Leads4pass > GIAC > GIAC Certifications > GISF > GISF Online Practice Questions and Answers

GISF Online Practice Questions and Answers

Questions 4

How long are cookies in effect if no expiration date is set?

A. Fifteen days

B. Until the session ends.

C. Forever

D. One year

Buy Now
Questions 5

NIST Special Publication 800-50 is a security awareness program. It is designed for those people who are

currently working in the information technology field and want to the information security policies.

Which of the following are its significant steps?

Each correct answer represents a complete solution. Choose two.

A. Awareness and Training Material Effectiveness

B. Awareness and Training Material Development

C. Awareness and Training Material Implementation

D. Awareness and Training Program Design

Buy Now
Questions 6

Mark work as a Network Administrator for Roadways Travel Inc. The conmpany wants to implement a

strategy for its external employees so that they can connect to Web based applications. What will Mark do

to achieve this?

(Click the Exhibit button on the toolbar to see the case study.)

A. He will install a VPN server in the VLAN, Roadways, and an IIS server in the corporate LAN at the headquarters.

B. He will install a VPN server in the corporate LAN at the headquarters and an IIS server in the DMZ.

C. He will install a VPN server in the DMZ and an IIS server in the corporate LAN at the headquarters.

D. He will install a VPN server in the VLAN, Roadways, and an IIS server in the DMZ.

Buy Now
Questions 7

Every network device contains a unique built in Media Access Control (MAC) address, which is used to identify the authentic device to limit the network access. Which of the following addresses is a valid MAC address?

A. F936.28A1.5BCD.DEFA

B. A3-07-B9-E3-BC-F9

C. 1011-0011-1010-1110-1100-0001

D. 132.298.1.23

Buy Now
Questions 8

The security of a computer against the unauthorized usage largely depends upon the efficiency of the

applied access control method. Which of the following statements are true about a computer access

control method?

Each correct answer represents a complete solution. Choose all that apply.

A. It can be based upon fingerprint or eye recognition.

B. It can be time-synchronous.

C. It provides security against the virus attacks.

D. It provides security against Eavesdropping.

E. It checks the authenticity of a person.

F. It is used to encrypt a message before transmitting it on a network.

Buy Now
Questions 9

Which of the following processes is described in the statement below? "It is the process of implementing risk response plans, tracking identified risks, monitoring residual risk, identifying new risks, and evaluating risk process effectiveness throughout the project."

A. Perform Quantitative Risk Analysis

B. Perform Qualitative Risk Analysis

C. Monitor and Control Risks

D. Identify Risks

Buy Now
Questions 10

Adam works as a Professional Penetration Tester for Umbrella Inc. A project has been assigned to him to carry out a Black Box penetration testing as a regular evaluation of the system security and integrity of the company's network. Which of the following statements are true about the Black Box penetration testing? Each correct answer represents a complete solution. Choose all that apply.

A. Black box testing provides the testers with complete knowledge of the infrastructure to be tested.

B. Black box testing simulates an attack from someone who is unfamiliar with the system.

C. Black box testing simulates an attack from someone who is familiar with the system.

D. Black box testing assumes no prior knowledge of the infrastructure to be tested.

Buy Now
Questions 11

What are packet sniffers?

A. Packet sniffers encrypt the packages as they cross the network.

B. Packet sniffers test package security.

C. Packet sniffers test the packages to verify data integrity.

D. Packet sniffers capture the packages as they cross the network.

Buy Now
Questions 12

What are the benefits of using a proxy server on a network? Each correct answer represents a complete solution. Choose all that apply.

A. It enhances network security.

B. It uses a single registered IP address for multiple connections to the Internet.

C. It cuts down dial-up charges.

D. It is used for automated assignment of IP addresses to a TCP/IP client in the domain.

Buy Now
Questions 13

You work as an Application Developer for uCertify Inc. The company uses Visual Studio .NET Framework

3.5 as its application development platform. You are working on a WCF service. You have decided to implement transport level security. Which of the following security protocols will you use?

A. Kerberos

B. HTTPS

C. RSA

D. IPSEC

Buy Now
Exam Code: GISF
Exam Name: GIAC Information Security Fundamentals (GISF)
Last Update: Jul 03, 2026
Questions: 333
10%OFF Coupon Code: SAVE10

PDF (Q&A)

$49.99

VCE

$55.99

PDF + VCE

$65.99