Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

wall prep > Digital Forensics Tools > Flashcards

Digital Forensics Tools Flashcards

1
Q

Which tool is known for recovering deleted files emptied from the recycle bin, lost due to format or corruption of a hard drive, and even after Windows has been reinstalled?
A. Recuva
B. Recover My Files
C. Disk Drill
D. R-Studio

A

B. Recover My Files

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which tool offers an Advanced Deep Scan mode that scours a drive to find any traces of files that have been deleted?
A. EASEUS Data Recovery Wizard
B. OnTrack Easy Recovery
C. Recuva
D. Data Recovery Pro

A

C. Recuva

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Which tool supports recovery of lost data from hard drives, partitions, external devices, CDs, and DVDs, and offers both Quick Scan and Deep Scan options?
A. Advanced Disk Recovery
B. Undelete Plus
C. Data Rescue 4
D. Disk Drill

A

A. Advanced Disk Recovery

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which digital forensics tool can recover data from systems that are not bootable, using a bootable CD or DVD with a lightweight version of Windows 7?
A. Stellar Phoenix
B. File Salvage
C. Active@ File Recovery
D. Remo Recover Pro

A

C. Active@ File Recovery

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Which tool allows users to preview files before recovering and supports specifying recovery file types for precise search results?
A. DiskDigger
B. Recover My Files
C. EASEUS Data Recovery Wizard
D. R-Studio

A

C. EASEUS Data Recovery Wizard

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Which tool is capable of recovering data from both HFS/HFS+ formatted drives on Mac and can also be used for recovering data on Windows?
A. File Salvage
B. Data Rescue 4
C. R-Studio
D. Total Recall

A

B. Data Rescue 4

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which tool allows recovery of documents, photos, email, video, and music, even after accidental formatting or if Windows has been reinstalled?
A. Undelete Plus
B. Pandora Recovery
C. Disk Drill
D. OnTrack Easy Recovery

A

A. Undelete Plus

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which tool can recover files from memory cards, USB drives, and has features like thumbnail preview of recoverable files?
A. Recover My Files
B. DiskDigger
C. Quick Recovery
D. Data Recovery Pro

A

B. DiskDigger

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Which tool is an open source network forensic analysis tool (NFAT) that can extract data from an internet traffic capture?
A. Xplico
B. Capsa
C. Autopsy
D. Comodo Programs Manager

A

A. Xplico

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which tool is used to monitor the installation of executables and shows process information such as process ID, new file path, open ports, and loaded drivers?
A. Dependency Walker
B. SysAnalyzer
C. Install Watch
D. Memory Viewer

A

B. SysAnalyzer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which tool can be used to analyze registry changes in malware analysis and includes a Registry Cleaner?
A. Memory Viewer
B. Registry Editor (regedit)
C. Jv16 Power Tools
D. Exeinfo PE

A

C. Jv16 Power Tools

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which tool supports over 300 network protocols and can be used to detect Trojans by monitoring network traffic?
A. Xplico
B. Capsa
C. Autopsy
D. Nuix Corporate Investigation Suite

A

B. Capsa

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Which tool is a password recovery tool for Microsoft OS and offers features like cracking, password sniffing, and VoIP recording?
A. Cain & Abel
B. Install Watch
C. Memory Viewer
D. FileMerlin

A

A. Cain & Abel

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which tool can be used for document conversion and is regarded as the premiere product for this purpose?
A. Disk Drill
B. Data Recovery Pro
C. Exeinfo PE
D. FileMerlin

A

D. FileMerlin

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Which tool can create an image of a phone memory card and ensures data integrity by calculating MD5 hash values?
A. Autopsy
B.AccessData FTK
C. Stellar Phoenix
D. Total Recall

A

B. AccessData FTK

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Which tool offers recovery from RAW hard drives, partition errors, and after hard disk crash, and can preview data “on-the-fly” while searching?
A. Recover My Files
B. Disk Drill
C. Quick Recovery
D. File Salvage

A

A. Recover My Files

17
Q

Which tool provides an opportunity to recover files from hard drives, RAID, photos, deleted files, iPods, FireWire, and USB?
A.Remo Recover Pro
B. Disk Drill
C. Total Recall
D. R-Studio

A

C. Total Recall

18
Q

Which tool can recover lost data from Linux using third-party tools like TestDisk, PhotoRec, and Kernel for Linux Data Recovery?
A. R-Studio
B. Stellar Phoenix
C. DiskDigger
D. Remo Recover Pro

A

A. R-Studio

19
Q

Which tool can analyze the code to identify the packer tool and is used in malware analysis?
A. Memory Viewer
B. Install Watch
C. Proc Heap Viewer
D. Exeinfo PE

A

D. Exeinfo PE

20
Q

Which tool offers a Quick scan and Deep scan and is designed for Mac OS to help recover and restore lost data?
A. Cisdem Data Recovery
B. Data Rescue 4
C. File Salvage
D. Stellar Phoenix

A

A. Cisdem Data Recovery

21
Q

Which tool is known for its ability to recover deleted files with their original file name and supports RAW recovery on lost volumes?
A. Stellar Phoenix
B. Undelete Plus
C. EASEUS Data Recovery Wizard
D. R-Studio

A

A. Stellar Phoenix

22
Q

Which tool helps investigators detect hidden and background installations performed by malware?
A. Dependency Walker
B. Install Watch
C. Proc Heap Viewer
D. Memory Viewer

A

B. Install Watch

23
Q

Which tool can view system memory configuration and provides information about the memory cards installed on the computer?
A. Memory Viewer
B. Proc Heap Viewer
C. Dependency Walker
D. Registry Editor (regedit)

A

A. Memory Viewer

24
Q

Which tool is a court-cited digital investigations platform that provides processing and indexing up front for fast filtering and searching?
A. Nuix Corporate Investigation Suite
B. AccessData FTK
C. Autopsy
D. Total Recall
Answer: B. AccessData FTK

A

B. AccessData FTK

25
Q

Which tool can detect Alternate Data Streams?
A. Memory Viewer
B. Timestomp
C. Proc Heap Viewer
D. Stream Detector

A

D. Stream Detector

26
Q

Which tool is part of a collection of command line tools and a C library to analyze disk images and recover files from them?
A. The Sleuth Kit (TSK)
B. Autopsy
C. Hex Editor Neo
D. Disk Drill

A

A. The Sleuth Kit (TSK)

27
Q

Which tool can recover files lost from PCs, laptops, or other storage media due to deleting, formatting, partition loss, OS crash, and virus attack?
A. Advanced Disk Recovery
B. DiskDigger
C. EASEUS Data Recovery Wizard
D. Recuva

A

C. EASEUS Data Recovery Wizard

28
Q

Which tool helps analyze registry changes in malware analysis and includes a Registry Cleaner?
A. Jv16 Power Tools
B. Registry Editor (regedit)
C. Memory Viewer
D. Exeinfo PE

A

A. Jv16 Power Tools

29
Q

Which tool can recover lost files from hard drives, RAID, photos, deleted files, iPods, FireWire, and USB, and can be used for disk bad sector repair?
A. Quick Recovery
B. Disk Drill
C. Remo Recover Pro
D. R-Studio

A

A. Quick Recovery

30
Q

Which tool can be used to create an image of a phone memory card and ensures data integrity by calculating MD5 hash values?
A. Autopsy
B. AccessData FTK
C. Stellar Phoenix
D. Total Recall

A

B. AccessData FTK

wall prep (11 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions