Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Cybersecurity > Week 5 > Flashcards

Week 5 Flashcards

1
Q

Data of evidentiary value is commonly referred to as what?

A

Artifacts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is the opposite of dead box analysis?

A

Live forensics

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is the name of the device which prohibits the computer from writing data during live forensics?

A

A write blocker

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is the difference between a physical disk image and a logical disk image?

A

Physical: bit-by-bit copy
Logical: copy of partitions as seen by OS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are examples of volatile data that can be collected during live analysis?

A

Current network connections, current user, analyse possible encryption software

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Why do we need to account for all data on a hard drive?

A

To establish if there are hidden partitions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Why is it important to examine time zone settings on a device?

A

To establish accurate timelines in criminal investigations

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Cybersecurity (7 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions