CSIA 135 FINAL EXAM
CSIA 135 FINAL EXAM ANSWERS WITH ACTUAL
QUESTIONS 100% VERIFIED.
Warning banner ANS << Before signing on to a system, what does a user usually
read that describes the user's responsibilities while using the system?
Chain of custody ANS << In a forensic investigation, what documents the
evidence-gathering process and includes the history and possession of a sample
from the time of its collection to its final disposition?
Arp ANS << What command displays the mappings between different layers of
the network architecture?
Drive Spy ANS << What disk-forensic tool creates direct disk-to-disk forensic
duplicates and can copy a range of sectors within or between drives?
,CSIA 135 FINAL EXAM
Search warrant ANS << What is a written order issued by a judge that directs a
law enforcement officer to search for a particular piece of evidence at a particular
location?
Time-frame analysis ANS << What process can contribute to associating events
that occurred on a computer with a particular individual?
Slack space ANS << What represents the space that exists between the end of
the file and the end of the last cluster used by that file?
Incident ANS << What term defines an event that threatens the security of a
computer system or network in an organization?
Best practices ANS << What term defines is defined as an empirically proven set
of methods for performing a task in the best and most efficient way?
Bit-stream copy ANS << Which of the following refers to a bit-by-bit copy of the
original storage medium?
Location where obtained ANS << A chain of custody document contains the
following information about the obtained evidence:
as potential evidence ANS << How should electronic devices gathered at a crime
scene be treated?
, CSIA 135 FINAL EXAM
Volatility ANS << What is the term that measures of how perishable electronically
stored data is?
exhibit numbering ANS << What procedure requires evidence to be marked using
the format Aia/dummy/nan/ZZ?
identify the scene ANS << What should a first responder do immediately after
arriving at a crime scene?
File cabinet ANS << Which of the following is NOT a potential source for
electronic evidence?
it should be photographed ANS << identify the scene
first responder toolkit ANS << Which of the following is a set of tested tools
designed to help in collecting genuine presentable evidence?
chain of custody ANS << Which of the following is a written description created
by individuals who are responsible for the evidence from the beginning until the
end of the case?
first responder ANS << Which term refers to a person who first arrives at a crime
scene and accesses the victim's computer system once the incident has been
reported?
CSIA 135 FINAL EXAM ANSWERS WITH ACTUAL
QUESTIONS 100% VERIFIED.
Warning banner ANS << Before signing on to a system, what does a user usually
read that describes the user's responsibilities while using the system?
Chain of custody ANS << In a forensic investigation, what documents the
evidence-gathering process and includes the history and possession of a sample
from the time of its collection to its final disposition?
Arp ANS << What command displays the mappings between different layers of
the network architecture?
Drive Spy ANS << What disk-forensic tool creates direct disk-to-disk forensic
duplicates and can copy a range of sectors within or between drives?
,CSIA 135 FINAL EXAM
Search warrant ANS << What is a written order issued by a judge that directs a
law enforcement officer to search for a particular piece of evidence at a particular
location?
Time-frame analysis ANS << What process can contribute to associating events
that occurred on a computer with a particular individual?
Slack space ANS << What represents the space that exists between the end of
the file and the end of the last cluster used by that file?
Incident ANS << What term defines an event that threatens the security of a
computer system or network in an organization?
Best practices ANS << What term defines is defined as an empirically proven set
of methods for performing a task in the best and most efficient way?
Bit-stream copy ANS << Which of the following refers to a bit-by-bit copy of the
original storage medium?
Location where obtained ANS << A chain of custody document contains the
following information about the obtained evidence:
as potential evidence ANS << How should electronic devices gathered at a crime
scene be treated?
, CSIA 135 FINAL EXAM
Volatility ANS << What is the term that measures of how perishable electronically
stored data is?
exhibit numbering ANS << What procedure requires evidence to be marked using
the format Aia/dummy/nan/ZZ?
identify the scene ANS << What should a first responder do immediately after
arriving at a crime scene?
File cabinet ANS << Which of the following is NOT a potential source for
electronic evidence?
it should be photographed ANS << identify the scene
first responder toolkit ANS << Which of the following is a set of tested tools
designed to help in collecting genuine presentable evidence?
chain of custody ANS << Which of the following is a written description created
by individuals who are responsible for the evidence from the beginning until the
end of the case?
first responder ANS << Which term refers to a person who first arrives at a crime
scene and accesses the victim's computer system once the incident has been
reported?
