Free GIAC GDAT Exam Dumps Questions & Answers

Which of the following best describes a man-in-the-middle attack used for data exfiltration?
Response:

• A.  The attacker modifies the data before reaching the recipient
• B.  The attacker denies access to data
• C.  The attacker disrupts the normal flow of data
• D.  The attacker intercepts and copies data in transit

The tool commonly used for automated penetration testing that simulates an attack from the attacker's perspective is called _________.
Response:

• A.  Metasploit
• B.  Wireshark
• C.  Snort
• D.  Nessus

Which of the following are indicators of a potential persistence attack?
(Choose Two)
Response:

• A.  Changes in system configuration files
• B.  Unexpected system shutdowns and restarts
• C.  Increased volume of outbound emails
• D.  Unexplained new user accounts on the system

Which techniques are commonly used to secure applications during the design phase?
(Choose two)
Response:

• A.  Integrating security requirements into functional requirements
• B.  Implementing encryption for sensitive data
• C.  Applying security patches post-release
• D.  Using machine learning for real-time threat detection

Your security team has identified unusual outbound traffic from your organization's network to external IP addresses. Upon further analysis, the traffic consists of a high volume of encrypted HTTP POST requests, with some payloads resembling legitimate DNS queries.
What is the most likely method of data exfiltration being used, and how should you proceed?
Response:

• A.  Ransomware attack; isolate the affected systems and begin recovery operations
• B.  DNS tunneling; block external DNS requests and investigate the internal DNS servers
• C.  SQL injection; patch the vulnerable web applications and monitor the database for anomalies
• D.  Phishing attack; notify users to change their passwords and monitor account activity