WGU C840 Digital Forensics Assessment
Questions and Answers
Expert report - ✅✅A formal document prepared by a forensics
specialist to document an investigation, including a list of all tests
conducted as well as the specialist's own curriculum vitae (CV).
Anything the specialist plans to testify about at a trial must be included
in the expert report.
Testimonial evidence - ✅✅Information that forensic specialists use to
support or interpret real or documentary evidence; for example, to
demonstrate that the fingerprints found on a keyboard are those of a
specific individual.
Daubert standard - ✅✅The standard holding that only methods and
tools widely accepted in the scientific community can be used in court.
If the computer is turned on when you arrive, what does the Secret
Service recommend you do? - ✅✅Shut down according to the
recommended Secret Service procedure.
,Communications Assistance to Law Enforcement Act of 1994 -
✅✅The Communications Assistance to Law Enforcement Act of 1994
is a federal wiretap law for traditional wired telephony. It was expanded
to include wireless, voice over packet, and other forms of electronic
communications, including signaling traffic and metadata.
Digital evidence - ✅✅Digital evidence is information processed and
assembled so that it is relevant to an investigation and supports a
specific finding or determination.
Federal Privacy Act of 1974 - ✅✅The Federal Privacy Act of 1974, a
United States federal law that establishes a code of Fair Information
Practice that governs the collection, maintenance, use, and
dissemination of information about individuals that is maintained in
systems of records by U.S. federal agencies.
Power Spy, Verity, ICU, and Work Time - ✅✅Spyware
good fictitious e-mail response rate - ✅✅1-3%
,Which crime is most likely to leave e-mail evidence? -
✅✅Cyberstalking
Where would you seek evidence that ophcrack had been used on a
Windows Server 2008 machine? - ✅✅In the logs of the server; look
for the reboot of the system
A SYN flood is an example of what? - ✅✅DoS attack
definition of a virus, in relation to a computer? - ✅✅a type of
malware that requires a host program or human help to propagate
What is the starting point for investigating the denial of service attacks?
- ✅✅Tracing the packets
China Eagle Union - ✅✅The cyberterrorism group, the China Eagle
Union, consists of several thousand Chinese hackers whose stated goal
is to infiltrate Western computer systems. Members and leaders of the
, group insist that not only does the Chinese government have no
involvement in their activities, but that they are breaking Chinese law
and are in constant danger of arrest and imprisonment. However, most
analysts believe this group is working with the full knowledge and
support of the Chinese government.
Rules of evidence - ✅✅Rules that govern whether, when, how, and
why proof of a legal case can be placed before a judge or jury.
file slack - ✅✅The unused space between the logical end of the file
and the physical end of the file. It is also called slack space.
The Analysis Plan - ✅✅Before forensic examination can begin, an
analysis plan should be created. This plan guides work in the analysis
process. How will you gather evidence? Are there concerns about
evidence being changed or destroyed? What tools are most appropriate
for this specific investigation? A standard data analysis plan should be
created and customized for specific situations and circumstances.
Questions and Answers
Expert report - ✅✅A formal document prepared by a forensics
specialist to document an investigation, including a list of all tests
conducted as well as the specialist's own curriculum vitae (CV).
Anything the specialist plans to testify about at a trial must be included
in the expert report.
Testimonial evidence - ✅✅Information that forensic specialists use to
support or interpret real or documentary evidence; for example, to
demonstrate that the fingerprints found on a keyboard are those of a
specific individual.
Daubert standard - ✅✅The standard holding that only methods and
tools widely accepted in the scientific community can be used in court.
If the computer is turned on when you arrive, what does the Secret
Service recommend you do? - ✅✅Shut down according to the
recommended Secret Service procedure.
,Communications Assistance to Law Enforcement Act of 1994 -
✅✅The Communications Assistance to Law Enforcement Act of 1994
is a federal wiretap law for traditional wired telephony. It was expanded
to include wireless, voice over packet, and other forms of electronic
communications, including signaling traffic and metadata.
Digital evidence - ✅✅Digital evidence is information processed and
assembled so that it is relevant to an investigation and supports a
specific finding or determination.
Federal Privacy Act of 1974 - ✅✅The Federal Privacy Act of 1974, a
United States federal law that establishes a code of Fair Information
Practice that governs the collection, maintenance, use, and
dissemination of information about individuals that is maintained in
systems of records by U.S. federal agencies.
Power Spy, Verity, ICU, and Work Time - ✅✅Spyware
good fictitious e-mail response rate - ✅✅1-3%
,Which crime is most likely to leave e-mail evidence? -
✅✅Cyberstalking
Where would you seek evidence that ophcrack had been used on a
Windows Server 2008 machine? - ✅✅In the logs of the server; look
for the reboot of the system
A SYN flood is an example of what? - ✅✅DoS attack
definition of a virus, in relation to a computer? - ✅✅a type of
malware that requires a host program or human help to propagate
What is the starting point for investigating the denial of service attacks?
- ✅✅Tracing the packets
China Eagle Union - ✅✅The cyberterrorism group, the China Eagle
Union, consists of several thousand Chinese hackers whose stated goal
is to infiltrate Western computer systems. Members and leaders of the
, group insist that not only does the Chinese government have no
involvement in their activities, but that they are breaking Chinese law
and are in constant danger of arrest and imprisonment. However, most
analysts believe this group is working with the full knowledge and
support of the Chinese government.
Rules of evidence - ✅✅Rules that govern whether, when, how, and
why proof of a legal case can be placed before a judge or jury.
file slack - ✅✅The unused space between the logical end of the file
and the physical end of the file. It is also called slack space.
The Analysis Plan - ✅✅Before forensic examination can begin, an
analysis plan should be created. This plan guides work in the analysis
process. How will you gather evidence? Are there concerns about
evidence being changed or destroyed? What tools are most appropriate
for this specific investigation? A standard data analysis plan should be
created and customized for specific situations and circumstances.
