James, a forensic investigator, is trying to identify hidden processes and files on a system recovered from a crime scene. He is using a rootkit detec Heuristic/Behavior-Based Detection Signature-Based Detection Integrity-Based Detection Runtime Execution Path Profiling

EC-Council: Computer Hacking Forensic Investigator(CHFI-V10)

Module 7 : Linux and Mac Forensics

Questions available : 36 You are not logged in.
Please Login for track your learning progress

Q. No: 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 |

Go to Question No.

Question No 0

If you want to share the link of this question, please click here to "Copy Question Link" and share that generated link. Link from URL may change in future.

Bookmark this Question

QID: 464

James, a forensic investigator, is trying to identify hidden processes and files on a system recovered from a crime scene. He is using a rootkit detection technique, which compares characteristics of all system processes and executable files with a database of known rootkit fingerprints. Which of the following rootkit detection techniques did James use for his investigation?

A: Heuristic/Behavior-Based Detection

B: Signature-Based Detection

C: Integrity-Based Detection

D: Runtime Execution Path Profiling

WELCOME TO ONLINE EXAM PREPARATION SYSTEM

Join Online Exam

Certification Examinations