

NEW QUESTION # 20
Use Kibana to analyze the Azure AD sign-in logs in the azure-* index. On March 31st, 2021, what is the timestamp of the earliest failed login attempt for the account dcr0ss5pymtechlabs.com?
ViewVM

• A. 01:04:24
• B. 18:11:07
• C. 19:02:06
• D. 01:02:56
• E. 19:21:34
• F. 19:01:27
• G. 18:11:45
• H. 18:12:04
• I. 19:02:12
• J. 19:35:31

Answer: B

NEW QUESTION # 21
Microsoft.Key Vault is an example of which component of Azure's structure?

• A. Resource manager
• B. Resource group
• C. Resource
• D. Resource provider

Answer: D

NEW QUESTION # 22
Below is an extract from a Server Access Log showing a record for a request made to an AWS S3 bucket. What does the first field starting with "385f9e" represent?

• A. Bucket Owner
• B. Cipher Suite
• C. Host ID
• D. Request ID

Answer: D

NEW QUESTION # 23
What can be determine about the AVVS Access Key below?
AKIAVNKBKCM4I3VNZIS3

• A. It is a service STS token
• B. It is only in use for a single session
• C. The key belongs to a user account
• D. The key will only work internally

Answer: C

NEW QUESTION # 24
A data exfiltration investigation of a GCP storage bucket is limited to the information logged by default in the Cost Table of Google's Cloud Billing. What information will investigators be able to gather?

• A. IP addresses associated with file downloads
• B. Usernames associated with file downloads
• C. Filenames of downloaded files
• D. Timeframes of file downloads

Answer: D

NEW QUESTION # 25
What is the lowest level of GCP organization that consists of a logical grouping of services?

• A. Project
• B. Unit
• C. Organization
• D. Folder

Answer: A

NEW QUESTION # 26
Which AW5 1AM policy element indicates the API that is in scope?

• A. Resource
• B. Version
• C. Action
• D. Effect

Answer: C

NEW QUESTION # 27
A company using PaaS to host and develop their software application is experiencing a DOS attack. What challenge will a DFIR analyst experience when investigating this attack?

• A. Network monitoring disabled by the company
• B. Network logs are unavailable for review
• C. Restricted access to their application logs
• D. Resource scaling will affect access to logs

Answer: B

NEW QUESTION # 28
The attack technique "Access Kubelet API" falls under which Mitre ATT&CK tactic?

• A. Credential Access
• B. Initial Access
• C. Discovery
• D. Execution

Answer: C

NEW QUESTION # 29
......

Use GCFR Exam Dumps (2024 PDF Dumps) To Have Reliable GCFR Test Engine: https://www.vce4dumps.com/GCFR-valid-torrent.html

Cyber Security GCFR Exam and Certification Test Engine: https://drive.google.com/open?id=1cZtmqUSM5AMM-zgoY19eCkKMfqY4QJwA